Description: Under certain circumstances, when manipulating the Windows registry, InstallBuilder uses the reg.exe system command. The full path to the command is not enforced, which results in a search in the search path until a binary can be identified. This makes the installer/uninstaller vulnerable to Path Interception by Search Order Hijacking, potentially allowing an attacker to plant a malicious reg.exe command so it takes precedence over the system command. The vulnerability only affects Windows installers.
CVE-2021-22037
Published Date: 2021-10-29T12:15Z
Last Modified: 2021-11-03T18:23Z
CVSS Score: 7.8 (HIGH)
EPSS Score: 0.06%
Risk Score: 5.46 (HIGH)
Risk Score based on CVSS score and EPSS. This score is for reference purposes and is not internationally recognized.
CVSS:
7.8 |
EPSS:
0.06%
Mitre ATT&CK Technical v15.1
T1574.008 – Path Interception by Search Order Hijacking
T1034 – Path Interception
T1053.002 – At
Technical Analysis & Mitigation Measures
Reference Links
Vendor - Produce - Version
installbuilder - vmware
Disclaimer
The content on this website is automatically sourced from external websites such as the National Vulnerability Database (NVD), GitHub, and other security-related sources. This content is for reference purposes only, and we are not responsible for the accuracy or integrity of the information linked or displayed from these sources.