42 matches found
CVE-2023-43896
A buffer overflow in Macrium Reflect 8.1.7544 and below allows attackers to escalate privileges or execute arbitrary code...
CVE-2020-10143
Macrium Reflect includes an OpenSSL component that specifies an OPENSSLDIR variable as C:\openssl\. Macrium Reflect contains a privileged service that uses this OpenSSL component. Because unprivileged Windows users can create subdirectories off of the system root, a user can create the appropriat...
EUVD-2020-2606
Malware in sbrugna...
EUVD-2024-52785
Malicious code in bioql PyPI...
EUVD-2023-48256
Malicious code in bioql PyPI...
CVE-2025-53395
Paramount Macrium Reflect through 2025-06-26 allows local attackers to execute arbitrary code with administrator privileges via a crafted .mrimgx backup file and a malicious VSSSvr.dll located in the same directory. When a user with administrative privileges mounts a backup by opening the .mrimgx...
CVE-2025-53395
Paramount Macrium Reflect through 2025-06-26 allows local attackers to execute arbitrary code with administrator privileges via a crafted .mrimgx backup file and a malicious VSSSvr.dll located in the same directory. When a user with administrative privileges mounts a backup by opening the .mrimgx...
CVE-2025-53394
Paramount Macrium Reflect through 2025-06-26 allows attackers to execute arbitrary code with administrator privileges via a crafted .mrimgx or .mrbax backup file and a renamed executable placed in the same directory. When a user with administrative privileges opens the crafted backup file and...
CVE-2025-53395
CVE-2025-53395 / CVE-2025-53394 describe local code execution in Paramount Macrium Reflect prior to 2025-06-26, caused by untrusted DLL search path behavior in ReflectMonitor.exe when mounting crafted backup files (e.g., .mrimgx) and a malicious DLL (VSSSvr.dll) placed in the same directory, or b...
Paramount Macrium Reflect 安全漏洞
Paramount Macrium Reflect is an image-based backup and recovery software from Paramount UK. A security vulnerability exists in Paramount Macrium Reflect version 2025-06-26 and earlier, which stems from an insecure DLL search path that could lead to the execution of arbitrary code with administrat...
Paramount Macrium Reflect 安全漏洞
Paramount Macrium Reflect is an image-based backup and recovery software from Paramount UK. A security vulnerability exists in Paramount Macrium Reflect version 2025-06-26 and earlier, which stems from insufficient authentication and could lead to the execution of arbitrary code with administrato...
CVE-2025-53394
Paramount Macrium Reflect through 2025-06-26 allows attackers to execute arbitrary code with administrator privileges via a crafted .mrimgx or .mrbax backup file and a renamed executable placed in the same directory. When a user with administrative privileges opens the crafted backup file and...
CVE-2025-53395
Paramount Macrium Reflect through 2025-06-26 allows local attackers to execute arbitrary code with administrator privileges via a crafted .mrimgx backup file and a malicious VSSSvr.dll located in the same directory. When a user with administrative privileges mounts a backup by opening the .mrimgx...
PT-2025-31853 · Macrium · Macrium Reflect
Name of the Vulnerable Software and Affected Versions: Macrium Reflect versions through 2025-06-26 Description: Macrium Reflect allows attackers to execute arbitrary code with administrator privileges via a crafted .mrimgx or .mrbax backup file. The attack involves placing a renamed executable in...
CVE-2025-53395
Paramount Macrium Reflect through 2025-06-26 allows local attackers to execute arbitrary code with administrator privileges via a crafted .mrimgx backup file and a malicious VSSSvr.dll located in the same directory. When a user with administrative privileges mounts a backup by opening the .mrimgx...
CVE-2025-53394
Paramount Macrium Reflect through 2025-06-26 allows attackers to execute arbitrary code with administrator privileges via a crafted .mrimgx or .mrbax backup file and a renamed executable placed in the same directory. When a user with administrative privileges opens the crafted backup file and...
CVE-2025-53394
Summary: CVE-2025-53394 affects Paramount Macrium Reflect (through 2025-06-26). Affected component/file handling when mounting backups allows local attackers with administrator privileges to execute arbitrary code by placing a crafted backup file and a renamed executable in the same directory. Ro...
CVE-2024-55511
A null pointer dereference vulnerability in Macrium Reflect prior to 8.1.8017 allows a local attacker to cause a system crash or potentially elevate their privileges via executing a specially crafted executable...
Exploit for CVE-2024-55511
CVE-2024-55511 This repository has been archived and moved he...
CVE-2024-55511
A null pointer dereference vulnerability in Macrium Reflect prior to 8.1.8017 allows a local attacker to cause a system crash or potentially elevate their privileges via executing a specially crafted executable...