Submeter #758991: Qi-ANXIN QAX Virus Removal Version 2025.10.22 and earlier Improper Access Controlsinformação

TítuloQi-ANXIN QAX Virus Removal Version 2025.10.22 and earlier Improper Access Controls
DescriçãoThe affected driver QKSecureIO_Imp.sys rely on caller process's image to determine whether they are allowed to communicate to the mini filter driver. Attackers could impersonate a legitimate caller process image through tactics such as DLL sideloading, Process Injection to send message with specific payload to the mini filter and perform arbitrary process termination, such as protected process.
Fonte⚠️ https://github.com/cwjchoi01/FocusKiller
Utilizador
 jonathan126 (UID 91181)
Submissão16/02/2026 03h48 (há 1 mês)
Moderação08/03/2026 09h42 (20 days later)
EstadoAceite
Entrada VulDB349763 [Qi-ANXIN QAX Virus Removal até 2025-10-22 Mini Filter Driver QKSecureIO_Imp.sys ZwTerminateProcess Elevação de Privilégios]
Pontos20

VoltarVisão GeralPróximo

Might our Artificial Intelligence support you?

Check our Alexa App!