CVE-2017-8776
Last modified
CVE-2017-8776 is a high-severity vulnerability rated 7.5/10 on the CVSS scale. Quick Heal Internet Security 10.1.0.316, Quick Heal Total Security 10.1.0.316, and Quick Heal AntiVirus Pro 10.1.0.316 have approximately 165 PE files in the default installation that do not use ASLR/DEP protection mechanisms that provide sufficient defense against directed attacks against the product.. EPSS estimates a 0.93% chance of exploitation in the next 30 days.
Description
Quick Heal Internet Security 10.1.0.316, Quick Heal Total Security 10.1.0.316, and Quick Heal AntiVirus Pro 10.1.0.316 have approximately 165 PE files in the default installation that do not use ASLR/DEP protection mechanisms that provide sufficient defense against directed attacks against the product.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Quickheal | Antivirus Pro | <= 10.1.0.316 |
| Quickheal | Internet Security | <= 10.1.0.316 |
| Quickheal | Total Security | <= 10.1.0.316 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-8776?
How severe is CVE-2017-8776?
How do I fix CVE-2017-8776?
Are you affected by CVE-2017-8776?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST