CVE-2023-36631 Information

Description

DISPUTED Lack of access control in wfc.exe in Malwarebytes Binisoft Windows Firewall Control 6.9.2.0 allows local unprivileged users to bypass Windows Firewall restrictions via the user interface’s rules tab. NOTE: the vendor’s perspective is his is intended behavior as the application can be locked using a password.\

Reference

https://hackerone.com/reports/2000375 https://www.bencteux.fr/posts/malwarebytes_wfc/