{"vulnerability": "cve-2022-36415", "sightings": [{"uuid": "258fc44b-52ca-4c37-b11d-5ad2a1454938", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-36415", "type": "seen", "source": "https://t.me/cibsecurity/46851", "content": "\u203c CVE-2022-36415 \u203c\n\nA DLL hijacking vulnerability exists in the uninstaller in Scooter Beyond Compare 1.8a through 4.4.2 before 4.4.3 when installed via the EXE installer. The uninstaller attempts to load DLLs out of a Windows Temp folder. If a standard user places malicious DLLs in the C:\\Windows\\Temp\\ folder, and then the uninstaller is run as SYSTEM, the DLLs will execute with elevated privileges.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-23T07:24:08.000000Z"}]}