Lucene search

[email protected]CVE-2018-8044

HistoryJan 11, 2021 - 4:15 p.m.

CVE-2018-8044

2021-01-1116:15:13

CWE-863

CWE-269

[email protected]

web.nvd.nist.gov

k7antivirus

premium

incorrect access control

cve-2018-8044

k7sentry.sys

local process execution

nvd

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.9%

JSON

K7Computing Pvt Ltd K7Antivirus Premium 15.1.0.53 is affected by: Incorrect Access Control. The impact is: Local Process Execution (local). The component is: K7Sentry.sys.

Affected configurations

NVD

Node

k7computingantivriusRange<16.0.0001premium

k7computingenterprise_securityRange<14.2.0001

k7computingtotal_securityRange<16.0.0001

k7computingultimate_securityRange<16.0.0001

CPENameOperatorVersion
k7computing:antivriusk7computing antivriuslt16.0.0001
k7computing:enterprise_securityk7computing enterprise securitylt14.2.0001
k7computing:total_securityk7computing total securitylt16.0.0001
k7computing:ultimate_securityk7computing ultimate securitylt16.0.0001

CPE	Name	Operator	Version
k7computing:antivrius	k7computing antivrius	lt	16.0.0001
k7computing:enterprise_security	k7computing enterprise security	lt	14.2.0001
k7computing:total_security	k7computing total security	lt	16.0.0001
k7computing:ultimate_security	k7computing ultimate security	lt	16.0.0001

References

k7antivirus.com

k7computing.com

support.k7computing.com/index.php?/selfhelp/view-article/Advisory-issued-on-6th-January-2021

Social References

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.9%

JSON

Related for CVE-2018-8044

nvd1 cvelist1 prion1