CVE-2023-29486

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Dec 21, 2023
Updated: Dec 29, 2023
CWE ID 1333

Summary

CVE-2023-29486 is a vulnerability affecting Heimdal Thor agent versions 3.4.2 and below 3.7.0 on Windows systems. This issue grants attackers the ability to bypass USB access restrictions, enabling them to execute arbitrary code and extract sensitive information. The vulnerability lies within the Next-Gen Antivirus component, posing a significant risk to system security. Attackers can exploit this flaw to gain unauthorized access and potentially cause severe damage. Users are urged to update their Heimdal Thor agent to a patched version as soon as possible to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share