Vulnerability Description
A vulnerability was found in IObit Malware Fighter 9.4.0.776. It has been declared as critical. This vulnerability affects the function 0x8018E000/0x8018E004 in the library IMFCameraProtect.sys of the component IOCTL Handler. The manipulation leads to stack-based buffer overflow. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. VDB-224026 is the identifier assigned to this vulnerability.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Iobit | Malware Fighter | 9.4.0.776 |
Related Weaknesses (CWE)
References
- https://drive.google.com/file/d/1GITWzh29cRcycVqVJgMJuX6emE_f1KPV/viewProductThird Party Advisory
- https://github.com/zeze-zeze/WindowsKernelVuln/tree/master/CVE-2023-1646ExploitThird Party Advisory
- https://vuldb.com/?ctiid.224026Permissions RequiredThird Party Advisory
- https://vuldb.com/?id.224026Third Party Advisory
- https://drive.google.com/file/d/1GITWzh29cRcycVqVJgMJuX6emE_f1KPV/viewProductThird Party Advisory
- https://github.com/zeze-zeze/WindowsKernelVuln/tree/master/CVE-2023-1646ExploitThird Party Advisory
- https://vuldb.com/?ctiid.224026Permissions RequiredThird Party Advisory
- https://vuldb.com/?id.224026Third Party Advisory
FAQ
What is CVE-2023-1646?
CVE-2023-1646 is a vulnerability with a CVSS score of 5.3 (MEDIUM). A vulnerability was found in IObit Malware Fighter 9.4.0.776. It has been declared as critical. This vulnerability affects the function 0x8018E000/0x8018E004 in the library IMFCameraProtect.sys of the...
How severe is CVE-2023-1646?
CVE-2023-1646 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-1646?
Check the references section above for vendor advisories and patch information. Affected products include: Iobit Malware Fighter.