CVE-2024-42048

Published: Aug 7, 2025Modified: Aug 29, 2025

6.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Exploitability: 3.9 / Impact: 2.5

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

OpenOrange Business Framework version 1.15.5 installs to a directory with overly permissive access control, allowing all authenticated users to write to the installation path. In combination with the application's behavior of loading DLLs from this location, this allows for DLL hijacking and may result in arbitrary code execution and privilege escalation.

Related CWEs

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

References (9)

https://attack.mitre.org/techniques/T1574/001

Source: cve@mitre.org

https://docs.microsoft.com/en-us/windows/win32/api/libloaderapi/nf-libloaderapi-loadlibrarya

Source: cve@mitre.org

https://docs.microsoft.com/en-us/windows/win32/api/libloaderapi/nf-libloaderapi-loadlibraryexa

Source: cve@mitre.org

https://docs.microsoft.com/en-us/windows/win32/dlls/dynamic-link-library-search-order

Source: cve@mitre.org

https://landings.openorange.com/l/erp-peru-a.html

Source: cve@mitre.org

https://raw.githubusercontent.com/securityadvisories/Security-Advisories/refs/heads/main/Advisories/Blaze%20Information%20Security%20-%20DLL%20Hijacking%20in%20OpenOrange%20Business%20Framework%20Allows%20Arbitrary%20Code%20Execution%20and%20Potential%20Privilege%20Escalation.txt

Source: cve@mitre.org

https://resources.infosecinstitute.com/topic/dll-hijacking

Source: cve@mitre.org

https://support.microsoft.com/en-us/topic/secure-loading-of-libraries-to-prevent-dll-preloading-attacks-d41303ec-0748-9211-f317-2edc819682e1

Source: cve@mitre.org

https://www.openorange.com

Source: cve@mitre.org

Timeline

No history available yet.