16Ara
CVE-2023-6891 | PeaZip 9.4.0 Library dragdropfilesdll.dll uncontrolled search path
A vulnerability has been found in PeaZip 9.4.0 and classified as problematic. Affected by this vulnerability is an unknown functionality in the library dragdropfilesdll.dll of the component Library Handler. The manipulation leads to uncontrolled search path. This vulnerability is known as CVE-2023-6891. An attack has to be approached locally. There is no exploit available. Vendor was contacted early, confirmed the existence of the flaw and immediately worked on a patched release. It is recommended to upgrade the affected component.