CVE-2019-19382
HIGHMax Secure Anti Virus Plus <19.0.4.020 - Privilege Escalation
Title source: llmDescription
Max Secure Anti Virus Plus 19.0.4.020 has Insecure Permissions on the installation directory. Local attackers can replace a .exe or .dll file to achieve privilege escalation.
References (2)
Core 2
Core References
Exploit, Third Party Advisory x_refsource_misc
http://hyp3rlinx.altervista.org
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/155506/Max-Secure-Anti-Virus-Plus-19.0.4.020-Insecure-Permissions.html
Scores
CVSS v3
7.8
EPSS
0.0008
EPSS Percentile
22.7%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-732
Status
published
Products (1)
maxpcsecure/anti_virus_plus
19.0.4.020
Published
Dec 03, 2019
Tracked Since
Feb 18, 2026