exploitDog

CVE-2023-1900

Опубликовано: 19 апр. 2023

Источник: nvd

CVSS3: 7.8

CVSS3: 5.5

EPSS Низкий

Описание

A vulnerability within the Avira network protection feature allowed an attacker with local execution rights to cause an overflow. This could corrupt the data on the heap and lead to a denial-of-service situation. Issue was fixed with Endpointprotection.exe version 1.0.2303.633

Ссылки

https://support.norton.com/sp/static/external/tools/security-advisories.html
Third Party Advisory
https://support.norton.com/sp/static/external/tools/security-advisories.html
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:avira:antivirus:*:*:*:*:*:windows:*:*

Версия до 1.0.2303.633 (исключая)

EPSS

Процентиль: 10%

0.00035

Низкий

7.8 High

CVSS3

5.5 Medium

CVSS3

Дефекты

CWE-190

CWE-190

CWE-190

Связанные уязвимости

GHSA-8c47-529w-9h8f

CVSS3: 7.8

github

почти 3 года назад

A vulnerability within the Avira network protection feature allowed an attacker with local execution rights to cause an overflow. This could corrupt the data on the heap and lead to a denial-of-service situation. Issue was fixed with Endpointprotection.exe version 1.0.2303.633

EPSS

Процентиль: 10%

0.00035

Низкий

7.8 High

CVSS3

5.5 Medium

CVSS3

Дефекты

CWE-190

CWE-190

CWE-190