Untrusted Search Path Vulnerability in Glarysoft Glary Utilities
CVE-2018-0619

7.8HIGH

Key Information:

Vendor
CVE Published:
26 July 2018

What is CVE-2018-0619?

A vulnerability exists in the installer of Glarysoft Glary Utilities, where an untrusted search path allows attackers to exploit this weakness by introducing a Trojan horse DLL in an unspecified directory. This could lead to escalation of privileges, allowing unauthorized actions to be executed within the system.

Affected Version(s)

Installer of Glary Utilities Glary Utilities 5.99 and earlier and Glary Utilities Pro 5.99 and earlier

References

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.