Lucene search

PRIOn knowledge basePRION:CVE-2023-2873

HistoryMay 24, 2023 - 6:15 p.m.

Memory corruption

2023-05-2418:15:00

PRIOn knowledge base

www.prio-n.com

twister antivirus 8

memory corruption

iocontrolcode handler

vdb-229852

local access vulnerability

public exploit disclosure

filppd.sys library

7.6 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

A vulnerability classified as critical was found in Twister Antivirus 8. This vulnerability affects the function 0x804f2143/0x804f217f/0x804f214b/0x80800043 in the library filppd.sys of the component IoControlCode Handler. The manipulation leads to memory corruption. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-229852. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CPENameOperatorVersion
twister_antivirusge8.0
twister_antivirusle8.17

CPE	Name	Operator	Version
	twister_antivirus	ge	8.0
	twister_antivirus	le	8.17

References

drive.google.com/file/d/1ABRMxr6Ek02P_WAXjyYLGQ4sHYMVQTka/view?usp=sharing

github.com/zeze-zeze/WindowsKernelVuln/blob/master/CVE-2023-2873

vuldb.com/?ctiid.229852

vuldb.com/?id.229852