CVE-2024-1096

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Feb 13, 2024

Updated: Mar 21, 2024

CWE ID 476

Summary

CVE-2024-1096 refers to a Denial of Service vulnerability affecting Twister Antivirus v8.17. This issue arises due to the antivirus software's susceptibility to triggering specific IOCTL (Input/Output Control) codes of the fildds.sys driver, including 0x80112067, 0x801120CB, 0x801120CC, 0x80112044, 0x8011204B, 0x8011204F, 0x80112057, 0x8011205B, 0x8011205F, 0x80112063, 0x8011206F, 0x80112073, 0x80112077, 0x80112078, 0x8011207C, and 0x80112080. An attacker can exploit this vulnerability by sending malicious inputs to the driver, leading to a Denial of Service condition. Users are advised to install the latest software updates to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database