CVE-2017-17429

2018-01-1619:00:00

mitre

www.cve.org

6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

In K7 Antivirus Premium before 15.1.0.53, user-controlled input to the K7Sentry device is not sufficiently authenticated: a local user with a LOW integrity process can access a raw hard disk by sending a specific IOCTL.

References

support.k7computing.com/index.php?/selfhelp/view-article/Advisory-issued-on-5th-December-2017