Malwarebytes Malwarebytes
17 CVEs affecting Malwarebytes Malwarebytes. Latest disclosed: 2026-06-19. Critical: 0, High: 14.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-50971 | High | 7.8 | 2026-06-19 | Malwarebytes 4.5 contains an unquoted service path vulnerability in the MBAMService executable that allows local attackers to escalate privileges by injecting… |
CVE-2023-29145 | High | 7.8 | 2023-06-30 | The Malwarebytes EDR 1.0.11 for Linux driver doesn't properly ensure whitelisting of executable libraries loaded by executable files, allowing arbitrary code e… |
CVE-2023-26088 | High | 7.8 | 2023-03-23 | In Malwarebytes before 4.5.23, a symbolic link may be used delete any arbitrary file on the system by exploiting the local quarantine system. It can also lead… |
CVE-2018-5279 | High | 7.8 | 2018-01-08 | In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impa… |
CVE-2018-5277 | High | 7.8 | 2018-01-08 | In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impa… |
CVE-2018-5276 | High | 7.8 | 2018-01-08 | In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impa… |
CVE-2018-5275 | High | 7.8 | 2018-01-08 | In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impa… |
CVE-2018-5274 | High | 7.8 | 2018-01-08 | In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impa… |
CVE-2018-5273 | High | 7.8 | 2018-01-08 | In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impa… |
CVE-2018-5272 | High | 7.8 | 2018-01-08 | In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impa… |
CVE-2018-5271 | High | 7.8 | 2018-01-08 | In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impa… |
CVE-2018-5270 | High | 7.8 | 2018-01-08 | In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impa… |
CVE-2020-28641 | High | 7.1 | 2020-12-22 | In Malwarebytes Free 4.1.0.56, a symbolic link may be used delete an arbitrary file on the system by exploiting the local quarantine system. |
CVE-2020-25533 | High | 7.0 | 2021-01-15 | An issue was discovered in Malwarebytes before 4.0 on macOS. A malicious application was able to perform a privileged action within the Malwarebytes launch dae… |
CVE-2023-29147 | Medium | 5.5 | 2023-06-30 | In Malwarebytes EDR 1.0.11 for Linux, it is possible to bypass the detection layers that depend on inode identifiers, because an identifier may be reused when… |
CVE-2023-29144 | Low | 3.3 | 2025-12-12 | Malwarebytes 1.0.14 for Linux doesn't properly compute signatures in some scenarios. This allows a bypass of detection. |
CVE-2018-5278 | Low | 3.3 | 2018-01-08 | In Malwarebytes Premium 3.3.1.2183, the driver file (FARFLT.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impa… |