Primary

Context

Intercom MaLion Security Point Windows Incorrect Default Permissions Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Patched

A vulnerability exists in Security Point (Windows) of MaLion, prior to version 5.3.4, due to incorrect default permissions. This issue allows a user who can log into the system with the product's Windows client installed to place an arbitrary file in a specific folder. If the file is a specially crafted DLL, it could be executed with SYSTEM privileges.

Impact

Exploitation of this vulnerability could lead to arbitrary code execution with SYSTEM privileges on the affected Windows system.

Remediation

Users are advised to update to Security Point (Windows) of MaLion version 5.3.4 or later. Instructions for downloading the latest version are available on the 'MaLion Club' website.

Added: Nov 25, 2025, 8:20 AM

Updated: Nov 25, 2025, 8:20 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.3

remediation

7.7

relevance

1.1

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

3.3

remediation

7.7

relevance

1.1

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Intercom MaLion Security Point Windows Incorrect Default Permissions Vulnerability Allowing Arbitrary Code Execution

Vulnerability

Impact

Remediation

Affected Products

Intercom MaLion

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating