An issue was discovered in Heimdal Thor agent versions 3.4.2 and before 3.7.0 on Windows, allows attackers to bypass USB access restrictions, execute arbitrary code, and obtain sensitive information via Next-Gen Antivirus component.
References
Link | Resource |
---|---|
https://medium.com/%40drabek.a/weaknesses-in-heimdal-thors-line-of-products-9d0e5095fb93 | Exploit Third Party Advisory |
Configurations
History
29 Dec 2023, 02:20
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
CPE | cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:* cpe:2.3:a:heimdalsecurity:thor:*:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
|
Summary | (es) Se descubrió un problema en las versiones 3.4.2 y anteriores al 3.7.0 del agente Heimdal Thor en Windows, que permite a los atacantes omitir las restricciones de acceso USB, ejecutar código arbitrario y obtener información confidencial a través del componente antivirus de próxima generación. | |
CWE | CWE-1333 | |
References | () https://medium.com/%40drabek.a/weaknesses-in-heimdal-thors-line-of-products-9d0e5095fb93 - Exploit, Third Party Advisory | |
First Time |
Heimdalsecurity thor
Microsoft windows Apple macos Heimdalsecurity Apple Microsoft |
21 Dec 2023, 02:24
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
21 Dec 2023, 01:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-12-21 01:15
Updated : 2023-12-29 02:20
NVD link : CVE-2023-29486
Mitre link : CVE-2023-29486
CVE.ORG link : CVE-2023-29486
JSON object : View
Products Affected
microsoft
- windows
apple
- macos
heimdalsecurity
- thor
CWE