360 Total Security Untrusted Search Path Vulnerability


In the version and below of 360 Total Security, when the main process of 360 Total Security calls GameChrome.exe, there exists a local privilege escalation vulnerability. 


The information has been provided by Vendor

The original article can be found at:https://security.360.cn/News/news/id/232


An attacker who could exploit DLL hijacking to bypass the hips could execute arbitrary code on the Local system.


Vulnerable Systems:

360 Total Security 


CVE Information:



Disclosure Timeline:
Published Date:7/21/2020

Categories: FeaturedNews