Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
anti-virus vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-9813
In Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312), the scriptName parameter of the licenseKeyInfo action method is vulnerable to cross-site scripting (XSS).
Kaspersky Anti-virus For Linux Server
1 EDB exploit
1 Article
10
CVSSv2
CVE-2017-9811
The kluser is able to interact with the kav4fs-control binary in Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312). By abusing the quarantine read and write operations, it is possible to elevate the privileges to root.
Kaspersky Anti-virus For Linux Server
1 EDB exploit
1 Article
6.8
CVSSv2
CVE-2017-9810
There are no Anti-CSRF tokens in any forms on the web interface in Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312). This would allow an malicious user to submit authenticated requests when an authenticated user browses an at...
Kaspersky Anti-virus For Linux Server
1 EDB exploit
1 Article
5
CVSSv2
CVE-2017-9977
AVG AntiVirus for MacOS with scan engine prior to 4668 might allow remote malicious users to bypass malware detection by leveraging failure to scan inside disk image (aka DMG) files.
Avg Anti-virus -
NA
CVE-2017-98123
Kaspersky Anti-Virus for Linux File Server version 8.0.3.297 suffers from remote code execution, cross site request forgery, cross site scripting, security bypass, information disclosure, and path traversal vulnerabilities.
10
CVSSv2
CVE-2012-6706
A VMSF_DELTA memory corruption exists in unrar prior to 5.5.5, as used in Sophos Anti-Virus Threat Detection Engine prior to 3.37.2 and other products, that can lead to arbitrary code execution. An integer overflow can be caused in DataSize+CurChannel. The result is a negative va...
Sophos Threat Detection Engine
Rarlab Unrar
4.4
CVSSv2
CVE-2016-8032
Software Integrity Attacks vulnerability in Intel Security Anti-Virus Engine (AVE) 5200 through 5800 allows local malicious users to bypass local security protection via a crafted input file.
Mcafee Anti-malware Scan Engine 5700
Mcafee Anti-malware Scan Engine 5600
Mcafee Anti-malware Scan Engine 5400
Mcafee Anti-malware Scan Engine 5800
Mcafee Anti-malware Scan Engine 5500
Mcafee Anti-malware Scan Engine 5200
Mcafee Anti-malware Scan Engine 5300
4.4
CVSSv2
CVE-2016-8031
Software Integrity Attacks vulnerability in Intel Security Anti-Virus Engine (AVE) 5200 through 5800 allows local users to bypass local security protection via a crafted input file.
Mcafee Anti-malware Scan Engine 5200
Mcafee Anti-malware Scan Engine 5300
Mcafee Anti-malware Scan Engine 5400
Mcafee Anti-malware Scan Engine 5500
Mcafee Anti-malware Scan Engine 5600
Mcafee Anti-malware Scan Engine 5700
Mcafee Anti-malware Scan Engine 5800
7.2
CVSSv2
CVE-2017-5566
Code injection vulnerability in AVG Ultimate 17.1 (and previous versions), AVG Internet Security 17.1 (and previous versions), and AVG AntiVirus FREE 17.1 (and previous versions) allows a local malicious user to bypass a self-protection mechanism, inject arbitrary code, and take ...
Avg Ultimate 17.1
Avg Internet Security 17.1
Avg Anti-virus 17.1
1 Article
2.1
CVSSv2
CVE-2016-4329
A local denial of service vulnerability exists in window broadcast message handling functionality of Kaspersky Anti-Virus software. Sending certain unhandled window messages, an attacker can cause application termination and in the same way bypass KAV self-protection mechanism.
Kaspersky Total Security 16.0.0.614
Kaspersky Internet Security 16.0.0.614
Kaspersky Anti-virus 16.0.0.614
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »