cvedb.io
CVE-2023-36631
HIGH · CVSS 7.8
EPSS exploitation probability: 0%
Published 2023-06-26T12:15:09.523 · Last modified 2026-06-17T06:06:42.567

Summary

Lack of access control in wfc.exe in Malwarebytes Binisoft Windows Firewall Control 6.9.2.0 allows local unprivileged users to bypass Windows Firewall restrictions via the user interface's rules tab. NOTE: the vendor's perspective is "this is intended behavior as the application can be locked using a password."

Affected products

malwarebytes — binisoft_windows_firewall_control

Does this affect you?

Add your gear to cvedb and we'll alert you only when malwarebytes ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.