CVE-2023-1628

CWE-476NULL Pointer Dereference3 documents3 sources
Severity
5.5MEDIUM
EPSS
0.1%
top 80.26%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Jianming AntivirusJiangmin Jiangmin Antivirus
Timeline
PublishedMar 25

Description

A vulnerability classified as problematic has been found in Jianming Antivirus 16.2.2022.418. Affected is an unknown function in the library kvcore.sys of the component IoControlCode Handler. The manipulation leads to null pointer dereference. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. VDB-224010 is the identifier assigned to this vulnerability.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

CVEListV5jianming/antivirus16.2.2022.418
NVDjiangmin/jiangmin_antivirus16.2.2022.418

🔴Vulnerability Details

2
CVEList
Jianming Antivirus IoControlCode kvcore.sys null pointer dereference2023-03-25
GHSA
GHSA-hcgv-rjpx-8qjc: A vulnerability classified as problematic has been found in Jianming Antivirus 162023-03-25
CVE-2023-1628 (MEDIUM CVSS 5.5) | A vulnerability classified as probl | cvebase.io