HIGH🇬🇧 English

CVE-2023-4383

CVSS 7.8v3.1pub. 2023-08-16upd. 2024-11-21

A vulnerability, which was classified as critical, was found in MicroWorld eScan Anti-Virus 7.0.32 on Linux. This affects an unknown part of the file runasroot. The manipulation leads to incorrect execution-assigned permissions. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-237315. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Escanav Escan Anti Virus

    APP
    Escanav
    7.0.32
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2025-0798CRITICAL9.2PL ✓ten sam produkt

Command injection w MicroWorld eScan Antivirus 7.0.32 (Linux) — RCE

CVE-2018-18388CRITICAL9.8ten sam produkt

eScan Agent Application (MWAGENT.EXE) 4.0.2.98 in MicroWorld Technologies eScan 14.0 allows remote or local at...

CVE-2021-26624HIGH7.8ten sam produkt

An local privilege escalation vulnerability due to a "runasroot" command in eScan Anti-Virus. This vulnerabili...

CVE-2025-1366MEDIUM4.8ten sam produkt

A vulnerability was found in MicroWord eScan Antivirus 7.0.32 on Linux and classified as critical. Affected by...

CVE-2025-1367MEDIUM4.8ten sam produkt

A vulnerability was found in MicroWord eScan Antivirus 7.0.32 on Linux. It has been classified as critical. Th...