Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
antimalware vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2018-15733
An issue exists in STOPzilla AntiMalware 6.5.2.59. The driver file szkg64.sys contains a NULL Pointer Dereference vulnerability due to not validating the size of the output buffer value from IOCtl 0x80002028.
Stopzilla Antimalware 6.5.2.59
5.5
CVSSv3
CVE-2018-15735
An issue exists in STOPzilla AntiMalware 6.5.2.59. The driver file szkg64.sys contains an Arbitrary Write vulnerability due to not validating the output buffer address value from IOCtl 0x8000206F.
Stopzilla Antimalware 6.5.2.59
5.5
CVSSv3
CVE-2018-15738
An issue exists in STOPzilla AntiMalware 6.5.2.59. The driver file szkg64.sys contains an Arbitrary Write vulnerability due to not validating the output buffer address value from IOCtl 0x8000205F.
Stopzilla Antimalware 6.5.2.59
7.8
CVSSv3
CVE-2018-6606
An issue exists in MalwareFox AntiMalware 2.74.0.150. Improper access control in zam32.sys and zam64.sys allows a non-privileged process to register itself with the driver by sending IOCTL 0x80002010 and then using IOCTL 0x8000204C to \\.\ZemanaAntiMalware to elevate privileges.
Malwarefox Antimalware 2.74.0.150
1 EDB exploit
2 Github repositories
8.8
CVSSv3
CVE-2019-6739
This vulnerability allows remote malicious users to execute arbitrary code on vulnerable installations of Malwarebytes Antimalware 3.6.1.2711. User interaction is required to exploit this vulnerability in that the target must visit a malicious web page. There is an issue with the...
Malwarebytes Antimalware 3.6.1.2711
7.8
CVSSv3
CVE-2018-6593
An issue exists in MalwareFox AntiMalware 2.74.0.150. Improper access control in zam32.sys and zam64.sys allows a non-privileged process to register itself with the driver by connecting to the filter communication port and then using IOCTL 0x8000204C to \\.\ZemanaAntiMalware to e...
Malwarefox Antimalware 2.74.0.150
1 EDB exploit
1 Github repository
5.3
CVSSv3
CVE-2020-8096
Untrusted Search Path vulnerability in Bitdefender High-Level Antimalware SDK for Windows allows an malicious user to load third party code from a DLL library in the search path. This issue affects: Bitdefender High-Level Antimalware SDK for Windows versions before 3.0.1.204 .
Bitdefender Antimalware Software Development Kit
6.7
CVSSv3
CVE-2022-42045
Certain Zemana products are vulnerable to Arbitrary code injection. This affects Watchdog Anti-Malware 4.1.422 and Zemana AntiMalware 3.2.28.
Watchdog Anti-virus 4.1.422
Zemana Antimalware 3.2.28
1 Github repository
6.7
CVSSv3
CVE-2017-12312
An untrusted search path (aka DLL Preloading) vulnerability in the Cisco Immunet antimalware installer could allow an authenticated, local malicious user to execute arbitrary code via DLL hijacking if a local user with administrative privileges executes the installer in the curre...
Cisco Advanced Malware Protection For Endpoints 3.1.0
7.8
CVSSv3
CVE-2020-0835
An elevation of privilege vulnerability exists when Windows Defender antimalware platform improperly handles hard links, aka 'Windows Defender Antimalware Platform Hard Link Elevation of Privilege Vulnerability'.
Microsoft Windows Defender -
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »