Malwarebytes Anti-Exploit vulnerabilities
2 known vulnerabilities affecting malwarebytes/malwarebytes_anti-exploit.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
CRITICAL1LOW1
Vulnerabilities
Page 1 of 1
CVE-2014-4936P2CRITICALCVSS 9.3PoC≤ 1.04.1.10122014-12-16
CVE-2014-4936 [CRITICAL] CWE-345 CVE-2014-4936: The upgrade functionality in Malwarebytes Anti-Malware (MBAM) consumer before 2.0.3 and Malwarebytes
The upgrade functionality in Malwarebytes Anti-Malware (MBAM) consumer before 2.0.3 and Malwarebytes Anti-Exploit (MBAE) consumer 1.04.1.1012 and earlier allow man-in-the-middle attackers to execute arbitrary code by spoofing the update server and uploading an executable.
nvd
CVE-2014-100039P4LOWCVSS 2.1PoC≤ 1.04.1.10122015-01-13
CVE-2014-100039 [LOW] CWE-20 CVE-2014-100039: mbae.sys in Malwarebytes Anti-Exploit before 1.05.1.2014 allows local users to cause a denial of ser
mbae.sys in Malwarebytes Anti-Exploit before 1.05.1.2014 allows local users to cause a denial of service (crash) via a crafted size in an unspecified IOCTL call, which triggers an out-of-bounds read. NOTE: some of these details are obtained from third party information.
nvd