Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| silabs.com | USBXpress Win 98SE Dev Kit | affected |
|
No data.
No data.
No data available yet.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2024-50365 | DLL hijacking vulnerabilities, caused by an uncontrolled search path in the USBXpress Win 98SE Dev Kit installer can lead to privilege escalation and arbitrary code execution when running the impacted installer. |
| Link | Providers |
|---|---|
| https://community.silabs.com/068Vm00000JUQwd |
|
Fri, 24 Jan 2025 15:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Fri, 24 Jan 2025 14:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | DLL hijacking vulnerabilities, caused by an uncontrolled search path in the USBXpress Win 98SE Dev Kit installer can lead to privilege escalation and arbitrary code execution when running the impacted installer. | |
| Title | Uncontrolled search path can lead to DLL hijacking in USBXpress Win 98SE Dev Kit installer | |
| Weaknesses | CWE-427 | |
| References |
| |
| Metrics |
cvssV3_1
|
Subscriptions
No data.
MITRE
Status: PUBLISHED
Assigner: Silabs
Published:
Updated: 2025-02-18T20:15:25.682Z
Reserved: 2024-10-03T18:33:01.176Z
Link: CVE-2024-9499
Vulnrichment
Updated: 2025-01-24T14:46:47.649Z
NVD
Status : Deferred
Published: 2025-01-24T15:15:11.967
Modified: 2026-04-15T00:35:42.020
Link: CVE-2024-9499
Redhat
No data.
OpenCVE Enrichment
No data.