HIGH🇵🇱 Wersja polska

CVE-2018-15491

CVSS 7.5v3.0pub. 2018-08-18upd. 2024-11-21

A vulnerability in the permission and encryption implementation of Zemana Anti-Logger 1.9.3.527 and prior (fixed in 1.9.3.602) allows an attacker to take control of the whitelisting feature (MyRules2.ini under %LOCALAPPDATA%\Zemana\ZALSDK) to permit execution of unauthorized applications (such as ones that record keystrokes).

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
  • Zemana Antilogger

    APP
    Zemana
    < 1.9.3.602
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2024-2180MEDIUM5.5ten sam produkt

Zemana AntiLogger v2.74.204.664 is vulnerable to a Memory Information Leak vulnerability by triggering the 0x8...

CVE-2024-2204MEDIUM5.5ten sam produkt

Zemana AntiLogger v2.74.204.664 is vulnerable to a Denial of Service (DoS) vulnerability by triggering the 0x8...

CVE-2019-6440CRITICAL9.8ten sam vendor

Zemana AntiMalware before 3.0.658 Beta mishandles update logic.

CVE-2022-42045MEDIUM6.7ten sam vendor

Certain Zemana products are vulnerable to Arbitrary code injection. This affects Watchdog Anti-Malware 4.1.422...