彙總 ikarussecurity 相關全部產品的 CVE 與安全漏洞情報,包括 CVSS、EPSS、公開時間與漏洞情報資料。
歷史漏洞主要涉及 輸入驗證問題與記憶體損壞 等問題,部分漏洞可能導致 異常行為,並影響 軟體部署與生產負載 相關場景。
相關漏洞資料主要來源於公開漏洞披露與安全公告,可用於評估歷史漏洞暴露面與修補優先順序。
| CVE | 摘要 | 來源 | 最高 CVSS | EPSS % | 公開時間 | 更新時間 |
|---|---|---|---|---|---|---|
| CVE-2017-14969 | In IKARUS anti.virus before 2.16.18, the ntguard.sys driver contains an Arbitrary Write vulnerability because of not validating input values from IOCtl 0x83000084, a related issue to CVE-2017-17114. | [email protected] | 7.8 | 0.41% | 2017-12-20 | 2026-06-16 |
| CVE-2017-14968 | In IKARUS anti.virus before 2.16.18, the ntguard.sys driver contains an Arbitrary Write vulnerability because of not validating input values from IOCtl 0x830000c4, a related issue to CVE-2017-17113. | [email protected] | 7.8 | 0.41% | 2017-12-20 | 2026-06-16 |
| CVE-2017-14967 | In IKARUS anti.virus before 2.16.18, the ntguard.sys driver contains an Arbitrary Write vulnerability because of not validating input values from IOCtl 0x83000080. | [email protected] | 7.8 | 0.41% | 2017-12-20 | 2026-06-16 |
| CVE-2017-14966 | In IKARUS anti.virus before 2.16.18, the ntguard.sys driver contains an Arbitrary Write vulnerability because of not validating input values from IOCtl 0x830000c0. | [email protected] | 7.8 | 0.41% | 2017-12-20 | 2026-06-16 |
| CVE-2017-14965 | In IKARUS anti.virus before 2.16.18, the ntguard.sys driver contains an Arbitrary Write vulnerability because of not validating input values from IOCtl 0x830000cc. | [email protected] | 7.8 | 0.41% | 2017-12-20 | 2026-06-16 |
| CVE-2017-14964 | In IKARUS anti.virus before 2.16.18, the ntguard.sys driver contains an Arbitrary Write vulnerability because of not validating input values from IOCtl 0x8300005c. | [email protected] | 7.8 | 0.41% | 2017-12-20 | 2026-06-16 |
| CVE-2017-14963 | In IKARUS anti.virus before 2.16.18, the ntguard.sys driver contains an Arbitrary Write vulnerability because of not validating input values from IOCtl 0x83000058. | [email protected] | 7.8 | 0.41% | 2017-12-20 | 2026-06-16 |
| CVE-2017-14962 | In IKARUS anti.virus before 2.16.18, the ntguard.sys driver contains an Out of Bounds Write vulnerability because of not validating input values from IOCtl 0x83000058, a related issue to CVE-2017-17112. | [email protected] | 7.8 | 0.41% | 2017-12-20 | 2026-06-16 |
| CVE-2017-17804 | In IKARUS anti.virus 2.16.20, the driver file (ntguard.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x83000084. | [email protected] | 7.8 | 0.44% | 2017-12-20 | 2026-06-16 |
| CVE-2017-17797 | In IKARUS anti.virus 2.16.20, the driver file (ntguard.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x83000058. | [email protected] | 7.8 | 0.44% | 2017-12-20 | 2026-06-16 |
| CVE-2017-17795 | In IKARUS anti.virus 2.16.20, the driver file (ntguard.SYS) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x83000088. | [email protected] | 7.8 | 0.44% | 2017-12-20 | 2026-06-16 |
| CVE-2017-17114 | ntguard.sys and ntguard_x64.sys 0.18780.0.0 in IKARUS anti.virus 2.16.15 have a Memory Corruption vulnerability via a 0x83000084 DeviceIoControl request. | [email protected] | 7.8 | 0.46% | 2017-12-04 | 2026-06-16 |
| CVE-2017-17113 | ntguard_x64.sys 0.18780.0.0 in IKARUS anti.virus 2.16.15 has a NULL pointer dereference via a 0x830000c4 DeviceIoControl request. | [email protected] | 5.5 | 0.36% | 2017-12-04 | 2026-06-16 |
| CVE-2017-17112 | ntguard_x64.sys 0.18780.0.0 in IKARUS anti.virus 2.16.15 has a Pool Corruption vulnerability via a 0x83000058 DeviceIoControl request. | [email protected] | 7.8 | 0.46% | 2017-12-04 | 2026-06-16 |
| CVE-2017-14961 | In IKARUS anti.virus 2.16.7, the ntguard.sys driver contains an Arbitrary Write vulnerability because of not validating input values from IOCtl 0x8300000c. | [email protected] | 7.8 | 1.53% | 2017-11-15 | 2026-06-16 |
| CVE-2017-15643 | An active network attacker (MiTM) can achieve remote code execution on a machine that runs IKARUS Anti Virus 2.16.7. IKARUS AV for Windows uses cleartext HTTP for updates along with a CRC32 checksum and an update value for verification of the downloaded files. The attacker first forces the client to initiate an update transaction by modifying an update field within an HTTP 200 response, so that it refers to a nonexistent update. The attacker then modifies the HTTP 404 response so that it specifi | [email protected] | 7.4 | 6.14% | 2017-10-19 | 2026-06-16 |