CVE-2019-3970 — MEDIUM (5.5)

Q: How severe is CVE-2019-3970?

CVE-2019-3970 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2019-3970?

Check the references section above for vendor advisories and patch information. Affected products include: Comodo Antivirus.

Vulnerability Description

Comodo Antivirus versions up to 12.0.0.6810 are vulnerable to Arbitrary File Write due to Cavwp.exe handling of Comodo's Antivirus database. Cavwp.exe loads Comodo antivirus definition database in unsecured global section objects, allowing a local low privileged process to modify this data directly and change virus signatures.

CVSS Score

5.5

MEDIUM

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

HIGH

Availability

NONE

Affected Products

Vendor	Product	Versions
Comodo	Antivirus	<= 12.0.0.6810

Related Weaknesses (CWE)

CWE-668

References

https://www.tenable.com/security/research/tra-2019-34ExploitThird Party Advisory
https://www.tenable.com/security/research/tra-2019-34ExploitThird Party Advisory

FAQ

What is CVE-2019-3970?

CVE-2019-3970 is a vulnerability with a CVSS score of 5.5 (MEDIUM). Comodo Antivirus versions up to 12.0.0.6810 are vulnerable to Arbitrary File Write due to Cavwp.exe handling of Comodo's Antivirus database. Cavwp.exe loads Comodo antivirus definition database in uns...

How severe is CVE-2019-3970?

CVE-2019-3970 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2019-3970?

Check the references section above for vendor advisories and patch information. Affected products include: Comodo Antivirus.