Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
kaspersky vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2017-12823
Kernel pool memory corruption in one of drivers in Kaspersky Embedded Systems Security version 1.2.0.300 leads to local privilege escalation.
Kaspersky Embedded Systems Security 2.0.0.385
Kaspersky Embedded Systems Security 1.2.0.300
9.8
CVSSv3
CVE-2020-35929
In TinyCheck before commits 9fd360d and ea53de8, the installation script of the tool contained hard-coded credentials to the backend part of the tool. This information could be used by an attacker for unauthorized access to remote data.
Kaspersky Tinycheck
7.5
CVSSv3
CVE-2021-35053
Possible system denial of service in case of arbitrary changing Firefox browser parameters. An attacker could change specific Firefox browser parameters file in a certain way and then reboot the system to make the system unbootable.
Kaspersky Endpoint Security
9.8
CVSSv3
CVE-2020-36199
TinyCheck before commits 9fd360d and ea53de8 was vulnerable to command injection due to insufficient checks of input parameters in several places.
Kaspersky Tinycheck
6.5
CVSSv3
CVE-2020-36200
TinyCheck before commits 9fd360d and ea53de8 allowed an authenticated malicious user to send an HTTP GET request to the crafted URLs.
Kaspersky Tinycheck
7.8
CVSSv3
CVE-2022-27535
Kaspersky VPN Secure Connection for Windows version up to 21.5 was vulnerable to arbitrary file deletion via abuse of its 'Delete All Service Data And Reports' feature by the local authenticated attacker.
Kaspersky Vpn Secure Connection
NA
CVE-2010-5163
Race condition in Kaspersky Internet Security 2010 9.0.0.736 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space ...
Kaspersky Kaspersky Internet Security 2010 9.0.0.736
8.8
CVSSv3
CVE-2019-8285
Kaspersky Lab Antivirus Engine version prior to 04.apr.2019 has a heap-based buffer overflow vulnerability that potentially allow arbitrary code execution
Kaspersky Antivirus Engine
7.8
CVSSv3
CVE-2018-6306
Unauthorized code execution from specific DLL and is known as DLL Hijacking attack in Kaspersky Password Manager versions prior to 8.0.6.538.
Kaspersky Password Manager
5.5
CVSSv3
CVE-2021-26718
KIS for macOS in some use cases was vulnerable to AV bypass that potentially allowed an malicious user to disable anti-virus protection.
Kaspersky Internet Security
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »