17Eki
CVE-2024-10068 | OpenSight Software FlashFXP 5.4.0.3970 FlashFXP.exe uncontrolled search path
A vulnerability was found in OpenSight Software FlashFXP 5.4.0.3970. It has been classified as critical. Affected is an unknown function in the library libcrypto-1_1.dll of the file FlashFXP.exe. The manipulation leads to uncontrolled search path. This vulnerability is traded as CVE-2024-10068. An attack has to be approached locally. Furthermore, there is an exploit available. The vendor was contacted early about this disclosure but did not respond in any way.