Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
protection engine vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2013-5523
The Sponsor Portal in Cisco Identity Services Engine (ISE) 1.2 and previous versions does not properly restrict use of IFRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks and unspecified other attacks via a crafted web site, related t...
Cisco Identity Services Engine Software 1.1
Cisco Identity Services Engine Software 1.0
Cisco Identity Services Engine Software
NA
CVE-2022-28884
A Denial-of-Service vulnerability exists in the F-Secure and WithSecure products where aerdl.dll may go into an infinite loop when unpacking PE files. It is possible that this can crash the scanning engine.
Withsecure Business Suite -
Withsecure Elements Endpoint Protection
F-secure Internet Gatekeeper -
F-secure Linux Security -
5
CVSSv2
CVE-2017-6653
A vulnerability in the TCP throttling process for the GUI of the Cisco Identity Services Engine (ISE) 2.1(0.474) could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition on an affected device where the ISE GUI may fail to respond to new o...
Cisco Identity Services Engine 2.1(0.474)
NA
CVE-2023-49322
Certain WithSecure products allow a Denial of Service because there is an unpack handler crash that can lead to a scanning engine crash. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoin...
F-secure Linux Protection 12.0
F-secure Linux Security 64 12.0
F-secure Atlant 1.0.35-1
F-secure Client Security 15.00
F-secure Elements Endpoint Protection
F-secure Email And Server Security 15.00
F-secure Server Security 15.00
4.3
CVSSv2
CVE-2020-9342
The F-Secure AV parsing engine prior to 2020-02-05 allows virus-detection bypass via crafted Compression Method data in a GZIP archive. This affects versions prior to 17.0.605.474 (on Linux) of Cloud Protection For Salesforce, Email and Server Security, and Internet GateKeeper.
F-secure Cloud Protection For Salesforce
F-secure Internet Gatekeeper
F-secure Email And Server Security
4.3
CVSSv2
CVE-2012-1446
The ELF file parser in Quick Heal (aka Cat QuickHeal) 11.00, McAfee Anti-Virus Scanning Engine 5.400.0.1158, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Norman Antivirus 6.06.12, eSafe 7.0.17.0, Kaspersky Anti-Virus 7.0.0.125, McAfee Gateway (formerly Webwasher) 20...
Norman Norman Antivirus & Antispyware 6.06.12
Rising-global Rising Antivirus 22.83.00.03
Symantec Endpoint Protection 11.0
Sophos Sophos Anti-virus 4.61.0
Mcafee Gateway 2010.1c
Kaspersky Kaspersky Anti-virus 7.0.0.125
Cat Quick Heal 11.00
Fortinet Fortinet Antivirus 4.2.254.0
Ca Etrust Vet Antivirus 36.1.8511
Antiy Avl Sdk 2.0.3.7
Pc Tools Pc Tools Antivirus 7.0.3.5
Aladdin Esafe 7.0.17.0
Pandasecurity Panda Antivirus 10.0.2.7
Mcafee Scan Engine 5.400.0.1158
4.3
CVSSv2
CVE-2021-33597
A Denial-of-Service (DoS) vulnerability exists in F-Secure Atlant whereby the SAVAPI component used in certain F-Secure products can crash while scanning fuzzed files. The exploit can be triggered remotely by an attacker. A successful attack will result in Denial-of-Service (DoS)...
F-secure Linux Security -
F-secure Client Security -
F-secure Business Suite -
F-secure Elements Endpoint Protection -
4.3
CVSSv2
CVE-2021-40833
A vulnerability affecting F-Secure antivirus engine exists whereby unpacking UPX file can lead to denial-of-service. The vulnerability can be exploited remotely by an attacker. A successful attack will result in denial-of-service of the antivirus engine.
F-secure Atlant -
F-secure Internet Gatekeeper -
F-secure Linux Security -
F-secure Linux Security 64 -
F-secure Elements Endpoint Protection -
4.3
CVSSv2
CVE-2021-44747
A Denial-of-Service (DoS) vulnerability exists in F-Secure Linux Security whereby the Fmlib component used in certain F-Secure products can crash while scanning fuzzed files. The exploit can be triggered remotely by an attacker. A successful attack will result in Denial-of-Servic...
F-secure Security Cloud
F-secure Internet Gatekeeper
F-secure Atlant
F-secure Linux Security
F-secure Elements Endpoint Protection
6.8
CVSSv2
CVE-2020-9363
The Sophos AV parsing engine prior to 2020-01-14 allows virus-detection bypass via a crafted ZIP archive. This affects Endpoint Protection, Cloud Optix, Mobile, Intercept X Endpoint, Intercept X for Server, and Secure Web Gateway. NOTE: the vendor feels that this does not apply t...
Sophos Cloud Optix
Sophos Mobile
Sophos Intercept X Endpoint
Sophos Intercept X For Server
Sophos Secure Web Gateway
Sophos Endpoint Protection
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »