CVE-2024-1140 — MEDIUM (6.1)

Vulnerability Description

Twister Antivirus v8.17 is vulnerable to an Out-of-bounds Read vulnerability by triggering the 0x801120B8 IOCTL code of the filmfd.sys driver.

CVSS Score

6.1

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Filseclab	Twister Antivirus	8.17

Related Weaknesses (CWE)

CWE-125

References

http://www.filseclab.com/en-us/products/twister.htmProduct
https://fluidattacks.com/advisories/fitzgerald/Third Party Advisory
http://www.filseclab.com/en-us/products/twister.htmProduct
https://fluidattacks.com/advisories/fitzgerald/Third Party Advisory

FAQ

What is CVE-2024-1140?

CVE-2024-1140 is a vulnerability with a CVSS score of 6.1 (MEDIUM). Twister Antivirus v8.17 is vulnerable to an Out-of-bounds Read vulnerability by triggering the 0x801120B8 IOCTL code of the filmfd.sys driver.

How severe is CVE-2024-1140?

CVE-2024-1140 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2024-1140?

Check the references section above for vendor advisories and patch information. Affected products include: Filseclab Twister Antivirus.