CVE-2024-13206 | REVE Antivirus 1.0.0.0 on Linux reveinstall default permission

A vulnerability classified as critical has been found in REVE Antivirus 1.0.0.0 on Linux. This affects an unknown part of the file /usr/local/reveantivirus/tmp/reveinstall. The manipulation leads to incorrect default permissions.

This vulnerability is uniquely identified as CVE-2024-13206. It is possible to launch the attack on the local host. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-13206 | REVE Antivirus 1.0.0.0 on Linux reveinstall default permission

Related Posts

CVE-2024-36937 | Linux Kernel up to 5.15.158/6.1.90/6.6.30/6.8.9 xdp bpf_redirect_map null pointer dereference

CVE-2024-30295 | Adobe Animate up to 23.0.5/24.0.2 null pointer dereference (apsb24-36)

CVE-2023-33806 | Hikvision Tablet DS-D5B86RB 2.3.0 build220119 config

CVE-2024-1138 | TIBCO FTL Enterprise Edition up to 6.10.1 Privilege Escalation