CVSS: 9.1EPSS: 0%CPEs: 3EXPL: 1CVE-2019-9565
https://notcve.org/view.php?id=CVE-2019-9565
04 Mar 2019 — Druide Antidote RX, HD, 8 before 8.05.2287, 9 before 9.5.3937 and 10 before 10.1.2147 allows remote attackers to steal NTLM hashes or perform SMB relay attacks upon a direct launch of the product, or upon an indirect launch via an integration such as Chrome, Firefox, Word, Outlook, etc. This occurs because the product attempts to access a share with the PLUG-INS subdomain name; an attacker may be able to use Active Directory Domain Services to register that name. Druide Antidote RX y HD, en sus versiones 8 ... • https://gosecure.net/2019/02/20/abusing-unsafe-defaults-in-active-directory •
CVSS: 9.3EPSS: 5%CPEs: 3EXPL: 4CVE-2018-13140 – Antidote 9.5.1 Code Execution
https://notcve.org/view.php?id=CVE-2018-13140
21 Sep 2018 — Druide Antidote through 9.5.1 on Windows and Linux allows remote code execution through the update mechanism by leveraging use of HTTP to download installation packages. Druide Antidote hasta la versión 9.5.1 en Windows y Linux permite la ejecución remota de código mediante el mecanismo de actualización aprovechando el uso de HTTP para descargar paquetes de instalación. Antidote versions 9.5.1 and below suffer from an update related code execution vulnerability. • https://packetstorm.news/files/id/149468 • CWE-319: Cleartext Transmission of Sensitive Information •