CNNVD-202602-342 Information
CNNVD ID
CNNVD-202602-342
Related CVE
- CNNVD Published: 2026-02-03
Description (Chinese)
Quick Heal Total Security是印度Quick Heal公司的一款防病毒软件。 Quick Heal Total Security 23.0.0版本存在安全漏洞,该漏洞源于隔离管理组件中对还原路径验证不足和权限处理不当,可能导致低权限本地用户将隔离文件还原到受保护的系统目录中,从而引发权限提升。
Description (English)
Quick Health Data Security is an anti-virus software for Quick Health in India. There is a security loophole in version 23.0.0 of Quick Health Data Security, which stems from the inadequate verification of the reduction path in the isolation management component and the inappropriate handling of privileges, which may result in low-licensed local users returning the isolation document to a protected system directory, thereby triggering the upgrade of privileges.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Quick Heal
Published
2026-02-03
Last Modified
2026-02-24
References
https://github.com/mertdas/QuickHealTotalSecurityPOC https://semiconductor.samsung.com/support/quality-support/product-security-updates/cve-2025-59439/
Patch
https://us.quickheal.com//downloads
Share on: