Arbitrary Code Execution Vulnerability in Malwarebytes EDR 1.0.11 for Linux

Arbitrary Code Execution Vulnerability in Malwarebytes EDR 1.0.11 for Linux

CVE-2023-29145 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

The Malwarebytes EDR 1.0.11 for Linux driver doesn't properly ensure whitelisting of executable libraries loaded by executable files, allowing arbitrary code execution. The attacker can set LD_LIBRARY_PATH, set LD_PRELOAD, or run an executable file in a debugger.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.