Vulnerabilities > CVE-2024-23441 - NULL Pointer Dereference vulnerability in Anti-Virus Vba32 3.36.0

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
anti-virus
CWE-476
NVD
Published: 2024-01-29
Updated: 2024-02-05

Summary

Vba32 Antivirus v3.36.0 is vulnerable to a Denial of Service vulnerability by triggering the 0x2220A7 IOCTL code of the Vba32m64.sys driver.

Vulnerable Configurations

Part Description Count
Application
Anti-Virus
1
OS
Microsoft
1

Common Weakness Enumeration (CWE)

References