Vulnerabilities > 360Totalsecurity > 360 Total Security > 3.5.0.1033
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-07-21 | CVE-2020-15724 | Uncontrolled Search Path Element vulnerability in 360Totalsecurity 360 Total Security In the version 12.1.0.1005 and below of 360 Total Security, when the Gamefolde calls GameChrome.exe, there exists a local privilege escalation vulnerability. | 7.8 |
| 2020-07-21 | CVE-2020-15723 | Uncontrolled Search Path Element vulnerability in 360Totalsecurity 360 Total Security In the version 12.1.0.1004 and below of 360 Total Security, when the main process of 360 Total Security calls GameChrome.exe, there exists a local privilege escalation vulnerability. | 7.8 |
| 2020-07-21 | CVE-2020-15722 | Uncontrolled Search Path Element vulnerability in 360Totalsecurity 360 Total Security In version 12.1.0.1004 and below of 360 Total Security,when TPI calls the browser process, there exists a local privilege escalation vulnerability. | 7.8 |
| 2018-10-23 | CVE-2018-18603 | Unspecified vulnerability in 360Totalsecurity 360 Total Security 3.5.0.1033 360 Total Security 3.5.0.1033 allows a Sandbox Escape via an "import os" statement, followed by os.system("CMD") or os.system("PowerShell"), within a .py file. | 6.3 |
| 2017-08-07 | CVE-2017-12653 | Uncontrolled Search Path Element vulnerability in 360Totalsecurity 360 Total Security 3.5.0.1033/9.0.0.1202 360 Total Security 9.0.0.1202 before 2017-07-07 allows Privilege Escalation via a Trojan horse Shcore.dll file in any directory in the PATH, as demonstrated by the C:\Python27 directory. | 7.8 |