Описание
Multiple security flaws exists in InvProtectDrv.sys which is a part of Invincea Dell Protected Workspace 5.1.1-22303. Weak restrictions on the driver communication channel and additional insufficient checks allow any application to turn off some of the protection mechanisms provided by the Invincea product.
Ссылки
- Broken LinkThird Party AdvisoryVDB Entry
- ExploitTechnical DescriptionThird Party Advisory
- Broken LinkThird Party AdvisoryVDB Entry
- ExploitTechnical DescriptionThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:sophos:invincea_dell_protected_workspace:5.1.1-22303:*:*:*:*:*:*:*
EPSS
Процентиль: 8%
0.0003
Низкий
7.8 High
CVSS3
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-275
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
Multiple security flaws exists in InvProtectDrv.sys which is a part of Invincea Dell Protected Workspace 5.1.1-22303. Weak restrictions on the driver communication channel and additional insufficient checks allow any application to turn off some of the protection mechanisms provided by the Invincea product.
EPSS
Процентиль: 8%
0.0003
Низкий
7.8 High
CVSS3
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-275