CVE-2018-8044

Published: Jan 11, 2021Modified: Nov 21, 2024

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

K7Computing Pvt Ltd K7Antivirus Premium 15.1.0.53 is affected by: Incorrect Access Control. The impact is: Local Process Execution (local). The component is: K7Sentry.sys.

Affected (4)

Products: K7computing: Antivrius, Enterprise Security, Total Security, Ultimate Security

4 products

Enterprise Security

Ultimate Security

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
K7computing Antivrius	Before 16.0.0001
K7computing Enterprise Security	Before 14.2.0001
K7computing Total Security	Before 16.0.0001
K7computing Ultimate Security	Before 16.0.0001

Related CWEs

Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

Incorrect Authorization

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. This allows attackers to bypass intended access restrictions.

References (6)

http://k7antivirus.com

Source: cve@mitre.org

Product

http://k7computing.com

Source: cve@mitre.org

Product

https://support.k7computing.com/index.php?/selfhelp/view-article/Advisory-issued-on-6th-January-2021

Source: cve@mitre.org

Vendor Advisory

http://k7antivirus.com

Source: af854a3a-2127-422b-91ae-364da2661108

Product

http://k7computing.com

Source: af854a3a-2127-422b-91ae-364da2661108

Product

https://support.k7computing.com/index.php?/selfhelp/view-article/Advisory-issued-on-6th-January-2021

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.