Watchdog Anti-Virus IoControlCode wsdk-driver.sys 0x80002008 access control
CVE-2023-1453

7.1HIGH

Key Information:

Vendor: Watchdog
Status: Anti-Virus
Vendor: CVE Published:; 17 March 2023

What is CVE-2023-1453?

A vulnerability has been identified in Watchdog Anti-Virus version 1.4.214.0, specifically within the function 0x80002008 located in the library wsdk-driver.sys. This issue arises from improper access controls within the IoControlCode Handler. Successful exploitation of this vulnerability requires local access, allowing malicious actors to manipulate access controls and gain unauthorized permissions. The public disclosure of the exploit raises concerns for users and organizations relying on this antivirus solution. Precautionary measures should be taken to mitigate potential risks.

Affected Version(s)

Anti-Virus 1.4.214.0

References

https://vuldb.com/?id.223298

vdb-entrytechnical-description

https://vuldb.com/?ctiid.223298

signaturepermissions-required

https://github.com/zeze-zeze/WindowsKernelVuln/tree/maste...

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 17, 2023
Vulnerability Reserved
Mar 17, 2023

Credit

Zeze7w (VulDB User)