cvedb.io
CVE-2024-7834
HIGH · CVSS 7.8
EPSS exploitation probability: 0%
Published 2024-09-04T13:15:07.030 · Last modified 2026-06-17T08:21:00.577

Summary

A local privilege escalation is caused by Overwolf loading and executing certain dynamic link library files from a user-writeable folder in SYSTEM context on launch. This allows an attacker with unprivileged access to the system to run arbitrary code with SYSTEM privileges by placing a malicious .dll file in the respective location.

Affected products

overwolf — overwolf

Does this affect you?

Add your gear to cvedb and we'll alert you only when overwolf ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.