37 matches found
EUVD-2025-206708
A vulnerability exists in Quick Heal Total Security 23.0.0 in the quarantine management component where insufficient validation of restore paths and improper permission handling allow a low-privileged local user to restore quarantined files into protected system directories. This behavior can be...
CVE-2025-69875
A vulnerability exists in Quick Heal Total Security 23.0.0 in the quarantine management component where insufficient validation of restore paths and improper permission handling allow a low-privileged local user to restore quarantined files into protected system directories. This behavior can be...
CVE-2022-31467
A DLL hijacking vulnerability in the installed for Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, leading to execution of arbitrary code, via the installer not restricting the search path for required DLLs and then not verifying the signature...
CVE-2022-31466
Time of Check - Time of Use TOCTOU vulnerability in Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, potentially leading to deletion of system files. This is achieved through exploiting the time between detecting a file as malicious and when th...
EUVD-2020-20094
Malware in sbrugna...
EUVD-2022-52931
Malicious code in bioql PyPI...
CVE-2020-27587
Quick Heal Total Security before 19.0 allows attackers with local admin rights to obtain access to files in the File Vault via a brute-force attack on the password...
CVE-2020-27586
Quick Heal Total Security before version 19.0 transmits quarantine and sysinfo files via clear text...
CVE-2020-27585
Quick Heal Total Security before 19.0 allows attackers with local admin rights to modify sensitive anti virus settings via a brute-attack on the settings password...
Quick Heal Antivirus Pro和Quick Heal Total Security 安全漏洞
Quick Heal Antivirus Pro and Quick Heal Total Security are both antivirus software from Quick Heal India. A security vulnerability exists in Quick Heal Antivirus Pro version v24.0 and Quick Heal Total Security version v24.0, which stems from a vulnerability that allows an authenticated attacker t...
CVE-2022-31467
A DLL hijacking vulnerability in the installed for Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, leading to execution of arbitrary code, via the installer not restricting the search path for required DLLs and then not verifying the signature...
CVE-2022-31467
A DLL hijacking vulnerability in the installed for Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, leading to execution of arbitrary code, via the installer not restricting the search path for required DLLs and then not verifying the signature...
CVE-2022-31466
Time of Check - Time of Use TOCTOU vulnerability in Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, potentially leading to deletion of system files. This is achieved through exploiting the time between detecting a file as malicious and when th...
CVE-2022-31467
A DLL hijacking vulnerability in the installed for Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, leading to execution of arbitrary code, via the installer not restricting the search path for required DLLs and then not verifying the signature...
Design/Logic Flaw
Time of Check - Time of Use TOCTOU vulnerability in Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, potentially leading to deletion of system files. This is achieved through exploiting the time between detecting a file as malicious and when th...
CVE-2022-31466
CVE-2022-31466 is a TOCTOU vulnerability in Quick Heal Total Security, affected versions prior to 12.1.1.27. The issue arises from the window between malware detection and quarantine/cleanup, enabling a local attacker to replace the quarantined file with a symlink and escalate privileges, potenti...
CVE-2022-31466 TOCTOU Vulnerability in Quick Heal Total Security
Time of Check - Time of Use TOCTOU vulnerability in Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, potentially leading to deletion of system files. This is achieved through exploiting the time between detecting a file as malicious and when th...
CVE-2022-31467
A DLL hijacking vulnerability (CVE-2022-31467) affects Quick Heal Total Security prior to version 12.1.1.27. The installer does not restrict the DLL search path and fails to verify DLL signatures, enabling a local attacker to escalate privileges and execute arbitrary code. The Red Hat/NVD entries...
PT-2022-20743 · Quick Heal · Quick Heal Total Security
Name of the Vulnerable Software and Affected Versions: Quick Heal Total Security versions prior to 12.1.1.27 Description: A Time of Check - Time of Use TOCTOU issue allows a local attacker to achieve privilege escalation, potentially leading to deletion of system files. This is achieved by...
Quick Heal 安全漏洞
Quick Heal is an antivirus software from Quick Heal that provides IT security solutions for your PC, Mac, phone, tablet and corporate network. A security vulnerability exists in Quick Heal Total Security versions prior to 12.1.1.27, which stems from the presence of a TOCTOU...