Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
DLL Hijacking Vulnerability in Quick Heal Total Security
Vulnerability Description
A DLL hijacking vulnerability in the installed for Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, leading to execution of arbitrary code, via the installer not restricting the search path for required DLLs and then not verifying the signature of the DLLs it tries to load.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:H
Vulnerability Type
N/A
Vulnerability Title
Quick Heal 代码问题漏洞
Vulnerability Description
Quick Heal是Quick Heal公司的一款防病毒软件,为您的 PC、Mac、手机、平板电脑和企业网络提供 IT 安全解决方案。 Quick Heal Total Security 12.1.1.27之前版本存在代码问题漏洞,该漏洞源于应用在安装期间缺少权限控制。攻击者利用该漏洞可以在安装期间劫持DLL。
CVSS Information
N/A
Vulnerability Type
N/A