CVE-2023-1008

Exploit

EPSS 0.05%
Published 24.02.2023 11:15:10
Last modified 21.11.2024 07:38:16
Source cna@vuldb.com
Teams watchlist Login
Open Login

A vulnerability was found in Twister Antivirus 8.17. It has been rated as problematic. This issue affects the function 0x801120E4 in the library filmfd.sys of the component IoControlCode Handler. The manipulation leads to denial of service. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. The identifier VDB-221741 was assigned to this vulnerability.

Affected products Warnungen 0 Metrics 4 CWE 1 References 7

Data is provided by the National Vulnerability Database (NVD)

Filseclab ≫ Twister Antivirus Version8.17

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.05%	0.126

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
cna@vuldb.com	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
cna@vuldb.com	4.6	3.1	6.9	AV:L/AC:L/Au:S/C:N/I:N/A:C

CWE-404 Improper Resource Shutdown or Release

The product does not release or incorrectly releases a resource before it is made available for re-use.

https://drive.google.com/file/d/1fdQWJ1uvXELnXnDm2Jk81bA0fwwqQCpY/view?usp=sharing

Broken Link

https://github.com/zeze-zeze/WindowsKernelVuln/tree/master/CVE-2023-1008

Patch

Third Party Advisory

Exploit

https://vuldb.com/?ctiid.221741

Third Party Advisory

Permissions Required

https://vuldb.com/?id.221741

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-1008

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-1008

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-1008

EUVD