Vulnerabilities
Vulnerable Software
Malwarebytes 4.5 contains an unquoted service path vulnerability in the MBAMService executable that allows local attackers to escalate privileges by injecting malicious code into the system root path. Attackers can place executable files in unquoted path directories that execute with LocalSystem privileges during service startup or system reboot.
CVSS Score
8.5
EPSS Score
0.002
Published
2026-06-19
In Malwarebytes before 4.5.23, a symbolic link may be used delete any arbitrary file on the system by exploiting the local quarantine system. It can also lead to privilege escalation in certain scenarios.
CVSS Score
7.8
EPSS Score
0.005
Published
2023-03-23


Contact Us

Shodan ® - All rights reserved