SUMMARY:
In Malwarebytes before 4.5.22.236, a symbolic link may be used delete any arbitrary file on the system by exploiting the local quarantine system. It can also lead to privilege escalation in certain scenarios.
We recommend upgrading the affected endpoints to the patched versions.
| CWE | CVS 3.x | Vector |
| CWE-269: Improper Privilege Management | 8.6 High | Local |
Select your language