CVE-2023-1491
Published on: Not Yet Published
Last Modified on: 03/26/2023 08:15:00 AM UTC
Certain versions of Anti Virus Plus from Maxpcsecure contain the following vulnerability:
A vulnerability was found in Max Secure Anti Virus Plus 19.0.2.1. It has been classified as critical. This affects the function 0x220020 in the library MaxCryptMon.sys of the component IoControlCode Handler. The manipulation leads to improper access controls. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The identifier VDB-223377 was assigned to this vulnerability.
- CVE-2023-1491 has been assigned by
[email protected] to track the vulnerability - currently rated as MEDIUM severity.
- Affected Vendor/Software:
Max Secure - Anti Virus Plus version = 19.0.2.1
CVSS3 Score: 5.5 - MEDIUM
Attack Vector ⓘ |
Attack Complexity |
Privileges Required |
User Interaction |
---|---|---|---|
LOCAL | LOW | LOW | NONE |
Scope | Confidentiality Impact |
Integrity Impact |
Availability Impact |
UNCHANGED | NONE | HIGH | NONE |
CVE References
Description | Tags ⓘ | Link |
---|---|---|
WindowsKernelVuln/unassigned22 at master · zeze-zeze/WindowsKernelVuln · GitHub | github.com text/html |
![]() |
WindowsKernelVuln/CVE-2023-1491 at master · zeze-zeze/WindowsKernelVuln · GitHub | github.com text/html |
![]() |
Login required | vuldb.com text/html Inactive LinkNot Archived |
![]() |
Login required | vuldb.com text/html Inactive LinkNot Archived |
![]() |
https://drive.google.com/file/d/1-h-6ijBvucNU-dYglWW5n4l2ys-MDAF9/view | drive.google.com text/html Inactive LinkNot Archived |
![]() |
There are currently no QIDs associated with this CVE
Known Affected Configurations (CPE V2.3)
Type | Vendor | Product | Version | Update | Edition | Language |
---|---|---|---|---|---|---|
Application | Maxpcsecure | Anti Virus Plus | 19.0.2.1 | All | All | All |
- cpe:2.3:a:maxpcsecure:anti_virus_plus:19.0.2.1:*:*:*:*:*:*:*:
No vendor comments have been submitted for this CVE
Social Mentions
Source | Title | Posted (UTC) |
---|---|---|
![]() |
CVE-2023-1491 | 2023-03-18 23:38:21 |