Vulnerabilities > CVE-2023-1446 - NULL Pointer Dereference vulnerability in Watchdog Anti-Virus 1.4.214.0

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

watchdog

CWE-476

NVD

Published: 2023-03-17

Updated: 2024-04-11

Summary

A vulnerability classified as problematic was found in Watchdog Anti-Virus 1.4.214.0. Affected by this vulnerability is the function 0x80002004/0x80002008 in the library wsdk-driver.sys of the component IoControlCode Handler. The manipulation leads to denial of service. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-223291.

Vulnerable Configurations

Part	Description	Count
Application	Watchdog Watchdog Anti Virus 1.4.214.0	1

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

References

https://vuldb.com/?id.223291
https://drive.google.com/file/d/1zjK_DMjHz41RMpfa0iLQ4GXKQwEr4z2T/view
https://vuldb.com/?ctiid.223291
https://github.com/zeze-zeze/WindowsKernelVuln/tree/master/CVE-2023-1446