Question 1

What is CVE-2022-23748 — Dante Discovery Process Control Vulnerability?

Accepted Answer

Dante Discovery contains a process control vulnerability in mDNSResponder.exe that all allows for a DLL sideloading attack. A local attacker can leverage this vulnerability in the Dante Application Library to execute arbitrary code.

Question 2

What is the authoritative source for CVE-2022-23748?

Accepted Answer

Dante Discovery Process Control Vulnerability (CVE-2022-23748) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVE-2022-23748Dante Discovery Process Control Vulnerability

Description

Scoring

CISA KEV entry

(incoming)1

Related by meaning· 6