CVE-2026-3780
The application's installer runs with elevated privileges but resolves system executables and DLLs using untrusted search paths that can include user-writable directories, allowing a local attacker to place malicious binaries with the same names and have them loaded or executed instead of the legitimate system files, resulting in local privilege escalation.
Vendor
-
Product
-
CWE
Yayın Tarihi
2026-04-01 02:16:03
Güncelleme
2026-04-01 14:23:37
Source Identifier
14984358-7092-470d-8f34-ade47a7658a2
KEV Date Added
-