CVE-2018-6306

7.8HIGH

Key Information:

Vendor: Kaspersky
Status: Kaspersky Password Manager
Vendor: CVE Published:; 12 April 2018

Summary

Unauthorized code execution from specific DLL and is known as DLL Hijacking attack in Kaspersky Password Manager versions before 8.0.6.538.

Affected Version(s)

Kaspersky Password Manager Before 8.0.6.538

References

https://support.kaspersky.com/vulnerability.aspx?el=12430...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Apr 12, 2018
Vulnerability Reserved
Jan 25, 2018

.