Arbitrary Process Termination via Vulnerable Driver in Baidu Antivirus
CVE-2024-51324

3.8LOW

Key Information:

Vendor: Baidu
Status: Baidu Antivirus
Vendor: CVE Published:; 11 February 2025

What is CVE-2024-51324?

A security flaw in the BdApiUtil driver of Baidu Antivirus v5.2.3.116083 enables attackers to exploit the system through a Bring Your Own Vulnerable Driver (BYOVD) attack, allowing the execution of arbitrary code that can terminate any running process. This vulnerability compromises the integrity of the system, posing a significant risk to users relying on Baidu’s antivirus solutions.

References

https://github.com/magicsword-io/LOLDrivers/issues/204

CVSS V3.1

Score:

3.8

Severity:

LOW

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 11, 2025
Vulnerability Reserved
Oct 28, 2024