Vulnerability Description
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to cause a denial of service (DoS) via the Threat To Process Correlation threat prevention module. NOTE: Heimdal asserts this is not a valid vulnerability. Their DNS Security for Endpoint solution includes an optional feature to provide extra information on the originating process that made a DNS request. The lack of process identification in DNS logs is therefore falsely categorized as a DoS issue.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Heimdalsecurity | Thor | <= 3.5.3 |
| Microsoft | Windows | - |
| Apple | Macos | - |
Related Weaknesses (CWE)
References
- https://medium.com/%40drabek.a/weaknesses-in-heimdal-thors-line-of-products-9d0eExploitThird Party Advisory
- https://medium.com/%40drabek.a/weaknesses-in-heimdal-thors-line-of-products-9d0eExploitThird Party Advisory
FAQ
What is CVE-2023-29487?
CVE-2023-29487 is a vulnerability with a CVSS score of 9.1 (CRITICAL). An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to cause a denial of service (DoS) via the Threat To Process Correlat...
How severe is CVE-2023-29487?
CVE-2023-29487 has been rated CRITICAL with a CVSS base score of 9.1/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2023-29487?
Check the references section above for vendor advisories and patch information. Affected products include: Heimdalsecurity Thor, Microsoft Windows, Apple Macos.