CVE-2023-29147

In Malwarebytes EDR 1.0.11 for Linux, it is possible to bypass the detection layers that depend on inode identifiers, because an identifier may be reused when a file is replaced, and because two files on different filesystems can have the same identifier.

Published: Jun 30, 2023
Updated: Jul 11, 2023
CVE: CVE-2023-29147
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
malwarebytes / malwarebytes	-	1.0.14.x
malwarebytes / endpoint_detection_and_response	-	1.0.11.x

https://malwarebytes.com
https://www.malwarebytes.com/secure/cves/cve-2023-29147

Vulnerability Database

289,784

CVE-2023-29147