CVE-2023-29147

MEDIUM Year: 2023
CVSS v3 Score
5.5
Medium
Weakness Type
CWE-290
View all →

Vulnerability Description

In Malwarebytes EDR 1.0.11 for Linux, it is possible to bypass the detection layers that depend on inode identifiers, because an identifier may be reused when a file is replaced, and because two files on different filesystems can have the same identifier.

Related Vulnerabilities

CVE-2021-1677

MEDIUM
CVSS:5.5(Medium)

Azure Active Directory Pod Identity Spoofing Vulnerability

CWE-2902021

CVE-2023-7169

MEDIUM
CVSS:5.5(Medium)

Authentication Bypass by Spoofing vulnerability in Snow Software Snow Inventory Agent on Windows allows Signature Spoof.This issue affects Snow Inventory Agent: through 6.14.5. Customers advised to up...

CWE-2902023

CVE-2025-24091

MEDIUM
CVSS:5.5(Medium)

An app could impersonate system notifications. Sensitive notifications now require restricted entitlements. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.3. An app may be able to cause ...

CWE-2902025

CVE-2018-1695

MEDIUM
CVSS:5.6(Medium)

IBM WebSphere Application Server 7.0, 8.0, and 8.5.5 installations using Form Login could allow a remote attacker to conduct spoofing attacks. IBM X-Force ID: 145769.

CWE-2902018

CVE-2018-8153

MEDIUM
CVSS:5.4(Medium)

A spoofing vulnerability exists in Microsoft Exchange Server when Outlook Web Access (OWA) fails to properly handle web requests, aka "Microsoft Exchange Spoofing Vulnerability." This affects Microsof...

CWE-2902018

CVE-2020-1331

MEDIUM
CVSS:5.4(Medium)

A spoofing vulnerability exists when System Center Operations Manager (SCOM) does not properly sanitize a specially crafted web request to an affected SCOM instance, aka 'System Center Operations Mana...

CWE-2902020