Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
malwarebytes vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-4936
The upgrade functionality in Malwarebytes Anti-Malware (MBAM) consumer prior to 2.0.3 and Malwarebytes Anti-Exploit (MBAE) consumer 1.04.1.1012 and previous versions allow man-in-the-middle malicious users to execute arbitrary code by spoofing the update server and uploading an e...
Malwarebytes Malwarebytes Anti-exploit
Malwarebytes Malwarebytes Anti-malware
1 EDB exploit
1 Github repository
7.1
CVSSv3
CVE-2020-28641
In Malwarebytes Free 4.1.0.56, a symbolic link may be used delete an arbitrary file on the system by exploiting the local quarantine system.
Malwarebytes Endpoint Protection
Malwarebytes Malwarebytes 4.1.0.56
7.8
CVSSv3
CVE-2023-29145
The Malwarebytes EDR 1.0.11 for Linux driver doesn't properly ensure whitelisting of executable libraries loaded by executable files, allowing arbitrary code execution. The attacker can set LD_LIBRARY_PATH, set LD_PRELOAD, or run an executable file in a debugger.
Malwarebytes Malwarebytes
Malwarebytes Endpoint Detection And Response
5.5
CVSSv3
CVE-2023-29147
In Malwarebytes EDR 1.0.11 for Linux, it is possible to bypass the detection layers that depend on inode identifiers, because an identifier may be reused when a file is replaced, and because two files on different filesystems can have the same identifier.
Malwarebytes Malwarebytes
Malwarebytes Endpoint Detection And Response
7
CVSSv3
CVE-2020-25533
An issue exists in Malwarebytes prior to 4.0 on macOS. A malicious application was able to perform a privileged action within the Malwarebytes launch daemon. The privileged service improperly validated XPC connections by relying on the PID instead of the audit token. An attacker ...
Malwarebytes Malwarebytes
7.8
CVSSv3
CVE-2023-26088
In Malwarebytes prior to 4.5.23, a symbolic link may be used delete any arbitrary file on the system by exploiting the local quarantine system. It can also lead to privilege escalation in certain scenarios.
Malwarebytes Malwarebytes
7.8
CVSSv3
CVE-2018-5270
In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e010. NOTE: the vendor reported that they "have not been ...
Malwarebytes Malwarebytes 3.3.1.2183
7.8
CVSSv3
CVE-2018-5271
In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e008. NOTE: the vendor reported that they "have not been ...
Malwarebytes Malwarebytes 3.3.1.2183
7.8
CVSSv3
CVE-2018-5273
In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e014. NOTE: the vendor reported that they "have not been ...
Malwarebytes Malwarebytes 3.3.1.2183
7.8
CVSSv3
CVE-2018-5275
In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9C40E020. NOTE: the vendor reported that they "have not been ...
Malwarebytes Malwarebytes 3.3.1.2183
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »