Vulnerabilities > CVE-2018-8044 - Incorrect Authorization vulnerability in K7Computing products

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

k7computing

CWE-863

NVD

Published: 2021-01-11

Updated: 2021-01-13

Summary

K7Computing Pvt Ltd K7Antivirus Premium 15.1.0.53 is affected by: Incorrect Access Control. The impact is: Local Process Execution (local). The component is: K7Sentry.sys.

Vulnerable Configurations

Part	Description	Count
Application	K7Computing K7Computing Antivrius * K7Computing Enterprise Security * K7Computing Total Security 14.2.0.252 K7Computing Total Security 15.1.0.305 K7Computing Ultimate Security 14.2.0.252	5

Common Weakness Enumeration (CWE)

CWE-863 - Incorrect Authorization

References

http://k7antivirus.com
http://k7computing.com
https://support.k7computing.com/index.php?/selfhelp/view-article/Advisory-issued-on-6th-January-2021