Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
TOCTOU Vulnerability in Quick Heal Total Security
Vulnerability Description
Time of Check - Time of Use (TOCTOU) vulnerability in Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, potentially leading to deletion of system files. This is achieved through exploiting the time between detecting a file as malicious and when the action of quarantining or cleaning is performed, and using the time to replace the malicious file by a symlink.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:H
Vulnerability Type
N/A
Vulnerability Title
Quick Heal 安全漏洞
Vulnerability Description
Quick Heal是Quick Heal公司的一款防病毒软件,为您的 PC、Mac、手机、平板电脑和企业网络提供 IT 安全解决方案。 Quick Heal Total Security 12.1.1.27之前版本存在安全漏洞,该漏洞源于应用总存在TOCTOU(time-of-check-to-time-of-use)竞争条件。攻击者利用该漏洞可以实现权限提升。
CVSS Information
N/A
Vulnerability Type
N/A