CVE-2022-32223
Description
Node.js is vulnerable to Hijack Execution Flow: DLL Hijacking under certain conditions on Windows platforms.This vulnerability can be exploited if the victim has the following dependencies on a Windows machine:* OpenSSL has been installed and “C:\Program Files\Common Files\SSL\openssl.cnf” exists.Whenever the above conditions are present, `node.exe` will search for `providers.dll` in the current user directory.After that, `node.exe` will try to search for `providers.dll` by the DLL Search Order in Windows.It is possible for an attacker to place the malicious file `providers.dll` under a variety of paths and exploit this vulnerability.
How to fix CVE-2022-32223
To remediate CVE-2022-32223, upgrade the affected package to a fixed version below.
- —upgrade to 0 or later
- —upgrade to 14.14.1 or later
- —upgrade to 14.14.1 or later
Is CVE-2022-32223 being exploited?
Moderate — EPSS is 8.1%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (3)
- from 0, < 0
- >= 14.0.0, < 14.14.1, >= 14.14.0, < 14.20.0, >= 16.0.0, < 16.12.1, >= 16.13.0, < 16.16.0, >= 18.0.0, < 18.0.5
- >= 14.0.0, < 14.14.1, >= 14.14.0, < 14.20.0, >= 16.0.0, < 16.12.1, >= 16.13.0, < 16.16.0, >= 18.0.0, < 18.0.5
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.3 | CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H |