Malwarebytes: >> Malwarebytes >> 1.0.14 Security Vulnerabilities
In Malwarebytes EDR 1.0.11 for Linux, it is possible to bypass the detection layers that depend on inode identifiers, because an identifier may be reused when a file is replaced, and because two files on different filesystems can have the same identifier.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-06-30
The Malwarebytes EDR 1.0.11 for Linux driver doesn't properly ensure whitelisting of executable libraries loaded by executable files, allowing arbitrary code execution. The attacker can set LD_LIBRARY_PATH, set LD_PRELOAD, or run an executable file in a debugger.
CVSS Score
7.8
EPSS Score
0.001
Published
2023-06-30