Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
antivirus security 2019 vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2019-12042
Insecure permissions of the section object Global\PandaDevicesAgentSharedMemory and the event Global\PandaDevicesAgentSharedMemoryChange in Panda products prior to 18.07.03 allow malicious users to queue an event (as an encrypted JSON string) to the system service AgentSvc.exe, w...
Pandasecurity Panda Antivirus
Pandasecurity Panda Dome
Pandasecurity Panda Gold Protection
Pandasecurity Panda Internet Security
Pandasecurity Panda Antivirus Pro
Pandasecurity Panda Global Protection
1 Github repository
828
VMScore
CVE-2019-18894
In Avast Premium Security 19.8.2393, attackers can send a specially crafted request to the local web server run by Avast Antivirus on port 27275 to support Bank Mode functionality. A flaw in the processing of a command allows execution of arbitrary OS commands with the privileges...
Avast Premium Security 19.8.2393
668
VMScore
CVE-2021-3711
In order to decrypt SM2 encrypted data an application is expected to call the API function EVP_PKEY_decrypt(). Typically an application will call this function twice. The first time, on entry, the "out" parameter can be NULL and, on exit, the "outlen" paramete...
Openssl Openssl
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Santricity Smi-s Provider -
Netapp Snapcenter -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Clustered Data Ontap -
Netapp Clustered Data Ontap Antivirus Connector -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Manageability Software Development Kit -
Netapp Storage Encryption -
Netapp E-series Santricity Os Controller
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Jd Edwards World Security A9.4
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Enterprise Session Border Controller 8.4
Oracle Enterprise Communications Broker 3.2.0
Oracle Zfs Storage Appliance Kit 8.8
Oracle Peoplesoft Enterprise Peopletools 8.59
1 Github repository
1 Article
668
VMScore
CVE-2019-18190
Trend Micro Security (Consumer) 2020 (v16.x) is affected by a vulnerability in where null pointer dereference errors result in the crash of application, which could potentially lead to possible unsigned code execution under certain circumstances.
Trendmicro Antivirus\\+ Security 2020
Trendmicro Internet Security 2020
Trendmicro Maximum Security 2020
Trendmicro Premium Security 2020
668
VMScore
CVE-2019-16897
In K7 Antivirus Premium 16.0.xxx up to and including 16.0.0120; K7 Total Security 16.0.xxx up to and including 16.0.0120; and K7 Ultimate Security 16.0.xxx up to and including 16.0.0120, the module K7TSHlpr.dll improperly validates the administrative privileges of the user, allow...
K7computing K7 Antivirus Premium
K7computing K7 Total Security
K7computing K7 Ultimate Security
641
VMScore
CVE-2019-3648
A Privilege Escalation vulnerability in the Microsoft Windows client in McAfee Total Protection 16.0.R22 and previous versions allows administrators to execute arbitrary code via carefully placing malicious files in specific locations protected by administrator permission.
Mcafee Anti-virus Plus
Mcafee Internet Security
Mcafee Total Protection
1 Article
641
VMScore
CVE-2019-16519
ESET Cyber Security 6.7.900.0 for macOS allows a local malicious user to execute unauthorized commands as root by abusing an undocumented feature in scheduled tasks.
Eset Cyber Security
Eset Endpoint Antivirus
Eset Endpoint Security
641
VMScore
CVE-2019-14242
An issue exists in Bitdefender products for Windows (Bitdefender Endpoint Security Tool versions before 6.6.8.115; and Bitdefender Antivirus Plus, Bitdefender Internet Security, and Bitdefender Total Security versions before 23.0.24.120) that can lead to local code injection. A l...
Bitdefender Antivirus Plus
Bitdefender Endpoint Security Tool
Bitdefender Internet Security
Bitdefender Total Security
632
VMScore
CVE-2019-15961
A vulnerability in the email parsing module Clam AntiVirus (ClamAV) Software versions 0.102.0, 0.101.4 and prior could allow an unauthenticated, remote malicious user to cause a denial of service condition on an affected device. The vulnerability is due to inefficient MIME parsin...
Clamav Clamav
Clamav Clamav 0.102.0
Cisco Email Security Appliance Firmware 11.1.2-023
Cisco Email Security Appliance Firmware 11.1.1-042
Debian Debian Linux 8.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 12.04
623
VMScore
CVE-2021-40444
<p>Microsoft is investigating reports of a remote code execution vulnerability in MSHTML that affects Microsoft Windows. Microsoft is aware of targeted attacks that attempt to exploit this vulnerability by using specially-crafted Microsoft Office documents.</p> <p&...
Microsoft Windows Server 2008 R2
Microsoft Windows 10 1607
Microsoft Windows Server 2016 -
Microsoft Windows Server 2008 -
Microsoft Windows Rt 8.1 -
Microsoft Windows Server 2012 -
Microsoft Windows 10 -
Microsoft Windows Server 2019 -
Microsoft Windows 10 1809
Microsoft Windows 10 1909
Microsoft Windows 10 2004
Microsoft Windows Server 2016 2004
Microsoft Windows 10 20h2
Microsoft Windows Server 2016 20h2
Microsoft Windows 10 21h1
Microsoft Windows Server 2022 -
Microsoft Windows 7 -
Microsoft Windows 8.1 -
59 Github repositories
9 Articles
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »