CVE-2017-8774

CRITICAL

9.8

Description

Quick Heal Internet Security 10.1.0.316, Quick Heal Total Security 10.1.0.316, and Quick Heal AntiVirus Pro 10.1.0.316 are vulnerable to Memory Corruption while parsing a malformed Mach-O file.

CVE Details

CVSS v3.1 Score9.8

SeverityCRITICAL

CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack VectorNETWORK

ComplexityLOW

Privileges RequiredNONE

User InteractionNONE

Published5/4/2017

Last Modified4/20/2025

Sourcenvd

Honeypot Sightings0

Affected Products

quickheal:antivirus_proquickheal:internet_securityquickheal:total_security

Weaknesses (CWE)

CWE-787

References

http://payatu.com/quick-heal-internet-security-memory-corruption-vulnerability/(cve@mitre.org)

http://payatu.com/quick-heal-internet-security-memory-corruption-vulnerability/(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.