CVE-2024-57394 Information

Description

The quarantine - restore function in Qi-ANXIN Tianqing Endpoint Security Management System v10.0 allows user to restore a malicious file to an arbitrary file path. Attackers can write malicious DLL to system path and perform privilege escalation by leveraging Windows DLL hijacking vulnerabilities.

Reference

https://en.qianxin.com/product/detail/165 https://github.com/cwjchoi01/CVE-2024-57394