Medium severity4.3NVD Advisory· Published Feb 5, 2019· Updated Jun 17, 2026
CVE-2018-3989
CVE-2018-3989
Description
An exploitable kernel memory disclosure vulnerability exists in the 0x8200E804 IOCTL handler functionality of WIBU-SYSTEMS WibuKey.sys Version 6.40 (Build 2400).A specially crafted IRP request can cause the driver to return uninitialized memory, resulting in kernel memory disclosure. An attacker can send an IRP request to trigger this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: 6.40 (Build 2400)
Patches
Vulnerability mechanics
References
5- talosintelligence.com/vulnerability_reports/TALOS-2018-0657nvdExploitThird Party Advisory
- www.securityfocus.com/bid/107005nvdThird Party AdvisoryVDB Entry
- cert-portal.siemens.com/productcert/pdf/ssa-760124.pdfnvdThird Party Advisory
- cert-portal.siemens.com/productcert/pdf/ssa-844562.pdfnvdThird Party Advisory
- cert-portal.siemens.com/productcert/pdf/ssa-902727.pdfnvd
News mentions
0No linked articles in our index yet.