Vulnerabilities > Malwarebytes > High

DATE CVE VULNERABILITY TITLE RISK
2019-06-03 CVE-2019-6739 Command Injection vulnerability in Malwarebytes Antimalware 3.6.1.2711
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Malwarebytes Antimalware 3.6.1.2711.
network
low complexity
malwarebytes CWE-77
8.8
2018-03-21 CVE-2016-10717 7PK - Security Features vulnerability in Malwarebytes Anti-Malware 2.2.1
A vulnerability in the encryption and permission implementation of Malwarebytes Anti-Malware consumer version 2.2.1 and prior (fixed in 3.0.4) allows an attacker to take control of the whitelisting feature (exclusions.dat under %SYSTEMDRIVE%\ProgramData) to permit execution of unauthorized applications including malware and malicious websites.
local
low complexity
malwarebytes CWE-254
7.8
2018-01-08 CVE-2018-5279 Improper Input Validation vulnerability in Malwarebytes 3.3.1.2183
In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e02c.
local
low complexity
malwarebytes CWE-20
7.8
2018-01-08 CVE-2018-5278 Improper Input Validation vulnerability in Malwarebytes 3.3.1.2183
In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e00c.
local
low complexity
malwarebytes CWE-20
7.8
2018-01-08 CVE-2018-5277 Improper Input Validation vulnerability in Malwarebytes 3.3.1.2183
In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e000.
local
low complexity
malwarebytes CWE-20
7.8
2018-01-08 CVE-2018-5276 Improper Input Validation vulnerability in Malwarebytes 3.3.1.2183
In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e018.
local
low complexity
malwarebytes CWE-20
7.8
2018-01-08 CVE-2018-5275 Improper Input Validation vulnerability in Malwarebytes 3.3.1.2183
In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9C40E020.
local
low complexity
malwarebytes CWE-20
7.8
2018-01-08 CVE-2018-5274 Improper Input Validation vulnerability in Malwarebytes 3.3.1.2183
In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9C40E024.
local
low complexity
malwarebytes CWE-20
7.8
2018-01-08 CVE-2018-5273 Improper Input Validation vulnerability in Malwarebytes 3.3.1.2183
In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e014.
local
low complexity
malwarebytes CWE-20
7.8
2018-01-08 CVE-2018-5272 Improper Input Validation vulnerability in Malwarebytes 3.3.1.2183
In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c40e004.
local
low complexity
malwarebytes CWE-20
7.8