CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-17429

In K7 Antivirus Premium before 15.1.0.53, user-controlled input to the K7Sentry device is not sufficiently authenticated: a local user with a LOW integrity process can access a raw hard disk by sending a specific IOCTL.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 16.7%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 2.1

References

Products affected by CVE-2017-17429

K7computing » Antivirus » Version: Any

cpe:2.3:a:k7computing:antivirus:*
K7computing » Endpoint » Version: Any

cpe:2.3:a:k7computing:endpoint:*
K7computing » Internet Security » Version: Any

cpe:2.3:a:k7computing:internet_security:*
K7computing » Total Security » Version: Any

cpe:2.3:a:k7computing:total_security:*
K7computing » Total Security » Version: 14.2.0.252

cpe:2.3:a:k7computing:total_security:14.2.0.252
K7computing » Total Security » Version: 15.1.0.305

cpe:2.3:a:k7computing:total_security:15.1.0.305
K7computing » Ultimate Security » Version: 14.2.0.252

cpe:2.3:a:k7computing:ultimate_security:14.2.0.252

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-17429

Products

Pricing

Contact Us