CVE-2018-3989 - An exploitable kernel memory disclosure vulnerability exists in the 0x8200E804 IOCTL handler functio

CVE-2018-3989

Summary

An exploitable kernel memory disclosure vulnerability exists in the 0x8200E804 IOCTL handler functionality of WIBU-SYSTEMS WibuKey.sys Version 6.40 (Build 2400).A specially crafted IRP request can cause the driver to return uninitialized memory, resulting in kernel memory disclosure. An attacker can send an IRP request to trigger this vulnerability.

References

Vulnerable Configurations

cpe:2.3:a:wibu:wibukey:6.40:*:*:*:*:*:*:*
cpe:2.3:a:wibu:wibukey:6.40:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

CVSS

Base:	2.1 (as of 19-04-2022 - 18:15)
Impact:
Exploitability:

CWE

CWE-908

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

cvss-vector via4

AV:L/AC:L/Au:N/C:P/I:N/A:N

refmap via4

bid	107005
confirm	https://cert-portal.siemens.com/productcert/pdf/ssa-760124.pdf https://cert-portal.siemens.com/productcert/pdf/ssa-844562.pdf https://cert-portal.siemens.com/productcert/pdf/ssa-902727.pdf
misc	https://talosintelligence.com/vulnerability_reports/TALOS-2018-0657

Last major update

19-04-2022 - 18:15

Published

05-02-2019 - 23:29

Last modified

19-04-2022 - 18:15