Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kaspersky vulnerabilities and exploits
(subscribe to this query)
6.9
CVSSv2
CVE-2020-28950
The installer of Kaspersky Anti-Ransomware Tool (KART) prior to KART 4.0 Patch C was vulnerable to a DLL hijacking attack that allowed an malicious user to elevate privileges during installation process.
Kaspersky Anti-ransomware Tool
Kaspersky Anti-ransomware Tool 4.0
4.6
CVSSv2
CVE-2017-12823
Kernel pool memory corruption in one of drivers in Kaspersky Embedded Systems Security version 1.2.0.300 leads to local privilege escalation.
Kaspersky Embedded Systems Security 1.2.0.300
Kaspersky Embedded Systems Security 2.0.0.385
5
CVSSv2
CVE-2007-3906
Unspecified vulnerability in Kaspersky Anti-Virus for Check Point FireWall-1 before Critical Fix 1 (5.5.161.0) might allow malicious users to cause a denial of service (kernel hang) via unspecified vectors. NOTE: it is not clear whether there is an attacker role.
Kaspersky Lab Kaspersky Anti-virus 5.5 For Check Point Firewall-
5
CVSSv2
CVE-2020-35929
In TinyCheck before commits 9fd360d and ea53de8, the installation script of the tool contained hard-coded credentials to the backend part of the tool. This information could be used by an attacker for unauthorized access to remote data.
Kaspersky Tinycheck
7.5
CVSSv2
CVE-2020-36199
TinyCheck before commits 9fd360d and ea53de8 was vulnerable to command injection due to insufficient checks of input parameters in several places.
Kaspersky Tinycheck
4
CVSSv2
CVE-2020-36200
TinyCheck before commits 9fd360d and ea53de8 allowed an authenticated malicious user to send an HTTP GET request to the crafted URLs.
Kaspersky Tinycheck
4.3
CVSSv2
CVE-2016-6231
Kaspersky Safe Browser iOS prior to 1.7.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to obtain sensitive information via a crafted certificate.
Kaspersky Safe Browser
2.1
CVSSv2
CVE-2021-26718
KIS for macOS in some use cases was vulnerable to AV bypass that potentially allowed an malicious user to disable anti-virus protection.
Kaspersky Internet Security
7.8
CVSSv2
CVE-2021-35053
Possible system denial of service in case of arbitrary changing Firefox browser parameters. An attacker could change specific Firefox browser parameters file in a certain way and then reboot the system to make the system unbootable.
Kaspersky Endpoint Security
9
CVSSv2
CVE-2019-8285
Kaspersky Lab Antivirus Engine version prior to 04.apr.2019 has a heap-based buffer overflow vulnerability that potentially allow arbitrary code execution
Kaspersky Antivirus Engine
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »