Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
anti-virus vulnerabilities and exploits
(subscribe to this query)
505
VMScore
CVE-2017-9812
The reportId parameter of the getReportStatus action method can be abused in the web interface in Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312) to read arbitrary files with kluser privileges.
Kaspersky Anti-virus For Linux Server
1 EDB exploit
1 Article
1000
VMScore
CVE-2017-9811
The kluser is able to interact with the kav4fs-control binary in Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312). By abusing the quarantine read and write operations, it is possible to elevate the privileges to root.
Kaspersky Anti-virus For Linux Server
1 EDB exploit
1 Article
435
VMScore
CVE-2017-9813
In Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 8.0.4.312), the scriptName parameter of the licenseKeyInfo action method is vulnerable to cross-site scripting (XSS).
Kaspersky Anti-virus For Linux Server
1 EDB exploit
1 Article
445
VMScore
CVE-2017-9977
AVG AntiVirus for MacOS with scan engine prior to 4668 might allow remote malicious users to bypass malware detection by leveraging failure to scan inside disk image (aka DMG) files.
Avg Anti-virus -
NA
CVE-2017-98123
Kaspersky Anti-Virus for Linux File Server version 8.0.3.297 suffers from remote code execution, cross site request forgery, cross site scripting, security bypass, information disclosure, and path traversal vulnerabilities.
890
VMScore
CVE-2012-6706
A VMSF_DELTA memory corruption exists in unrar prior to 5.5.5, as used in Sophos Anti-Virus Threat Detection Engine prior to 3.37.2 and other products, that can lead to arbitrary code execution. An integer overflow can be caused in DataSize+CurChannel. The result is a negative va...
Sophos Threat Detection Engine
Rarlab Unrar
392
VMScore
CVE-2016-8032
Software Integrity Attacks vulnerability in Intel Security Anti-Virus Engine (AVE) 5200 through 5800 allows local malicious users to bypass local security protection via a crafted input file.
Mcafee Anti-malware Scan Engine 5700
Mcafee Anti-malware Scan Engine 5600
Mcafee Anti-malware Scan Engine 5400
Mcafee Anti-malware Scan Engine 5800
Mcafee Anti-malware Scan Engine 5500
Mcafee Anti-malware Scan Engine 5200
Mcafee Anti-malware Scan Engine 5300
392
VMScore
CVE-2016-8031
Software Integrity Attacks vulnerability in Intel Security Anti-Virus Engine (AVE) 5200 through 5800 allows local users to bypass local security protection via a crafted input file.
Mcafee Anti-malware Scan Engine 5200
Mcafee Anti-malware Scan Engine 5300
Mcafee Anti-malware Scan Engine 5400
Mcafee Anti-malware Scan Engine 5500
Mcafee Anti-malware Scan Engine 5600
Mcafee Anti-malware Scan Engine 5700
Mcafee Anti-malware Scan Engine 5800
641
VMScore
CVE-2017-5566
Code injection vulnerability in AVG Ultimate 17.1 (and previous versions), AVG Internet Security 17.1 (and previous versions), and AVG AntiVirus FREE 17.1 (and previous versions) allows a local malicious user to bypass a self-protection mechanism, inject arbitrary code, and take ...
Avg Ultimate 17.1
Avg Internet Security 17.1
Avg Anti-virus 17.1
1 Article
187
VMScore
CVE-2016-4329
A local denial of service vulnerability exists in window broadcast message handling functionality of Kaspersky Anti-Virus software. Sending certain unhandled window messages, an attacker can cause application termination and in the same way bypass KAV self-protection mechanism.
Kaspersky Total Security 16.0.0.614
Kaspersky Internet Security 16.0.0.614
Kaspersky Anti-virus 16.0.0.614
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »