Vulnerability Details CVE-2023-29487
An issue was discovered in Heimdal Thor agent versions 3.4.2 and before on Windows and 2.6.9 and before on macOS, allows attackers to cause a denial of service (DoS) via the Threat To Process Correlation threat prevention module. NOTE: Heimdal asserts this is not a valid vulnerability. Their DNS Security for Endpoint solution includes an optional feature to provide extra information on the originating process that made a DNS request. The lack of process identification in DNS logs is therefore falsely categorized as a DoS issue.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 22.8%
CVSS Severity
CVSS v3 Score 9.1
References
Products affected by CVE-2023-29487
-
cpe:2.3:a:heimdalsecurity:thor:2.5.170
-
cpe:2.3:a:heimdalsecurity:thor:2.5.171
-
cpe:2.3:a:heimdalsecurity:thor:2.5.172
-
cpe:2.3:a:heimdalsecurity:thor:2.5.173
-
cpe:2.3:a:heimdalsecurity:thor:2.6.9
-
cpe:2.3:a:heimdalsecurity:thor:3.5.3
-
cpe:2.3:o:apple:macos:-
-
cpe:2.3:o:microsoft:windows:-