CVE-2018-15885
Last modified
CVE-2018-15885 is a vulnerability of currently unknown severity. Ovation FindMe 1.4-1083-1 is intended to support transmission of network traffic from covert video recorders but does not properly disrupt binary analysis for discovering the product's capabilities or purpose. This makes it easier for adversaries to detect the covert operation. EPSS estimates a 1.21% chance of exploitation in the next 30 days.
Description
Ovation FindMe 1.4-1083-1 is intended to support transmission of network traffic from covert video recorders but does not properly disrupt binary analysis for discovering the product's capabilities or purpose. This makes it easier for adversaries to detect the covert operation. Specifically, the product uses a compression technique to prevent the identification of certain libraries in the software by obfuscation. The software relies on a TLS callback and an additional executable file to enable these libraries and their access to certain websites. The unpacked software can be exploited by several different types of documented techniques.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Ovation | Findme | 1.4-1083-1 |
References
- https://github.com/GitHubAssessments/CVE_Assessment_02_2018/blob/master/FindMe_Report.pdfExploit, Technical Description, Third Party Advisory
- https://github.com/GitHubAssessments/CVE_Assessment_02_2018/blob/master/FindMe_Report.pdfExploit, Technical Description, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2018-15885?
How severe is CVE-2018-15885?
How do I fix CVE-2018-15885?
Are you affected by CVE-2018-15885?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST