CVE-2023-1626
Jianming Antivirus IoControlCode kvcore.sys memory corruption
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
A vulnerability was found in Jianming Antivirus 16.2.2022.418. It has been declared as critical. This vulnerability affects unknown code in the library kvcore.sys of the component IoControlCode Handler. The manipulation leads to memory corruption. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-224008.
In Jianming Antivirus 16.2.2022.418 wurde eine Schwachstelle ausgemacht. Sie wurde als kritisch eingestuft. Dabei geht es um eine nicht genauer bekannte Funktion in der Bibliothek kvcore.sys der Komponente IoControlCode Handler. Durch Manipulation mit unbekannten Daten kann eine memory corruption-Schwachstelle ausgenutzt werden. Die Umsetzung des Angriffs hat dabei lokal zu erfolgen. Der Exploit steht zur öffentlichen Verfügung.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2023-03-25 CVE Reserved
- 2023-03-25 CVE Published
- 2024-08-02 CVE Updated
- 2024-08-02 First Exploit
- 2024-10-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (3)
URL | Tag | Source |
---|---|---|
https://github.com/zeze-zeze/WindowsKernelVuln/tree/master/unassigned31 | Broken Link | |
https://vuldb.com/?id.224008 | Technical Description |
URL | Date | SRC |
---|---|---|
https://drive.google.com/file/d/1soMFXUAYkCttFDA_icry6q-irb2jdAxw/view | 2024-08-02 |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Jiangmin Search vendor "Jiangmin" | Jiangmin Antivirus Search vendor "Jiangmin" for product "Jiangmin Antivirus" | 16.2.2022.418 Search vendor "Jiangmin" for product "Jiangmin Antivirus" and version "16.2.2022.418" | - |
Affected
|