HIGH🇬🇧 English

CVE-2021-26624

CVSS 7.8v3.1pub. 2022-04-01upd. 2024-11-21

An local privilege escalation vulnerability due to a "runasroot" command in eScan Anti-Virus. This vulnerability is due to invalid arguments and insufficient execution conditions related to "runasroot" command. This vulnerability can induce remote attackers to exploit root privileges by manipulating parameter values.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Escanav Escan Anti Virus

    APP
    Escanav
    < 7.0.31
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
LPE
CWE
Referencje

Powiązane podatności

CVE-2025-0798CRITICAL9.2PL ✓ten sam produkt

Command injection w MicroWorld eScan Antivirus 7.0.32 (Linux) — RCE

CVE-2018-18388CRITICAL9.8ten sam produkt

eScan Agent Application (MWAGENT.EXE) 4.0.2.98 in MicroWorld Technologies eScan 14.0 allows remote or local at...

CVE-2023-4383HIGH7.8ten sam produkt

A vulnerability, which was classified as critical, was found in MicroWorld eScan Anti-Virus 7.0.32 on Linux. T...

CVE-2025-1366MEDIUM4.8ten sam produkt

A vulnerability was found in MicroWord eScan Antivirus 7.0.32 on Linux and classified as critical. Affected by...

CVE-2025-1367MEDIUM4.8ten sam produkt

A vulnerability was found in MicroWord eScan Antivirus 7.0.32 on Linux. It has been classified as critical. Th...