CVE-2022-32168
- Source
- https://cve.org/CVERecord?id=CVE-2022-32168
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-32168.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-32168
- Published
- 2022-09-28T09:15:09.520Z
- Modified
- 2026-03-11T00:15:04.593837Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
Notepad++ versions 8.4.1 and before are vulnerable to DLL hijacking where an attacker can replace the vulnerable dll (UxTheme.dll) with his own dll and run arbitrary code in the context of Notepad++.
- References
Affected packages
Git / github.com/notepad-plus-plus/notepad-plus-plus
Database specific
vanir_signatures
[
{
"signature_type": "Function",
"deprecated": false,
"id": "CVE-2022-32168-18f1e3b6",
"target": {
"file": "PowerEditor/src/Parameters.cpp",
"function": "NppParameters::load"
},
"digest": {
"length": 9882.0,
"function_hash": "56126566255679402210989258455246417856"
},
"signature_version": "v1",
"source": "https://github.com/notepad-plus-plus/notepad-plus-plus/commit/85d7215d9b3e0d5a8433fc31aec4f2966821051e"
},
{
"signature_type": "Line",
"deprecated": false,
"id": "CVE-2022-32168-1ad9f9ef",
"target": {
"file": "PowerEditor/src/WinControls/AboutDlg/AboutDlg.cpp"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"73934179812655448165055737310699482624",
"192340424309136113003180334543256688440",
"19848721058361772429686884547446302264",
"190923330591832819628245654696928168249",
"245670349114795025555380685219528994811"
]
},
"signature_version": "v1",
"source": "https://github.com/notepad-plus-plus/notepad-plus-plus/commit/ea1e9295ebf5886a02f1646a507b6ce3ec698f0d"
},
{
"signature_type": "Line",
"deprecated": false,
"id": "CVE-2022-32168-31dcddf2",
"target": {
"file": "PowerEditor/src/MISC/Exception/MiniDumper.cpp"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"156828762122024156172431670660865497337",
"289976768516006381916454693285740277141",
"315489414279550385234886527173753352515",
"330040123989432357509843978171413098250"
]
},
"signature_version": "v1",
"source": "https://github.com/notepad-plus-plus/notepad-plus-plus/commit/85d7215d9b3e0d5a8433fc31aec4f2966821051e"
},
{
"signature_type": "Function",
"deprecated": false,
"id": "CVE-2022-32168-8af2fba3",
"target": {
"file": "PowerEditor/src/WinControls/AboutDlg/AboutDlg.cpp",
"function": "AboutDlg::run_dlgProc"
},
"digest": {
"length": 2397.0,
"function_hash": "49448552367143298381372695524493696917"
},
"signature_version": "v1",
"source": "https://github.com/notepad-plus-plus/notepad-plus-plus/commit/ea1e9295ebf5886a02f1646a507b6ce3ec698f0d"
},
{
"signature_type": "Function",
"deprecated": false,
"id": "CVE-2022-32168-bb116b01",
"target": {
"file": "PowerEditor/src/MISC/Exception/MiniDumper.cpp",
"function": "MiniDumper::writeDump"
},
"digest": {
"length": 1707.0,
"function_hash": "152159363464505116515835069211305167594"
},
"signature_version": "v1",
"source": "https://github.com/notepad-plus-plus/notepad-plus-plus/commit/85d7215d9b3e0d5a8433fc31aec4f2966821051e"
},
{
"signature_type": "Line",
"deprecated": false,
"id": "CVE-2022-32168-d0fa637b",
"target": {
"file": "PowerEditor/src/Parameters.cpp"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"248477528690320277183539524766857091859",
"16117762653192841860348303873268124393",
"82498138416130312033565184262729199023",
"215444973407686749867596856775498582603"
]
},
"signature_version": "v1",
"source": "https://github.com/notepad-plus-plus/notepad-plus-plus/commit/85d7215d9b3e0d5a8433fc31aec4f2966821051e"
}
]
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-32168.json"