Privilege Escalation Vulnerability in Malwarebytes Binisoft Windows Firewall Control
CVE-2022-25150

7.8HIGH

Key Information:

Vendor: Malwarebytes
Status: Binisoft Windows Firewall Control
Vendor: CVE Published:; 14 February 2022

🔔 Create Malwarebytes Vulnerability Alert

What is CVE-2022-25150?

Malwarebytes Binisoft Windows Firewall Control versions prior to 6.8.1.0 are susceptible to a vulnerability that allows programs executed from the Tools tab to gain elevated privileges. This flaw could potentially be exploited by attackers to perform unauthorized actions or access sensitive information on the system. Users are advised to update to the latest version to mitigate the risks associated with this vulnerability.

References

https://hackerone.com/bugs?report_id=1205932

x_refsource_MISC

https://binisoft.org/changelog.txt

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 14, 2022
Vulnerability Reserved
Feb 14, 2022

CVE-2022-25150 Data

JSON