CVE-2023-29487

Опубликовано: 21 дек. 2023

Источник: nvd

CVSS3: 9.1

EPSS Низкий

Описание

An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to cause a denial of service (DoS) via the Threat To Process Correlation threat prevention module. NOTE: Heimdal asserts this is not a valid vulnerability. Their DNS Security for Endpoint solution includes an optional feature to provide extra information on the originating process that made a DNS request. The lack of process identification in DNS logs is therefore falsely categorized as a DoS issue.

Ссылки

https://medium.com/%40drabek.a/weaknesses-in-heimdal-thors-line-of-products-9d0e5095fb93
Exploit
Third Party Advisory
https://medium.com/%40drabek.a/weaknesses-in-heimdal-thors-line-of-products-9d0e5095fb93
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:heimdalsecurity:thor:*:*:*:*:*:*:*:*

Версия до 3.5.3 (включая)

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

Конфигурация 2

Одновременно

cpe:2.3:a:heimdalsecurity:thor:*:*:*:*:*:*:*:*

Версия до 2.6.9 (включая)

cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*

EPSS

Процентиль: 22%

0.00073

Низкий

9.1 Critical

CVSS3

Дефекты

CWE-1333

Связанные уязвимости

GHSA-9jxf-24g6-463j