Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    4 vulnerabilities by ks-soft

    CVE-2018-25256 (GCVE-0-2018-25256)

    Vulnerability from nvd – Published: 2026-04-05 20:45 – Updated: 2026-04-06 16:12
    VLAI
    Title
    IP TOOLS 2.50 Local Buffer Overflow Denial of Service
    Summary
    IP TOOLS 2.50 contains a local buffer overflow vulnerability in the SNMP Scanner component that allows local attackers to crash the application by supplying oversized input. Attackers can paste malicious data into the 'From Addr' and 'To Addr' fields and trigger the crash by clicking the Start button, causing denial of service and SEH overwrite.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Ks-Soft IP TOOLS Affected: 2.50
    Create a notification for this product.
    Date Public
    2018-12-20 00:00
    Credits
    Rafael Pedrero
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2018-25256",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-06T16:12:44.027015Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-06T16:12:54.067Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "IP TOOLS",
              "vendor": "Ks-Soft",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.50"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Rafael Pedrero"
            }
          ],
          "datePublic": "2018-12-20T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "IP TOOLS 2.50 contains a local buffer overflow vulnerability in the SNMP Scanner component that allows local attackers to crash the application by supplying oversized input. Attackers can paste malicious data into the \u0027From Addr\u0027 and \u0027To Addr\u0027 fields and trigger the crash by clicking the Start button, causing denial of service and SEH overwrite."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "LOCAL",
                "baseScore": 6.8,
                "baseSeverity": "MEDIUM",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "PASSIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "HIGH",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS"
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-05T20:45:11.497Z",
            "orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10",
            "shortName": "VulnCheck"
          },
          "references": [
            {
              "name": "ExploitDB-46286",
              "tags": [
                "exploit"
              ],
              "url": "https://www.exploit-db.com/exploits/46286"
            },
            {
              "name": "Official Product Homepage",
              "tags": [
                "product"
              ],
              "url": "https://www.ks-soft.net/ip-tools.eng/index.htm"
            },
            {
              "name": "VulnCheck Advisory: IP TOOLS 2.50 Local Buffer Overflow Denial of Service",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://www.vulncheck.com/advisories/ip-tools-local-buffer-overflow-denial-of-service"
            }
          ],
          "title": "IP TOOLS 2.50 Local Buffer Overflow Denial of Service",
          "x_generator": {
            "engine": "vulncheck"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10",
        "assignerShortName": "VulnCheck",
        "cveId": "CVE-2018-25256",
        "datePublished": "2026-04-05T20:45:11.497Z",
        "dateReserved": "2026-04-05T12:41:43.453Z",
        "dateUpdated": "2026-04-06T16:12:54.067Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2023-2417 (GCVE-0-2023-2417)

    Vulnerability from nvd – Published: 2023-04-29 00:31 – Updated: 2025-01-30 18:21
    VLAI
    Title
    ks-soft Advanced Host Monitor rma_active.exe unquoted search path
    Summary
    A vulnerability was found in ks-soft Advanced Host Monitor up to 12.56 and classified as problematic. Affected by this issue is some unknown functionality of the file C:\Program Files (x86)\HostMonitor\RMA-Win\rma_active.exe. The manipulation leads to unquoted search path. It is possible to launch the attack on the local host. Upgrading to version 12.60 is able to address this issue. It is recommended to upgrade the affected component. VDB-227714 is the identifier assigned to this vulnerability.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    ks-soft Advanced Host Monitor Affected: 12.0
    Affected: 12.1
    Affected: 12.2
    Affected: 12.3
    Affected: 12.4
    Affected: 12.5
    Affected: 12.6
    Affected: 12.7
    Affected: 12.8
    Affected: 12.9
    Affected: 12.10
    Affected: 12.11
    Affected: 12.12
    Affected: 12.13
    Affected: 12.14
    Affected: 12.15
    Affected: 12.16
    Affected: 12.17
    Affected: 12.18
    Affected: 12.19
    Affected: 12.20
    Affected: 12.21
    Affected: 12.22
    Affected: 12.23
    Affected: 12.24
    Affected: 12.25
    Affected: 12.26
    Affected: 12.27
    Affected: 12.28
    Affected: 12.29
    Affected: 12.30
    Affected: 12.31
    Affected: 12.32
    Affected: 12.33
    Affected: 12.34
    Affected: 12.35
    Affected: 12.36
    Affected: 12.37
    Affected: 12.38
    Affected: 12.39
    Affected: 12.40
    Affected: 12.41
    Affected: 12.42
    Affected: 12.43
    Affected: 12.44
    Affected: 12.45
    Affected: 12.46
    Affected: 12.47
    Affected: 12.48
    Affected: 12.49
    Affected: 12.50
    Affected: 12.51
    Affected: 12.52
    Affected: 12.53
    Affected: 12.54
    Affected: 12.55
    Affected: 12.56
    Create a notification for this product.
    Credits
    mrempy (VulDB User)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T06:19:15.249Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "https://vuldb.com/?id.227714"
              },
              {
                "tags": [
                  "signature",
                  "permissions-required",
                  "x_transferred"
                ],
                "url": "https://vuldb.com/?ctiid.227714"
              },
              {
                "tags": [
                  "related",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/172105/Advanced-Host-Monitor-12.56-Unquoted-Service-Path.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-2417",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-01-30T18:21:32.628504Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-01-30T18:21:40.219Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Advanced Host Monitor",
              "vendor": "ks-soft",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.0"
                },
                {
                  "status": "affected",
                  "version": "12.1"
                },
                {
                  "status": "affected",
                  "version": "12.2"
                },
                {
                  "status": "affected",
                  "version": "12.3"
                },
                {
                  "status": "affected",
                  "version": "12.4"
                },
                {
                  "status": "affected",
                  "version": "12.5"
                },
                {
                  "status": "affected",
                  "version": "12.6"
                },
                {
                  "status": "affected",
                  "version": "12.7"
                },
                {
                  "status": "affected",
                  "version": "12.8"
                },
                {
                  "status": "affected",
                  "version": "12.9"
                },
                {
                  "status": "affected",
                  "version": "12.10"
                },
                {
                  "status": "affected",
                  "version": "12.11"
                },
                {
                  "status": "affected",
                  "version": "12.12"
                },
                {
                  "status": "affected",
                  "version": "12.13"
                },
                {
                  "status": "affected",
                  "version": "12.14"
                },
                {
                  "status": "affected",
                  "version": "12.15"
                },
                {
                  "status": "affected",
                  "version": "12.16"
                },
                {
                  "status": "affected",
                  "version": "12.17"
                },
                {
                  "status": "affected",
                  "version": "12.18"
                },
                {
                  "status": "affected",
                  "version": "12.19"
                },
                {
                  "status": "affected",
                  "version": "12.20"
                },
                {
                  "status": "affected",
                  "version": "12.21"
                },
                {
                  "status": "affected",
                  "version": "12.22"
                },
                {
                  "status": "affected",
                  "version": "12.23"
                },
                {
                  "status": "affected",
                  "version": "12.24"
                },
                {
                  "status": "affected",
                  "version": "12.25"
                },
                {
                  "status": "affected",
                  "version": "12.26"
                },
                {
                  "status": "affected",
                  "version": "12.27"
                },
                {
                  "status": "affected",
                  "version": "12.28"
                },
                {
                  "status": "affected",
                  "version": "12.29"
                },
                {
                  "status": "affected",
                  "version": "12.30"
                },
                {
                  "status": "affected",
                  "version": "12.31"
                },
                {
                  "status": "affected",
                  "version": "12.32"
                },
                {
                  "status": "affected",
                  "version": "12.33"
                },
                {
                  "status": "affected",
                  "version": "12.34"
                },
                {
                  "status": "affected",
                  "version": "12.35"
                },
                {
                  "status": "affected",
                  "version": "12.36"
                },
                {
                  "status": "affected",
                  "version": "12.37"
                },
                {
                  "status": "affected",
                  "version": "12.38"
                },
                {
                  "status": "affected",
                  "version": "12.39"
                },
                {
                  "status": "affected",
                  "version": "12.40"
                },
                {
                  "status": "affected",
                  "version": "12.41"
                },
                {
                  "status": "affected",
                  "version": "12.42"
                },
                {
                  "status": "affected",
                  "version": "12.43"
                },
                {
                  "status": "affected",
                  "version": "12.44"
                },
                {
                  "status": "affected",
                  "version": "12.45"
                },
                {
                  "status": "affected",
                  "version": "12.46"
                },
                {
                  "status": "affected",
                  "version": "12.47"
                },
                {
                  "status": "affected",
                  "version": "12.48"
                },
                {
                  "status": "affected",
                  "version": "12.49"
                },
                {
                  "status": "affected",
                  "version": "12.50"
                },
                {
                  "status": "affected",
                  "version": "12.51"
                },
                {
                  "status": "affected",
                  "version": "12.52"
                },
                {
                  "status": "affected",
                  "version": "12.53"
                },
                {
                  "status": "affected",
                  "version": "12.54"
                },
                {
                  "status": "affected",
                  "version": "12.55"
                },
                {
                  "status": "affected",
                  "version": "12.56"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "analyst",
              "value": "mrempy (VulDB User)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability was found in ks-soft Advanced Host Monitor up to 12.56 and classified as problematic. Affected by this issue is some unknown functionality of the file C:\\Program Files (x86)\\HostMonitor\\RMA-Win\\rma_active.exe. The manipulation leads to unquoted search path. It is possible to launch the attack on the local host. Upgrading to version 12.60 is able to address this issue. It is recommended to upgrade the affected component. VDB-227714 is the identifier assigned to this vulnerability."
            },
            {
              "lang": "de",
              "value": "Eine Schwachstelle wurde in ks-soft Advanced Host Monitor bis 12.56 gefunden. Sie wurde als problematisch eingestuft. Hierbei geht es um eine nicht exakt ausgemachte Funktion der Datei C:\\Program Files (x86)\\HostMonitor\\RMA-Win\\rma_active.exe. Durch die Manipulation mit unbekannten Daten kann eine unquoted search path-Schwachstelle ausgenutzt werden. Der Angriff muss lokal passieren. Ein Aktualisieren auf die Version 12.60 vermag dieses Problem zu l\u00f6sen. Als bestm\u00f6gliche Massnahme wird das Einspielen eines Upgrades empfohlen."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.1"
              }
            },
            {
              "cvssV3_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.0"
              }
            },
            {
              "cvssV2_0": {
                "baseScore": 4.3,
                "vectorString": "AV:L/AC:L/Au:S/C:P/I:P/A:P",
                "version": "2.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-428",
                  "description": "CWE-428 Unquoted Search Path",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-22T19:08:26.626Z",
            "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
            "shortName": "VulDB"
          },
          "references": [
            {
              "tags": [
                "vdb-entry"
              ],
              "url": "https://vuldb.com/?id.227714"
            },
            {
              "tags": [
                "signature",
                "permissions-required"
              ],
              "url": "https://vuldb.com/?ctiid.227714"
            },
            {
              "tags": [
                "related"
              ],
              "url": "http://packetstormsecurity.com/files/172105/Advanced-Host-Monitor-12.56-Unquoted-Service-Path.html"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2023-04-28T00:00:00.000Z",
              "value": "Advisory disclosed"
            },
            {
              "lang": "en",
              "time": "2023-04-28T00:00:00.000Z",
              "value": "CVE reserved"
            },
            {
              "lang": "en",
              "time": "2023-04-28T02:00:00.000Z",
              "value": "VulDB entry created"
            },
            {
              "lang": "en",
              "time": "2023-05-24T08:30:51.000Z",
              "value": "VulDB entry last update"
            }
          ],
          "title": "ks-soft Advanced Host Monitor rma_active.exe unquoted search path"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "assignerShortName": "VulDB",
        "cveId": "CVE-2023-2417",
        "datePublished": "2023-04-29T00:31:03.814Z",
        "dateReserved": "2023-04-28T16:48:47.231Z",
        "dateUpdated": "2025-01-30T18:21:40.219Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2018-25256 (GCVE-0-2018-25256)

    Vulnerability from cvelistv5 – Published: 2026-04-05 20:45 – Updated: 2026-04-06 16:12
    VLAI
    Title
    IP TOOLS 2.50 Local Buffer Overflow Denial of Service
    Summary
    IP TOOLS 2.50 contains a local buffer overflow vulnerability in the SNMP Scanner component that allows local attackers to crash the application by supplying oversized input. Attackers can paste malicious data into the 'From Addr' and 'To Addr' fields and trigger the crash by clicking the Start button, causing denial of service and SEH overwrite.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    Impacted products
    Vendor Product Version
    Ks-Soft IP TOOLS Affected: 2.50
    Create a notification for this product.
    Date Public
    2018-12-20 00:00
    Credits
    Rafael Pedrero
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2018-25256",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-04-06T16:12:44.027015Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-04-06T16:12:54.067Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "IP TOOLS",
              "vendor": "Ks-Soft",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.50"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Rafael Pedrero"
            }
          ],
          "datePublic": "2018-12-20T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "IP TOOLS 2.50 contains a local buffer overflow vulnerability in the SNMP Scanner component that allows local attackers to crash the application by supplying oversized input. Attackers can paste malicious data into the \u0027From Addr\u0027 and \u0027To Addr\u0027 fields and trigger the crash by clicking the Start button, causing denial of service and SEH overwrite."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "LOCAL",
                "baseScore": 6.8,
                "baseSeverity": "MEDIUM",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "NONE",
                "subIntegrityImpact": "NONE",
                "userInteraction": "PASSIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "HIGH",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS"
            },
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-787",
                  "description": "Out-of-bounds Write",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-05T20:45:11.497Z",
            "orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10",
            "shortName": "VulnCheck"
          },
          "references": [
            {
              "name": "ExploitDB-46286",
              "tags": [
                "exploit"
              ],
              "url": "https://www.exploit-db.com/exploits/46286"
            },
            {
              "name": "Official Product Homepage",
              "tags": [
                "product"
              ],
              "url": "https://www.ks-soft.net/ip-tools.eng/index.htm"
            },
            {
              "name": "VulnCheck Advisory: IP TOOLS 2.50 Local Buffer Overflow Denial of Service",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://www.vulncheck.com/advisories/ip-tools-local-buffer-overflow-denial-of-service"
            }
          ],
          "title": "IP TOOLS 2.50 Local Buffer Overflow Denial of Service",
          "x_generator": {
            "engine": "vulncheck"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10",
        "assignerShortName": "VulnCheck",
        "cveId": "CVE-2018-25256",
        "datePublished": "2026-04-05T20:45:11.497Z",
        "dateReserved": "2026-04-05T12:41:43.453Z",
        "dateUpdated": "2026-04-06T16:12:54.067Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2023-2417 (GCVE-0-2023-2417)

    Vulnerability from cvelistv5 – Published: 2023-04-29 00:31 – Updated: 2025-01-30 18:21
    VLAI
    Title
    ks-soft Advanced Host Monitor rma_active.exe unquoted search path
    Summary
    A vulnerability was found in ks-soft Advanced Host Monitor up to 12.56 and classified as problematic. Affected by this issue is some unknown functionality of the file C:\Program Files (x86)\HostMonitor\RMA-Win\rma_active.exe. The manipulation leads to unquoted search path. It is possible to launch the attack on the local host. Upgrading to version 12.60 is able to address this issue. It is recommended to upgrade the affected component. VDB-227714 is the identifier assigned to this vulnerability.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    ks-soft Advanced Host Monitor Affected: 12.0
    Affected: 12.1
    Affected: 12.2
    Affected: 12.3
    Affected: 12.4
    Affected: 12.5
    Affected: 12.6
    Affected: 12.7
    Affected: 12.8
    Affected: 12.9
    Affected: 12.10
    Affected: 12.11
    Affected: 12.12
    Affected: 12.13
    Affected: 12.14
    Affected: 12.15
    Affected: 12.16
    Affected: 12.17
    Affected: 12.18
    Affected: 12.19
    Affected: 12.20
    Affected: 12.21
    Affected: 12.22
    Affected: 12.23
    Affected: 12.24
    Affected: 12.25
    Affected: 12.26
    Affected: 12.27
    Affected: 12.28
    Affected: 12.29
    Affected: 12.30
    Affected: 12.31
    Affected: 12.32
    Affected: 12.33
    Affected: 12.34
    Affected: 12.35
    Affected: 12.36
    Affected: 12.37
    Affected: 12.38
    Affected: 12.39
    Affected: 12.40
    Affected: 12.41
    Affected: 12.42
    Affected: 12.43
    Affected: 12.44
    Affected: 12.45
    Affected: 12.46
    Affected: 12.47
    Affected: 12.48
    Affected: 12.49
    Affected: 12.50
    Affected: 12.51
    Affected: 12.52
    Affected: 12.53
    Affected: 12.54
    Affected: 12.55
    Affected: 12.56
    Create a notification for this product.
    Credits
    mrempy (VulDB User)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T06:19:15.249Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "https://vuldb.com/?id.227714"
              },
              {
                "tags": [
                  "signature",
                  "permissions-required",
                  "x_transferred"
                ],
                "url": "https://vuldb.com/?ctiid.227714"
              },
              {
                "tags": [
                  "related",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/172105/Advanced-Host-Monitor-12.56-Unquoted-Service-Path.html"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-2417",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-01-30T18:21:32.628504Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-01-30T18:21:40.219Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Advanced Host Monitor",
              "vendor": "ks-soft",
              "versions": [
                {
                  "status": "affected",
                  "version": "12.0"
                },
                {
                  "status": "affected",
                  "version": "12.1"
                },
                {
                  "status": "affected",
                  "version": "12.2"
                },
                {
                  "status": "affected",
                  "version": "12.3"
                },
                {
                  "status": "affected",
                  "version": "12.4"
                },
                {
                  "status": "affected",
                  "version": "12.5"
                },
                {
                  "status": "affected",
                  "version": "12.6"
                },
                {
                  "status": "affected",
                  "version": "12.7"
                },
                {
                  "status": "affected",
                  "version": "12.8"
                },
                {
                  "status": "affected",
                  "version": "12.9"
                },
                {
                  "status": "affected",
                  "version": "12.10"
                },
                {
                  "status": "affected",
                  "version": "12.11"
                },
                {
                  "status": "affected",
                  "version": "12.12"
                },
                {
                  "status": "affected",
                  "version": "12.13"
                },
                {
                  "status": "affected",
                  "version": "12.14"
                },
                {
                  "status": "affected",
                  "version": "12.15"
                },
                {
                  "status": "affected",
                  "version": "12.16"
                },
                {
                  "status": "affected",
                  "version": "12.17"
                },
                {
                  "status": "affected",
                  "version": "12.18"
                },
                {
                  "status": "affected",
                  "version": "12.19"
                },
                {
                  "status": "affected",
                  "version": "12.20"
                },
                {
                  "status": "affected",
                  "version": "12.21"
                },
                {
                  "status": "affected",
                  "version": "12.22"
                },
                {
                  "status": "affected",
                  "version": "12.23"
                },
                {
                  "status": "affected",
                  "version": "12.24"
                },
                {
                  "status": "affected",
                  "version": "12.25"
                },
                {
                  "status": "affected",
                  "version": "12.26"
                },
                {
                  "status": "affected",
                  "version": "12.27"
                },
                {
                  "status": "affected",
                  "version": "12.28"
                },
                {
                  "status": "affected",
                  "version": "12.29"
                },
                {
                  "status": "affected",
                  "version": "12.30"
                },
                {
                  "status": "affected",
                  "version": "12.31"
                },
                {
                  "status": "affected",
                  "version": "12.32"
                },
                {
                  "status": "affected",
                  "version": "12.33"
                },
                {
                  "status": "affected",
                  "version": "12.34"
                },
                {
                  "status": "affected",
                  "version": "12.35"
                },
                {
                  "status": "affected",
                  "version": "12.36"
                },
                {
                  "status": "affected",
                  "version": "12.37"
                },
                {
                  "status": "affected",
                  "version": "12.38"
                },
                {
                  "status": "affected",
                  "version": "12.39"
                },
                {
                  "status": "affected",
                  "version": "12.40"
                },
                {
                  "status": "affected",
                  "version": "12.41"
                },
                {
                  "status": "affected",
                  "version": "12.42"
                },
                {
                  "status": "affected",
                  "version": "12.43"
                },
                {
                  "status": "affected",
                  "version": "12.44"
                },
                {
                  "status": "affected",
                  "version": "12.45"
                },
                {
                  "status": "affected",
                  "version": "12.46"
                },
                {
                  "status": "affected",
                  "version": "12.47"
                },
                {
                  "status": "affected",
                  "version": "12.48"
                },
                {
                  "status": "affected",
                  "version": "12.49"
                },
                {
                  "status": "affected",
                  "version": "12.50"
                },
                {
                  "status": "affected",
                  "version": "12.51"
                },
                {
                  "status": "affected",
                  "version": "12.52"
                },
                {
                  "status": "affected",
                  "version": "12.53"
                },
                {
                  "status": "affected",
                  "version": "12.54"
                },
                {
                  "status": "affected",
                  "version": "12.55"
                },
                {
                  "status": "affected",
                  "version": "12.56"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "analyst",
              "value": "mrempy (VulDB User)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability was found in ks-soft Advanced Host Monitor up to 12.56 and classified as problematic. Affected by this issue is some unknown functionality of the file C:\\Program Files (x86)\\HostMonitor\\RMA-Win\\rma_active.exe. The manipulation leads to unquoted search path. It is possible to launch the attack on the local host. Upgrading to version 12.60 is able to address this issue. It is recommended to upgrade the affected component. VDB-227714 is the identifier assigned to this vulnerability."
            },
            {
              "lang": "de",
              "value": "Eine Schwachstelle wurde in ks-soft Advanced Host Monitor bis 12.56 gefunden. Sie wurde als problematisch eingestuft. Hierbei geht es um eine nicht exakt ausgemachte Funktion der Datei C:\\Program Files (x86)\\HostMonitor\\RMA-Win\\rma_active.exe. Durch die Manipulation mit unbekannten Daten kann eine unquoted search path-Schwachstelle ausgenutzt werden. Der Angriff muss lokal passieren. Ein Aktualisieren auf die Version 12.60 vermag dieses Problem zu l\u00f6sen. Als bestm\u00f6gliche Massnahme wird das Einspielen eines Upgrades empfohlen."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.1"
              }
            },
            {
              "cvssV3_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.0"
              }
            },
            {
              "cvssV2_0": {
                "baseScore": 4.3,
                "vectorString": "AV:L/AC:L/Au:S/C:P/I:P/A:P",
                "version": "2.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-428",
                  "description": "CWE-428 Unquoted Search Path",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-22T19:08:26.626Z",
            "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
            "shortName": "VulDB"
          },
          "references": [
            {
              "tags": [
                "vdb-entry"
              ],
              "url": "https://vuldb.com/?id.227714"
            },
            {
              "tags": [
                "signature",
                "permissions-required"
              ],
              "url": "https://vuldb.com/?ctiid.227714"
            },
            {
              "tags": [
                "related"
              ],
              "url": "http://packetstormsecurity.com/files/172105/Advanced-Host-Monitor-12.56-Unquoted-Service-Path.html"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2023-04-28T00:00:00.000Z",
              "value": "Advisory disclosed"
            },
            {
              "lang": "en",
              "time": "2023-04-28T00:00:00.000Z",
              "value": "CVE reserved"
            },
            {
              "lang": "en",
              "time": "2023-04-28T02:00:00.000Z",
              "value": "VulDB entry created"
            },
            {
              "lang": "en",
              "time": "2023-05-24T08:30:51.000Z",
              "value": "VulDB entry last update"
            }
          ],
          "title": "ks-soft Advanced Host Monitor rma_active.exe unquoted search path"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "assignerShortName": "VulDB",
        "cveId": "CVE-2023-2417",
        "datePublished": "2023-04-29T00:31:03.814Z",
        "dateReserved": "2023-04-28T16:48:47.231Z",
        "dateUpdated": "2025-01-30T18:21:40.219Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }