CVE-2024-13614

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Feb 6, 2025

CWE ID 190

Summary

CVE-2024-13614 is a recently identified security vulnerability affecting several Kaspersky products, including Kaspersky Anti-Virus SDK for Windows, Kaspersky Security for Virtualization Light Agent, and Kaspersky Endpoint Security for Windows, among others. This issue grants authenticated attackers the ability to write data outside the allocated kernel memory buffer, potentially leading to security breaches. The vulnerability has been rectified in all Kaspersky Endpoint products with an automatic fix installation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/2ul-8n
https://www.cve.org/CVERecord?id=CVE-2024-13614
https://nvd.nist.gov/vuln/detail/CVE-2024-13614

Back to Vulnerability Database

CVE-2024-13614

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations