CVE-2024-7326

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jul 31, 2024

Updated: Aug 15, 2024

CWE ID 427

Summary

CVE-2024-7326 is a newly discovered critical vulnerability affecting IObit DualSafe Password Manager version 1.4.0.3. The issue lies within the RTL120.BPL library component, specifically in the BPL Handler. This vulnerability results in an uncontrolled search path, making it possible for an attacker to launch an attack on the local host. The vulnerability has been assigned the identifier VDB-273249. Despite early disclosure, the vendor has not responded to the disclosure.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

DualSafe Password Manager

Affected Vendors

IObit

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/xXpJ6T
https://www.cve.org/CVERecord?id=CVE-2024-7326
https://nvd.nist.gov/vuln/detail/CVE-2024-7326

Back to Vulnerability Database