📦

internet_security_9_plus

Vendor: kingsoft

Actively Exploited 0 CISA KEV List

PoC / Exploits 1 Code Available

Total RCEs 1 Remote Access

Total CVEs 2 Total Indexed

Avg. EPSS 0.70% Exploit Prob.

Latest CVE CVE-2022-25949 Mar 17

Security Vulnerability Index

Page 1 / 1

7.8 CVSS

CVE-2022-25949

RCE Exploit Found

The kernel mode driver kwatch3 of KINGSOFT Internet Security 9 Plus Version 2010.06.23.247 fails to properly handle crafted inputs, leading to stack-based buffer overflow.

EPSS: 1.35%

Severity: HIGH

Mar 17, 2022

5.5 CVSS

CVE-2018-9151

A NULL pointer dereference bug in the function ObReferenceObjectByHandle in the Kingsoft Internet Security 9+ kernel driver KWatch3.sys allows local non-privileged users to crash the system via IOCTL 0x80030030.

EPSS: 0.05%

Severity: MEDIUM

Mar 30, 2018

Displaying 2 of 2 Total Entries

Total 1 Sections