CVE-2018-0619

HIGH

Glarysoft Glary Utilities < 5.99 - Untrusted Search Path

Title source: llm
STIX 2.1

Description

Untrusted search path vulnerability in the installer of Glarysoft Glary Utilities (Glary Utilities 5.99 and earlier and Glary Utilities Pro 5.99 and earlier) allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.

References (1)

Core 1
Core References
Third Party Advisory third-party-advisory x_refsource_jvn
http://jvn.jp/en/jp/JVN84967039/index.html

Scores

CVSS v3 7.8
EPSS 0.0079
EPSS Percentile 51.5%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE
CWE-426
Status published
Products (1)
glarysoft/glary_utilities < 5.99 (2 CPE variants)
Published Jul 26, 2018
Tracked Since Feb 18, 2026