// For flags

CVE-2014-8608

K7 Computing Multiple Products Null Pointer Dereference

Severity Score

5.5
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

3
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

The K7Sentry.sys kernel mode driver (aka K7AV Sentry Device Driver) before 12.8.0.119, as used in multiple K7 Computing products, allows local users to cause a denial of service (NULL pointer dereference) as demonstrated by a filename containing "crashme$$".

El controlador del modo kérnel K7Sentry.sys (también conocido como K7AV Sentry Device Driver) en versiones anteriores a 12.8.0.119, como se usa en múltiples productos K7 Computing, permite a usuarios locales provocar una denegación de servicio (referencia a puntero NULL) según lo demostrado por un nombre de archivo que contiene "crashme$$".

K7Sentry.sys kernel mode driver version 12.8.0.104 suffers from a null pointer dereference vulnerability.

*Credits: N/A
CVSS Scores
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Attack Vector
Local
Attack Complexity
Low
Authentication
None
Confidentiality
None
Integrity
None
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2014-11-04 CVE Reserved
  • 2014-12-10 CVE Published
  • 2024-08-06 CVE Updated
  • 2024-08-06 First Exploit
  • 2025-04-08 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
K7computing
Search vendor "K7computing"
 K7av Sentry Device Driver
Search vendor "K7computing" for product "K7av Sentry Device Driver"
 <= 12.8.0.118
Search vendor "K7computing" for product "K7av Sentry Device Driver" and version " <= 12.8.0.118"
-
Affected