Unrated severityNVD Advisory· Published Mar 29, 2023· Updated Aug 2, 2024
CVE-2023-28892
CVE-2023-28892
Description
Malwarebytes AdwCleaner 8.4.0 runs as Administrator and performs an insecure file delete operation on C:\AdwCleaner\Logs\AdwCleaner_Debug.log in which the target location is user-controllable, allowing a non-admin user to escalate privileges to SYSTEM via a symbolic link.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: = 8.4.0
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.