Lucene search
K

37 matches found

EUVD
EUVD
added 2026/02/03 12:0 a.m.6 views

EUVD-2025-206708

A vulnerability exists in Quick Heal Total Security 23.0.0 in the quarantine management component where insufficient validation of restore paths and improper permission handling allow a low-privileged local user to restore quarantined files into protected system directories. This behavior can be...

7.8CVSS5.5AI score0.00428EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/03 12:0 a.m.2 views

CVE-2025-69875

A vulnerability exists in Quick Heal Total Security 23.0.0 in the quarantine management component where insufficient validation of restore paths and improper permission handling allow a low-privileged local user to restore quarantined files into protected system directories. This behavior can be...

5.5AI score0.00428EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/09 8:42 a.m.9 views

CVE-2022-31467

A DLL hijacking vulnerability in the installed for Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, leading to execution of arbitrary code, via the installer not restricting the search path for required DLLs and then not verifying the signature...

7.9CVSS6.9AI score0.00279EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:42 a.m.11 views

CVE-2022-31466

Time of Check - Time of Use TOCTOU vulnerability in Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, potentially leading to deletion of system files. This is achieved through exploiting the time between detecting a file as malicious and when th...

7.9CVSS6.7AI score0.00153EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-20094

Malware in sbrugna...

5.9CVSS6AI score0.00687EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-52931

Malicious code in bioql PyPI...

7.9CVSS7.5AI score0.00279EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:33 p.m.7 views

CVE-2020-27587

Quick Heal Total Security before 19.0 allows attackers with local admin rights to obtain access to files in the File Vault via a brute-force attack on the password...

6.7CVSS6.5AI score0.00359EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:27 p.m.5 views

CVE-2020-27586

Quick Heal Total Security before version 19.0 transmits quarantine and sysinfo files via clear text...

5.9CVSS7AI score0.00687EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:25 p.m.9 views

CVE-2020-27585

Quick Heal Total Security before 19.0 allows attackers with local admin rights to modify sensitive anti virus settings via a brute-attack on the settings password...

4.4CVSS6.5AI score0.00314EPSS
Exploits1
CNNVD
CNNVD
added 2024/11/18 12:0 a.m.4 views

Quick Heal Antivirus Pro和Quick Heal Total Security 安全漏洞

Quick Heal Antivirus Pro and Quick Heal Total Security are both antivirus software from Quick Heal India. A security vulnerability exists in Quick Heal Antivirus Pro version v24.0 and Quick Heal Total Security version v24.0, which stems from a vulnerability that allows an authenticated attacker t...

8.8CVSS6.7AI score0.00373EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/05/23 7:16 p.m.2 views

CVE-2022-31467

A DLL hijacking vulnerability in the installed for Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, leading to execution of arbitrary code, via the installer not restricting the search path for required DLLs and then not verifying the signature...

7.9CVSS5.9AI score0.00279EPSS
Exploits0References2
OSV
OSV
added 2022/05/23 7:16 p.m.2 views

CVE-2022-31467

A DLL hijacking vulnerability in the installed for Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, leading to execution of arbitrary code, via the installer not restricting the search path for required DLLs and then not verifying the signature...

7.3CVSS6AI score0.00279EPSS
Exploits0References1
NVD
NVD
added 2022/05/23 7:16 p.m.23 views

CVE-2022-31466

Time of Check - Time of Use TOCTOU vulnerability in Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, potentially leading to deletion of system files. This is achieved through exploiting the time between detecting a file as malicious and when th...

7.9CVSS0.00153EPSS
Exploits0References1
NVD
NVD
added 2022/05/23 7:16 p.m.22 views

CVE-2022-31467

A DLL hijacking vulnerability in the installed for Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, leading to execution of arbitrary code, via the installer not restricting the search path for required DLLs and then not verifying the signature...

7.9CVSS0.00279EPSS
Exploits0References1
Prion
Prion
added 2022/05/23 7:16 p.m.18 views

Design/Logic Flaw

Time of Check - Time of Use TOCTOU vulnerability in Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, potentially leading to deletion of system files. This is achieved through exploiting the time between detecting a file as malicious and when th...

4.4CVSS6.8AI score0.00153EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/05/23 6:19 p.m.77 views

CVE-2022-31466

CVE-2022-31466 is a TOCTOU vulnerability in Quick Heal Total Security, affected versions prior to 12.1.1.27. The issue arises from the window between malware detection and quarantine/cleanup, enabling a local attacker to replace the quarantined file with a symlink and escalate privileges, potenti...

7.9CVSS7AI score0.00153EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/05/23 6:19 p.m.27 views

CVE-2022-31466 TOCTOU Vulnerability in Quick Heal Total Security

Time of Check - Time of Use TOCTOU vulnerability in Quick Heal Total Security prior to 12.1.1.27 allows a local attacker to achieve privilege escalation, potentially leading to deletion of system files. This is achieved through exploiting the time between detecting a file as malicious and when th...

7.9CVSS7.9AI score0.00153EPSS
Exploits0References1
CVE
CVE
added 2022/05/23 6:19 p.m.86 views

CVE-2022-31467

A DLL hijacking vulnerability (CVE-2022-31467) affects Quick Heal Total Security prior to version 12.1.1.27. The installer does not restrict the DLL search path and fails to verify DLL signatures, enabling a local attacker to escalate privileges and execute arbitrary code. The Red Hat/NVD entries...

7.9CVSS7.3AI score0.00279EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2022/05/23 12:0 a.m.7 views

PT-2022-20743 · Quick Heal · Quick Heal Total Security

Name of the Vulnerable Software and Affected Versions: Quick Heal Total Security versions prior to 12.1.1.27 Description: A Time of Check - Time of Use TOCTOU issue allows a local attacker to achieve privilege escalation, potentially leading to deletion of system files. This is achieved by...

7.9CVSS6.7AI score0.00153EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/05/23 12:0 a.m.4 views

Quick Heal 安全漏洞

Quick Heal is an antivirus software from Quick Heal that provides IT security solutions for your PC, Mac, phone, tablet and corporate network. A security vulnerability exists in Quick Heal Total Security versions prior to 12.1.1.27, which stems from the presence of a TOCTOU...

7.9CVSS7AI score0.00153EPSS
Exploits0References2
Rows per page
Query Builder