Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Scootersoftware Subscribe
Filtered by product Beyond Compare
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-36414 1 Scootersoftware 1 Beyond Compare 2022-08-02 N/A 6.7 MEDIUM
There is an elevation of privilege breakout vulnerability in the Windows EXE installer in Scooter Beyond Compare 4.2.0 through 4.4.2 before 4.4.3. Affected versions allow a logged-in user to run applications with elevated privileges via the Clipboard Compare tray app after installation.
CVE-2022-36415 1 Scootersoftware 1 Beyond Compare 2022-08-01 N/A 7.8 HIGH
A DLL hijacking vulnerability exists in the uninstaller in Scooter Beyond Compare 1.8a through 4.4.2 before 4.4.3 when installed via the EXE installer. The uninstaller attempts to load DLLs out of a Windows Temp folder. If a standard user places malicious DLLs in the C:\Windows\Temp\ folder, and then the uninstaller is run as SYSTEM, the DLLs will execute with elevated privileges.