CVE-2024-0788

Опубликовано: 29 янв. 2024

Источник: nvd

CVSS3: 6.6

CVSS3: 5.5

EPSS Низкий

Описание

SUPERAntiSpyware Pro X v10.0.1260 is vulnerable to kernel-level API parameters manipulation and Denial of Service vulnerabilities by triggering the 0x9C402140 IOCTL code of the saskutil64.sys driver.

Ссылки

https://fluidattacks.com/advisories/brubeck/
Third Party Advisory
https://www.superantispyware.com/professional-x-edition.html
Product
https://fluidattacks.com/advisories/brubeck/
Third Party Advisory
https://www.superantispyware.com/professional-x-edition.html
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:realdefen:superantispyware:10.0.1260:*:*:*:professional_x:*:*:*

EPSS

Процентиль: 13%

0.00043

Низкий

6.6 Medium

CVSS3

5.5 Medium

CVSS3

Дефекты

CWE-96

NVD-CWE-noinfo

Связанные уязвимости

GHSA-rrr4-rqcr-8jmq

CVSS3: 5.8

github

около 2 лет назад

SUPERAntiSpyware Pro X v10.0.1260 is vulnerable to kernel-level API parameters manipulation and Denial of Service vulnerabilities by triggering the 0x9C402140 IOCTL code of the saskutil64.sys driver.

EPSS

Процентиль: 13%

0.00043

Низкий

6.6 Medium

CVSS3

5.5 Medium

CVSS3

Дефекты

CWE-96

NVD-CWE-noinfo