Impact
SAProuter on Microsoft Windows is vulnerable to DLL hijacking, allowing an unauthenticated attacker to load a malicious library from an untrusted location and execute arbitrary code. This flaw can compromise confidentiality, integrity, and availability of the affected system.
Affected Systems
All installations of SAProuter for Windows are potentially vulnerable; specific version information has not been disclosed.
Risk and Exploitability
The CVSS score of 8.4 indicates a high severity and the absence of an EPSS score suggests the exploit probability is unknown. The vulnerability can be exploited remotely by an attacker who can place a malicious DLL in a directory that SAProuter scans or in a path the application resolves, enabling arbitrary code execution with the privileges of the SAProuter process.
OpenCVE Enrichment