Lucene search

Fluid AttacksCVELIST:CVE-2024-0430

HistoryJan 22, 2024 - 6:43 p.m.

CVE-2024-0430 IObit Malware Fighter v11.0.0.1274 - Denial of Service (DoS)

2024-01-2218:43:29

CWE-476

Fluid Attacks

www.cve.org

iobit malware fighter

denial of service

vulnerability

imfhpregfilter.sys driver

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

Percentile

9.0%

JSON

IObit Malware Fighter v11.0.0.1274 is vulnerable to a Denial of Service vulnerability by triggering the 0x8001E00C IOCTL code of the ImfHpRegFilter.sys driver.

CNA Affected

[
  {
    "defaultStatus": "unknown",
    "platforms": [
      "Windows"
    ],
    "product": "IObit Malware Fighter",
    "vendor": "IObit",
    "versions": [
      {
        "status": "affected",
        "version": "11.0.0.1274"
      }
    ]
  }
]

References

fluidattacks.com/advisories/davis/

www.iobit.com/en/malware-fighter.php

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

Percentile

9.0%

JSON

Related for CVELIST:CVE-2024-0430