CVE-2017-16550

K7 Antivirus Premium before 15.1.0.53 allows local users to write to arbitrary memory locations, and consequently gain privileges, via a specific set of IOCTL calls.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 15%
VendorProductVersion
k7computingantivirus
𝑥
< 15.1.0.53
k7computingantivirus
𝑥
< 15.1.0308
k7computingendpoint
𝑥
< 14.2.0137
k7computinginternet_security
𝑥
< 15.1.0297
k7computingtotal_security
𝑥
< 15.1.0324
k7computingtotal_security
𝑥
< 16.0.0131
k7computingultimate_security
𝑥
< 15.1.0324
𝑥
= Vulnerable software versions
References
https://support.k7computing.com/index.php?/selfhelp/view-article/Advisory-issued-on-6th-November-2017
https://support.k7computing.com/index.php?/selfhelp/view-article/Advisory-issued-on-6th-November-2017