CVE-2023-0907
Filseclab Twister Antivirus IoControlCode ffsmon.sys 0x220017 denial of service
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
A vulnerability, which was classified as problematic, has been found in Filseclab Twister Antivirus 8.17. Affected by this issue is the function 0x220017 in the library ffsmon.sys of the component IoControlCode Handler. The manipulation leads to denial of service. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-221456.
Eine problematische Schwachstelle wurde in Filseclab Twister Antivirus 8.17 entdeckt. Es geht hierbei um die Funktion 0x220017 in der Bibliothek ffsmon.sys der Komponente IoControlCode Handler. Durch Manipulation mit unbekannten Daten kann eine denial of service-Schwachstelle ausgenutzt werden. Der Angriff muss lokal passieren. Der Exploit steht zur öffentlichen Verfügung.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2023-02-18 CVE Reserved
- 2023-02-18 CVE Published
- 2024-08-02 CVE Updated
- 2024-08-02 First Exploit
- 2024-09-10 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-404: Improper Resource Shutdown or Release
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| https://vuldb.com/?id.221456 | Technical Description |
| URL | Date | SRC |
|---|---|---|
| https://github.com/zeze-zeze/WindowsKernelVuln/tree/master/CVE-2023-0907 | 2024-08-02 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Filseclab Search vendor "Filseclab" | Twister Antivirus Search vendor "Filseclab" for product "Twister Antivirus" | 8.17 Search vendor "Filseclab" for product "Twister Antivirus" and version "8.17" | - |
Affected
| ||||||