CVE-2025-1368

Summary

CVE-2025-1368 is a newly disclosed vulnerability impacting MicroWorld eScan Antivirus 7.0.32 on Linux systems. The issue lies within the ReadConfiguration function of the file /opt/MicroWorld/etc/mwav.conf, where a buffer overflow occurs due to manipulation of the BasePath argument. This local access vulnerability allows attackers to exploit the system. Although the vendor was notified about the disclosure, they have yet to provide a response or patch. The exploit for this vulnerability has been made public, increasing the risk for potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.