CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-29145

The Malwarebytes EDR 1.0.11 for Linux driver doesn't properly ensure whitelisting of executable libraries loaded by executable files, allowing arbitrary code execution. The attacker can set LD_LIBRARY_PATH, set LD_PRELOAD, or run an executable file in a debugger.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 22.9%

CVSS Severity

CVSS v3 Score 7.8

References

https://malwarebytes.com
https://www.malwarebytes.com/secure/cves/cve-2023-29145
https://malwarebytes.com
https://www.malwarebytes.com/secure/cves/cve-2023-29145

Products affected by CVE-2023-29145

Malwarebytes » Endpoint Detection And Response » Version: N/A

cpe:2.3:a:malwarebytes:endpoint_detection_and_response:-
Malwarebytes » Endpoint Detection And Response » Version: 1.0.11

cpe:2.3:a:malwarebytes:endpoint_detection_and_response:1.0.11
Malwarebytes » Malwarebytes » Version: N/A

cpe:2.3:a:malwarebytes:malwarebytes:-
Malwarebytes » Malwarebytes » Version: 1.0.14

cpe:2.3:a:malwarebytes:malwarebytes:1.0.14

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-29145

Products

Pricing

Contact Us