Vulnerability-Lookup - Search a vulnerability

All the vulnerabilites related to Malwarebytes - Anti-Malware

cve-2024-6260

Vulnerability from cvelistv5

Published

2024-11-22 20:05

Modified

2024-11-22 20:05

Severity ?

7.0 (High) - CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

Malwarebytes Antimalware Link Following Local Privilege Escalation Vulnerability

References

▼	URL	Tags
	https://www.zerodayinitiative.com/advisories/ZDI-24-1195/	x_research-advisory
	https://www.malwarebytes.com/secure/cves	vendor-advisory

Impacted products

▼	Vendor	Product
	Malwarebytes	Anti-Malware

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unknown",
          "product": "Anti-Malware",
          "vendor": "Malwarebytes",
          "versions": [
            {
              "status": "affected",
              "version": "4.6.6"
            }
          ]
        }
      ],
      "dateAssigned": "2024-06-21T16:48:25.146-05:00",
      "datePublic": "2024-09-05T13:19:47.580-05:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Malwarebytes Antimalware Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Malwarebytes Antimalware. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.\n\nThe specific flaw exists within the Malwarebytes service. By creating a symbolic link, an attacker can abuse the service to delete a file. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. Was ZDI-CAN-22321."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-59",
              "description": "CWE-59: Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-11-22T20:05:47.059Z",
        "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "shortName": "zdi"
      },
      "references": [
        {
          "name": "ZDI-24-1195",
          "tags": [
            "x_research-advisory"
          ],
          "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-1195/"
        },
        {
          "name": "vendor-provided URL",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.malwarebytes.com/secure/cves"
        }
      ],
      "source": {
        "lang": "en",
        "value": "Anonymous"
      },
      "title": "Malwarebytes Antimalware Link Following Local Privilege Escalation Vulnerability"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
    "assignerShortName": "zdi",
    "cveId": "CVE-2024-6260",
    "datePublished": "2024-11-22T20:05:47.059Z",
    "dateReserved": "2024-06-21T21:48:25.129Z",
    "dateUpdated": "2024-11-22T20:05:47.059Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}