Malwarebytes

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-29144 1Malwarebytes 1Malwarebytes Dec 19, 2025 Dec 12, 2025 N/A· v4 3.3 LOW· v3 N/A· v2 Malwarebytes 1.0.14 for Linux doesn't properly compute signatures in some scenarios. This allows a bypass of detection.
CVE-2024-6260 1Malwarebytes 1Antimalware Aug 15, 2025 Nov 22, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Malwarebytes Antimalware Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Malwarebytes Antimalware. An attacker must f...Show more Malwarebytes Antimalware Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Malwarebytes Antimalware. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Malwarebytes service. By creating a symbolic link, an attacker can abuse the service to delete a file. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of SYSTEM. Was ZDI-CAN-22321.Show less
CVE-2024-25089 1Malwarebytes 1Binisoft Windows Firewall Control Nov 21, 2024 Feb 4, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Malwarebytes Binisoft Windows Firewall Control before 6.9.9.2 allows remote attackers to execute arbitrary code via gRPC named pipes.
CVE-2023-29147 1Malwarebytes 2Endpoint Detection And Response Malwarebytes Nov 26, 2024 Jun 30, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In Malwarebytes EDR 1.0.11 for Linux, it is possible to bypass the detection layers that depend on inode identifiers, because an identifier may be reused when a file is replaced, and because two files on different filesy...Show more In Malwarebytes EDR 1.0.11 for Linux, it is possible to bypass the detection layers that depend on inode identifiers, because an identifier may be reused when a file is replaced, and because two files on different filesystems can have the same identifier.Show less
CVE-2023-29145 1Malwarebytes 2Endpoint Detection And Response Malwarebytes Nov 26, 2024 Jun 30, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 The Malwarebytes EDR 1.0.11 for Linux driver doesn't properly ensure whitelisting of executable libraries loaded by executable files, allowing arbitrary code execution. The attacker can set LD_LIBRARY_PATH, set LD_PRELOA...Show more The Malwarebytes EDR 1.0.11 for Linux driver doesn't properly ensure whitelisting of executable libraries loaded by executable files, allowing arbitrary code execution. The attacker can set LD_LIBRARY_PATH, set LD_PRELOAD, or run an executable file in a debugger.Show less
CVE-2023-27469 1Malwarebytes 1Anti Exploit Nov 26, 2024 Jun 30, 2023 N/A· v4 7.1 HIGH· v3 N/A· v2 Malwarebytes Anti-Exploit 4.4.0.220 is vulnerable to arbitrary file deletion and denial of service via an ALPC message in which FullFileNamePath lacks a '\0' character.
CVE-2023-36631 1Malwarebytes 1Binisoft Windows Firewall Control Nov 21, 2024 Jun 26, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Lack of access control in wfc.exe in Malwarebytes Binisoft Windows Firewall Control 6.9.2.0 allows local unprivileged users to bypass Windows Firewall restrictions via the user interface's rules tab. NOTE: the vendor's p...Show more Lack of access control in wfc.exe in Malwarebytes Binisoft Windows Firewall Control 6.9.2.0 allows local unprivileged users to bypass Windows Firewall restrictions via the user interface's rules tab. NOTE: the vendor's perspective is "this is intended behavior as the application can be locked using a password."Show less
CVE-2023-28892 1Malwarebytes 1Adwcleaner Nov 21, 2024 Mar 29, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Malwarebytes AdwCleaner 8.4.0 runs as Administrator and performs an insecure file delete operation on C:\AdwCleaner\Logs\AdwCleaner_Debug.log in which the target location is user-controllable, allowing a non-admin user t...Show more Malwarebytes AdwCleaner 8.4.0 runs as Administrator and performs an insecure file delete operation on C:\AdwCleaner\Logs\AdwCleaner_Debug.log in which the target location is user-controllable, allowing a non-admin user to escalate privileges to SYSTEM via a symbolic link.Show less
CVE-2023-26088 1Malwarebytes 1Malwarebytes Nov 21, 2024 Mar 23, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 In Malwarebytes before 4.5.23, a symbolic link may be used delete any arbitrary file on the system by exploiting the local quarantine system. It can also lead to privilege escalation in certain scenarios.
CVE-2022-25150 1Malwarebytes 1Binisoft Windows Firewall Control Nov 21, 2024 Feb 14, 2022 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 In Malwarebytes Binisoft Windows Firewall Control before 6.8.1.0, programs executed from the Tools tab can be used to escalate privileges.
CVE-2020-25533 1Malwarebytes 1Malwarebytes Nov 21, 2024 Jan 15, 2021 N/A· v4 7.0 HIGH· v3 6.9 MEDIUM· v2 An issue was discovered in Malwarebytes before 4.0 on macOS. A malicious application was able to perform a privileged action within the Malwarebytes launch daemon. The privileged service improperly validated XPC connecti...Show more An issue was discovered in Malwarebytes before 4.0 on macOS. A malicious application was able to perform a privileged action within the Malwarebytes launch daemon. The privileged service improperly validated XPC connections by relying on the PID instead of the audit token. An attacker can construct a situation where the same PID is used for running two different programs at different times, by leveraging a race condition during crafted use of posix_spawn.Show less
CVE-2020-28641 1Malwarebytes 2Endpoint Protection Malwarebytes Nov 21, 2024 Dec 22, 2020 N/A· v4 7.1 HIGH· v3 6.6 MEDIUM· v2 In Malwarebytes Free 4.1.0.56, a symbolic link may be used delete an arbitrary file on the system by exploiting the local quarantine system.
CVE-2020-11507 1Malwarebytes 1Adwcleaner Nov 21, 2024 Apr 6, 2020 N/A· v4 7.8 HIGH· v3 6.9 MEDIUM· v2 An Untrusted Search Path vulnerability in Malwarebytes AdwCleaner 8.0.3 could cause arbitrary code execution with SYSTEM privileges when a malicious DLL library is loaded.
CVE-2019-19929 1Malwarebytes 1Adwcleaner Nov 21, 2024 Dec 23, 2019 N/A· v4 7.8 HIGH· v3 6.9 MEDIUM· v2 An Untrusted Search Path vulnerability in Malwarebytes AdwCleaner before 8.0.1 could cause arbitrary code execution with SYSTEM privileges when a malicious DLL library is loaded by the product.
CVE-2019-6739 1Malwarebytes 1Antimalware Nov 21, 2024 Jun 3, 2019 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Malwarebytes Antimalware 3.6.1.2711. User interaction is required to exploit this vulnerability in that the target must...Show more This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Malwarebytes Antimalware 3.6.1.2711. User interaction is required to exploit this vulnerability in that the target must visit a malicious web page. There is an issue with the way the product handles URIs within certain schemes. The product does not warn the user that a dangerous navigation is about to take place. Because special characters in the URI are not sanitized, this could lead to the execution of arbitrary commands. An attacker can leverage this vulnerability to execute code in the context of the current user at medium integrity. Was ZDI-CAN-7162.Show less
CVE-2016-10717 1Malwarebytes 1Malwarebytes Anti Malware Nov 21, 2024 Mar 21, 2018 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 A vulnerability in the encryption and permission implementation of Malwarebytes Anti-Malware consumer version 2.2.1 and prior (fixed in 3.0.4) allows an attacker to take control of the whitelisting feature (exclusions.da...Show more A vulnerability in the encryption and permission implementation of Malwarebytes Anti-Malware consumer version 2.2.1 and prior (fixed in 3.0.4) allows an attacker to take control of the whitelisting feature (exclusions.dat under %SYSTEMDRIVE%\ProgramData) to permit execution of unauthorized applications including malware and malicious websites. Files blacklisted by Malwarebytes Malware Protect can be executed, and domains blacklisted by Malwarebytes Web Protect can be reached through HTTP.Show less
CVE-2018-5279 1Malwarebytes 1Malwarebytes Nov 21, 2024 Jan 8, 2018 N/A· v4 7.8 HIGH· v3 6.1 MEDIUM· v2 In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e0...Show more In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e02c. NOTE: the vendor reported that they "have not been able to reproduce the issue on any Windows operating system version (32-bit or 64-bit).Show less
CVE-2018-5278 1Malwarebytes 1Malwarebytes Nov 21, 2024 Jan 8, 2018 N/A· v4 7.8 HIGH· v3 6.1 MEDIUM· v2 In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e0...Show more In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e00c. NOTE: the vendor reported that they "have not been able to reproduce the issue on any Windows operating system version (32-bit or 64-bit).Show less
CVE-2018-5277 1Malwarebytes 1Malwarebytes Nov 21, 2024 Jan 8, 2018 N/A· v4 7.8 HIGH· v3 6.1 MEDIUM· v2 In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e0...Show more In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e000. NOTE: the vendor reported that they "have not been able to reproduce the issue on any Windows operating system version (32-bit or 64-bit).Show less
CVE-2018-5276 1Malwarebytes 1Malwarebytes Nov 21, 2024 Jan 8, 2018 N/A· v4 7.8 HIGH· v3 6.1 MEDIUM· v2 In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e0...Show more In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e018. NOTE: the vendor reported that they "have not been able to reproduce the issue on any Windows operating system version (32-bit or 64-bit).Show less

12 Next