QwikSec

Security Database

CVE

CWE

Training

CVE-2026-40031

Published: Apr 8, 2026

Modified: May 8, 2026

PUBLISHED

CVSS v3.1

7.8

HIGH

Description

MemProcFS before 5.17 contains multiple unsafe library-loading patterns that enable DLL and shared-library hijacking across six attack surfaces, including bare-name LoadLibraryU and dlopen calls without path qualification for vmmpyc, libMSCompression, and plugin DLLs. An attacker who places a malicious DLL or shared library in the working directory or manipulates LD_LIBRARY_PATH can achieve arbitrary code execution when MemProcFS loads.

Vendor	Product	Versions
ufrisk	MemProcFS	affected `0 - <= 5.16.12` unaffected `5.17.0` unaffected `df80e6e83641f5004025ce661e6dd8139028d7b5`

Weaknesses (CWE)

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

References

product

patch

Mobasi Sentinel Vulnerability Index

vendor-advisory

VulnCheck Advisory: MemProcFS < 5.17 DLL/Shared Library Hijacking

third-party-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.