5.5
CVE-2023-1446
- EPSS 0.33%
- Veröffentlicht 17.03.2023 07:15:11
- Zuletzt bearbeitet 21.11.2024 07:39:12
- Quelle cna@vuldb.com
- CVE-Watchlists
- Unerledigt
LoginWatchdog Anti-Virus IoControlCode wsdk-driver.sys 0x80002008 denial of service
A vulnerability classified as problematic was found in Watchdog Anti-Virus 1.4.214.0. Affected by this vulnerability is the function 0x80002004/0x80002008 in the library wsdk-driver.sys of the component IoControlCode Handler. The manipulation leads to denial of service. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-223291.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Watchdog ≫ Anti-virus Version1.4.214.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.33% | 0.244 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
| cna@vuldb.com | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
| cna@vuldb.com | 4.6 | 3.1 | 6.9 |
AV:L/AC:L/Au:S/C:N/I:N/A:C
|
CWE-404 Improper Resource Shutdown or Release
The product does not release or incorrectly releases a resource before it is made available for re-use.
CWE-476 NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.
https://drive.google.com/file/d/1zjK_DMjHz41RMpfa0iLQ4GXKQwEr4z2T/view
https://github.com/zeze-zeze/WindowsKernelVuln/tree/master/CVE-2023-1446
https://vuldb.com/?ctiid.223291
https://vuldb.com/?id.223291