EUVD-2018-2792

Malware in sbrugna...

CVE-2024-35214 Vulnerability in CylanceOPTICS Windows Installer Package Impacts CylanceOPTICS for Windows

A tampering vulnerability in the CylanceOPTICS Windows Installer Package of CylanceOPTICS for Windows version 3.2 and 3.3 could allow an attacker to potentially uninstall CylanceOPTICS from a system thereby leaving it with only the protection of CylancePROTECT...

CVE-2024-35214 Vulnerability in CylanceOPTICS Windows Installer Package Impacts CylanceOPTICS for Windows

A tampering vulnerability in the CylanceOPTICS Windows Installer Package of CylanceOPTICS for Windows version 3.2 and 3.3 could allow an attacker to potentially uninstall CylanceOPTICS from a system thereby leaving it with only the protection of CylancePROTECT...

CVE-2024-35214

CVE-2024-35214 affects BlackBerry CylanceOPTICS for Windows, specifically the Windows Installer Package in versions 3.2 and 3.3. The issue is a tampering vulnerability in the installer that could allow an attacker with local access to uninstall CylanceOPTICS, potentially leaving the system with o...

The vulnerability of the analysis mechanism of machine learning models used in antivirus protection software CylancePROTECT allows attackers to introduce malicious files by bypassing the protection mechanisms, by embedding specially crafted code into the malicious files.

The vulnerability of the analysis mechanism for machine learning models used in antivirus protection software CylancePROTECT exists due to insufficient verification of input data. Exploiting this vulnerability allows a malicious actor to introduce a malicious file by bypassing the protection...

Cylance CylancePROTECT Privilege Extraction Vulnerability

Cylance CylancePROTECT is a suite of endpoint security protection software from Cylance USA. The software is capable of preventing ransomware, malware, and other attacks. A security vulnerability exists in Cylance CylancePROTECT versions prior to 1470, which stems from a user having...

CylancePROTECT 2.0.x < 2.0.1480 SSL Validation (Cy2008-002)

The version of CylancePROTECT installed on the remote host is a version 2.0.x prior to 2.0.1480. It is, therefore, affected by an SSL validation flaw that can allow an attacker to cause an arbitrary file download. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid109596...

CylancePROTECT 2.0.x < 2.0.1480 SSL Validation (Cy2008-002) (macOS)

The version of CylancePROTECT installed on the remote MacOS/MacOSX host is 2.0.x prior to 2.0.1480. It is, therefore, affected by an SSL validation flaw that can allow an attacker to cause an arbitrary file download. C Tenable Network Security, Inc. include"compat.inc"; if description...

Design/Logic Flaw

In Cylance CylancePROTECT before 1470, an unprivileged local user can obtain SYSTEM privileges because users have Modify access to the %PROGRAMFILES%\Cylance\Desktop\log folder, the CyUpdate process grants users Modify access to new files created in this folder, and a new file can be a symlink...

CVE-2018-10722

In Cylance CylancePROTECT before 1470, an unprivileged local user can obtain SYSTEM privileges because users have Modify access to the %PROGRAMFILES%\Cylance\Desktop\log folder, the CyUpdate process grants users Modify access to new files created in this folder, and a new file can be a symlink...

CVE-2018-10722

In Cylance CylancePROTECT before 1470, an unprivileged local user can obtain SYSTEM privileges because users have Modify access to the %PROGRAMFILES%\Cylance\Desktop\log folder, the CyUpdate process grants users Modify access to new files created in this folder, and a new file can be a symlink...

CVE-2018-10722

CVE-2018-10722 concerns CylancePROTECT (pre-1470) where an unprivileged local user can escalate to SYSTEM due to overly permissive access to the log folder under %PROGRAMFILES%\Cylance\Desktop\log. The CyUpdate process grants users Modify rights to new files created there, allowing a symlink chai...

CVE-2018-10722

In Cylance CylancePROTECT before 1470, an unprivileged local user can obtain SYSTEM privileges because users have Modify access to the %PROGRAMFILES%\Cylance\Desktop\log folder, the CyUpdate process grants users Modify access to new files created in this folder, and a new file can be a symlink...

CylancePROTECT Detection

Binary data cylanceprotectinstalled.nbin...

CylancePROTECT Detection (Mac OS X)

Binary data macosxcylanceprotectinstalled.nbin...