CVE-2023-28892

Name of the Vulnerable Software and Affected Versions Malwarebytes AdwCleaner version 8.4.0

Description The issue allows a non-admin user to escalate privileges to SYSTEM via a symbolic link. This is due to an insecure file delete operation performed by Malwarebytes AdwCleaner on a user-controllable target location, specifically the file C:AdwCleanerLogsAdwCleaner Debug.log.

Recommendations For Malwarebytes AdwCleaner version 8.4.0, consider restricting access to the C:AdwCleanerLogs directory to prevent exploitation until a patch is available. As a temporary workaround, avoid using the AdwCleaner Debug.log file in the affected directory. At the moment, there is no information about a newer version that contains a fix for this vulnerability.