CVE-2024-1096

Опубликовано: 13 фев. 2024

Источник: nvd

CVSS3: 5.5

EPSS Низкий

Описание

Twister Antivirus v8.17 is vulnerable to a Denial of Service vulnerability by triggering the 0x80112067, 0x801120CB 0x801120CC 0x80112044, 0x8011204B, 0x8011204F, 0x80112057, 0x8011205B, 0x8011205F, 0x80112063, 0x8011206F, 0x80112073, 0x80112077, 0x80112078, 0x8011207C and 0x80112080 IOCTL codes of the fildds.sys driver.

Ссылки

http://www.filseclab.com/en-us/products/twister.htm
Product
https://fluidattacks.com/advisories/holiday/
Third Party Advisory
http://www.filseclab.com/en-us/products/twister.htm
Product
https://fluidattacks.com/advisories/holiday/
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:filseclab:twister_antivirus:8.17:*:*:*:*:*:*:*

EPSS

Процентиль: 1%

0.00013

Низкий

5.5 Medium

CVSS3

Дефекты

CWE-476

Связанные уязвимости

GHSA-8h8w-85rq-cgp4

CVSS3: 7.8

github

почти 2 года назад

Twister Antivirus v8.17 allows Elevation of Privileges on the computer where it's installed by triggering the 0x80112067, 0x801120CB and 0x801120CC IOCTL codes of the fildds.sys driver.