CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-53973

Zillya Total Security 3.0.2367.0 contains a privilege escalation vulnerability that allows low-privileged users to copy files to unauthorized system locations using the quarantine module. Attackers can leverage symbolic link techniques to restore quarantined files to restricted directories, potentially enabling system-level access through techniques like DLL hijacking.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 1.5%

CVSS Severity

CVSS v3 Score 8.4

References

https://www.exploit-db.com/exploits/51151
https://www.vulncheck.com/advisories/zillya-total-security-local-privilege-escalation-via-quarantine-module
https://zillya.com/
https://www.exploit-db.com/exploits/51151

Products affected by CVE-2023-53973

Zillya » Total Security » Version: 3.0.2367.0

cpe:2.3:a:zillya:total_security:3.0.2367.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-53973

Products

Pricing

Contact Us