CVE-2024-9493

High

Published: 24 January 2025

Published

24 January 2025

Modified

15 April 2026

KEV Added

—

Patch

—

CVSS Score 8.6 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

EPSS Score 0.0008 22.4th percentile

Risk Priority 17 60% EPSS · 20% KEV · 20% CVSS

Description

DLL hijacking vulnerabilities, caused by an uncontrolled search path in the ToolStick installer can lead to privilege escalation and arbitrary code execution when running the impacted installer.

Security Summary

CVE-2024-9493 is a DLL hijacking vulnerability stemming from an uncontrolled search path (CWE-427) in the ToolStick installer from Silicon Labs. This flaw affects users running the impacted installer, enabling malicious DLL loading during execution. The vulnerability carries a CVSS v3.1 base score of 8.6 (AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H), indicating high severity due to its potential for significant impact with local access and user interaction.

A local attacker with no required privileges can exploit this by placing a malicious DLL in a directory included in the installer's search path. When a user runs the ToolStick installer, it loads the attacker's DLL instead of the legitimate one, resulting in privilege escalation and arbitrary code execution with the installer's privileges.

Silicon Labs has published an advisory on their community site (https://community.silabs.com/068Vm00000JUQwd) addressing the issue, with details on mitigations for affected ToolStick installer versions.

Details

CWE(s): CWE-427

References

https://community.silabs.com/068Vm00000JUQwd
product-security@silabs.com