CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 2CVE-2023-1007 – Twister Antivirus IoControlCode filmfd.sys 0x801120E4 access control
https://notcve.org/view.php?id=CVE-2023-1007
A vulnerability was found in Twister Antivirus 8.17. It has been declared as critical. This vulnerability affects the function 0x801120E4 in the library filmfd.sys of the component IoControlCode Handler. The manipulation leads to improper access controls. The attack needs to be approached locally. • https://drive.google.com/file/d/1wh20g2Ze4gwCtripe7QeHNXd3bS4aZNG/view?usp=sharing https://github.com/zeze-zeze/WindowsKernelVuln/tree/master/CVE-2023-1007 https://vuldb.com/?ctiid.221740 https://vuldb.com/?id.221740 • CWE-284: Improper Access Control •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-0907 – Filseclab Twister Antivirus IoControlCode ffsmon.sys 0x220017 denial of service
https://notcve.org/view.php?id=CVE-2023-0907
A vulnerability, which was classified as problematic, has been found in Filseclab Twister Antivirus 8.17. Affected by this issue is the function 0x220017 in the library ffsmon.sys of the component IoControlCode Handler. The manipulation leads to denial of service. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. • https://github.com/zeze-zeze/WindowsKernelVuln/tree/master/CVE-2023-0907 https://vuldb.com/?ctiid.221456 https://vuldb.com/?id.221456 • CWE-404: Improper Resource Shutdown or Release •