CVE-2023-4936 - OpenCVE

It is possible to sideload a compromised DLL during the installation at elevated privilege.

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Synaptics	Displaylink Usb Graphics

Configuration 1 [-]

cpe:2.3:a:synaptics:displaylink_usb_graphics:*:*:*:*:*:windows:*:*

References

Link	Resource
https://www.synaptics.com/	Product
https://www.synaptics.com/products/displaylink-graphics/downloads/windows	Product
https://www.synaptics.com/sites/default/files/nr-154525-tc-synaptics_displaylink_windows_driver_security_brief_-_oct2023.pdf	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: Synaptics

Published: 2023-10-11T17:00:07.311Z

Updated: 2023-10-11T17:00:07.311Z

Reserved: 2023-09-13T13:08:54.293Z

Link: CVE-2023-4936

JSON object: View

NVD Information

Status : Analyzed

Published: 2023-10-11T17:15:11.117

Modified: 2023-10-17T17:10:02.883

Link: CVE-2023-4936

JSON object: View

Redhat Information

No data.

CWE

{"dataType": "CVE_RECORD", "dataVersion": "5.0", "cveMetadata": {"cveId": "CVE-2023-4936", "assignerOrgId": "54bb2a58-4278-44a9-851f-17e74ee51f48", "state": "PUBLISHED", "assignerShortName": "Synaptics", "dateReserved": "2023-09-13T13:08:54.293Z", "datePublished": "2023-10-11T17:00:07.311Z", "dateUpdated": "2023-10-11T17:00:07.311Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "platforms": ["Windows"], "product": "DisplayLink USB Graphics Software for Windows", "vendor": "Synaptics", "versions": [{"lessThanOrEqual": "11.1 M1", "status": "affected", "version": "0", "versionType": "custom"}, {"status": "unaffected", "version": "11.2M0"}]}], "datePublic": "2023-10-11T16:44:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "It is possible to sideload a compromised DLL during the installation at elevated privilege."}], "value": "It is possible to sideload a compromised DLL during the installation at elevated privilege."}], "impacts": [{"capecId": "CAPEC-184", "descriptions": [{"lang": "en", "value": "CAPEC-184 Software Integrity Attack"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:H/A:L", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-269", "description": "CWE-269 Improper Privilege Management", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "54bb2a58-4278-44a9-851f-17e74ee51f48", "shortName": "Synaptics", "dateUpdated": "2023-10-11T17:00:07.311Z"}, "references": [{"url": "https://www.synaptics.com/"}, {"url": "https://www.synaptics.com/products/displaylink-graphics/downloads/windows"}, {"url": "https://www.synaptics.com/sites/default/files/nr-154525-tc-synaptics_displaylink_windows_driver_security_brief_-_oct2023.pdf"}], "source": {"discovery": "EXTERNAL"}, "title": "Synaptics-DisplayLink-privilege escalation vulnerability via a dynamic library sideloading", "workarounds": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "update to 11.2M0"}], "value": "update to 11.2M0"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:synaptics:displaylink_usb_graphics:*:*:*:*:*:windows:*:*", "matchCriteriaId": "556A4D18-8E24-49D3-B621-EC40C16431E4", "versionEndExcluding": "11.2m0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "It is possible to sideload a compromised DLL during the installation at elevated privilege."}, {"lang": "es", "value": "Es posible descargar una DLL comprometida durante la instalaci\u00f3n con privilegios elevados."}], "id": "CVE-2023-4936", "lastModified": "2023-10-17T17:10:02.883", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:H/A:L", "version": "3.1"}, "exploitabilityScore": 0.8, "impactScore": 4.7, "source": "PSIRT@synaptics.com", "type": "Secondary"}]}, "published": "2023-10-11T17:15:11.117", "references": [{"source": "PSIRT@synaptics.com", "tags": ["Product"], "url": "https://www.synaptics.com/"}, {"source": "PSIRT@synaptics.com", "tags": ["Product"], "url": "https://www.synaptics.com/products/displaylink-graphics/downloads/windows"}, {"source": "PSIRT@synaptics.com", "tags": ["Vendor Advisory"], "url": "https://www.synaptics.com/sites/default/files/nr-154525-tc-synaptics_displaylink_windows_driver_security_brief_-_oct2023.pdf"}], "sourceIdentifier": "PSIRT@synaptics.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-427"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-269"}], "source": "PSIRT@synaptics.com", "type": "Secondary"}]}