CVE-2018-15732

Severity CVSS v4.0:
Pending analysis
Type:
CWE-20 Input Validation
Publication date:
21/06/2019
Last modified:
21/06/2019

Description

An issue was discovered in STOPzilla AntiMalware 6.5.2.59. The driver file szkg64.sys contains an Arbitrary Write vulnerability due to not validating the output buffer address value from IOCtl 0x80002063.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:stopzilla:antimalware:6.5.2.59:*:*:*:*:*:*:*