Description
Scanguard through 2019-11-12 on Windows has Insecure Permissions for the installation directory, leading to privilege escalation via a Trojan horse executable file.
References (4)
Core 4
Core References
Exploit, Third Party Advisory x_refsource_misc
http://hyp3rlinx.altervista.org
Product x_refsource_misc
https://support.scanguard.com/en/kb/22/upgrades-available
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
https://packetstormsecurity.com/files/155319/ScanGuard-Antivirus-Insecure-Permissions.html
Third Party Advisory mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2019/Nov/5
Scores
CVSS v3
7.8
EPSS
0.0013
EPSS Percentile
31.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-732
Status
published
Products (1)
scanguard/scanguard_antivirus
< 2019-11-12
Published
Nov 14, 2019
Tracked Since
Feb 18, 2026