Vulnerabilities > CVE-2018-8724 - Incorrect Authorization vulnerability in K7Computing products

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

k7computing

CWE-863

NVD

Published: 2021-01-11

Updated: 2021-01-13

Summary

K7Computing Pvt Ltd K7AntiVirus Premium 15.1.0.53 is affected by: Incorrect Access Control. The impact is: gain privileges (local). The component is: K7TSMngr.exe.

Vulnerable Configurations

Part	Description	Count
Application	K7Computing K7Computing Enterprise Security * K7Computing Ultimate Security 14.2.0.252 K7Computing Ultimate Security 15.1.0324 K7Computing Total Security 14.2.0.252 K7Computing Total Security 15.1.0.305 K7Computing Total Security 15.1.0324 K7Computing Antivrius *	7

Common Weakness Enumeration (CWE)

CWE-863 - Incorrect Authorization

References

http://k7computing.com
http://k7antivirus.com
https://support.k7computing.com/index.php?/selfhelp/view-article/Advisory-issued-on-6th-January-2021