CVE-2018-8090

HIGH

Quick Heal Various - Buffer Overflow

Title source: llm

Description

Quick Heal Total Security 64 bit 17.00 (QHTS64.exe), (QHTSFT64.exe) - Version 10.0.1.38; Quick Heal Total Security 32 bit 17.00 (QHTS32.exe), (QHTSFT32.exe) - Version 10.0.1.38; Quick Heal Internet Security 64 bit 17.00 (QHIS64.exe), (QHISFT64.exe) - Version 10.0.0.37; Quick Heal Internet Security 32 bit 17.00 (QHIS32.exe), (QHISFT32.exe) - Version 10.0.0.37; Quick Heal AntiVirus Pro 64 bit 17.00 (QHAV64.exe), (QHAVFT64.exe) - Version 10.0.0.37; and Quick Heal AntiVirus Pro 32 bit 17.00 (QHAV32.exe), (QHAVFT32.exe) - Version 10.0.0.37 allow DLL Hijacking because of Insecure Library Loading.

Exploits (1)

nomisec WRITEUP 3 stars

by kernelm0de · poc

https://github.com/kernelm0de/CVE-2018-8090

View Code ZIP pw:eip

References (1)

[Third Party Advisory] https://github.com/kernelm0de/CVE-2018-8090

Scores

CVSS v3 7.8

EPSS 0.0044

EPSS Percentile 63.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Classification

CWE

CWE-427

Status published

Affected Products (3)

quickheal/antivirus_pro

quickheal/internet_security

quickheal/total_security

Timeline

Published Jul 25, 2018

Tracked Since Feb 18, 2026