KEVIntel
Back to KEVs
7.8
CVSS
High

CVE-2022-23748

PUBLISHED

mDNSResponder.exe is vulnerable to DLL Sideloading attack. Executable improperly specifies how to load the DLL, from which folder and under what...

Exploited in the wild Low complexity
Vendor
Apple
Product
Audinate Dante Application Library for Windows
Published
Nov 17, 2022
EPSS

Description

mDNSResponder.exe is vulnerable to DLL Sideloading attack. Executable improperly specifies how to load the DLL, from which folder and under what conditions. In these scenarios, a malicious attacker could be using the valid and legitimate executable to load malicious files.

windows ios cisa

CVSS scores

CVSS v3.1 7.8 High

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitation status

Exploited in the wild

Recorded 2025-02-06 00:00:00 UTC · Source

SSVC decision points

Exploitation
active
Automatable
No
Technical impact
total

References

Known exploited vulnerability sources

Catalogues that list this CVE as a known exploited vulnerability.

Source Added
CISA Feb 06, 2025

Timeline

  • CVE ID Reserved

  • CVE Published to Public

  • Added to KEVIntel