Exploit for Uncontrolled Search Path Element in Outbyte Pc_Repair CVE-2022-36271

Name: Exploit for Uncontrolled Search Path Element in Outbyte Pc_Repair CVE-2022-36271
Rating: 5 (966 reviews)

2022-08-16 | CVSS 7.8

## https://sploitus.com/exploit?id=775DA422-346E-5319-AB84-4DBEF106B57C
# POC-of-CVE-2022-36271
 ![cve1](https://user-images.githubusercontent.com/66937297/187968056-dae28ecc-29a8-4f96-9681-be7c647a2202.png)

 
 The name of an affected Product : Outbyte PC Repair Installation File
 
 The affected version : 1.7.112.7856
 
 The CVE ID for the entry : CVE-2022-36271
 
 Description:  iertutil.dll is missing so an attacker can use a malicious dll with same name and can get a admin privileges and also perform a way of persistence on the victim machine.
 
 Vulnerability Type: DLL Hijacking
 
This is working POC of CVE-2022-36271 
![CVE-2022-36271 ](https://user-images.githubusercontent.com/66937297/184972630-5c831ba9-6474-4897-a935-aa841c73abb0.gif)