Lucene search

[email protected]NVD:CVE-2020-9362

HistoryFeb 24, 2020 - 4:15 p.m.

CVE-2020-9362

2020-02-2416:15:13

CWE-436

[email protected]

web.nvd.nist.gov

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.5

Confidence

High

EPSS

0.001

Percentile

47.6%

JSON

The Quick Heal AV parsing engine (November 2019) allows virus-detection bypass via a crafted GPFLAG in a ZIP archive. This affects Total Security, Home Security, Total Security Multi-Device, Internet Security, Total Security for Mac, AntiVirus Pro, AntiVirus for Server, and Total Security for Android.

Affected configurations

Nvd

Node

quickhealantivirus_for_serverMatch2019-11

quickhealantivirus_proMatch2019-11

quickhealhome_securityMatch2019-11

quickhealinternet_securityMatch2019-11

quickhealtotal_securityMatch2019-11-

quickhealtotal_securityMatch2019-11android

quickhealtotal_securityMatch2019-11mac_os

quickhealtotal_security_multi-deviceMatch2019-11

VendorProductVersionCPE
quickhealantivirus_for_server2019-11cpe:2.3:a:quickheal:antivirus_for_server:2019-11:*:*:*:*:*:*:*
quickhealantivirus_pro2019-11cpe:2.3:a:quickheal:antivirus_pro:2019-11:*:*:*:*:*:*:*
quickhealhome_security2019-11cpe:2.3:a:quickheal:home_security:2019-11:*:*:*:*:*:*:*
quickhealinternet_security2019-11cpe:2.3:a:quickheal:internet_security:2019-11:*:*:*:*:*:*:*
quickhealtotal_security2019-11cpe:2.3:a:quickheal:total_security:2019-11:*:*:*:*:-:*:*
quickhealtotal_security2019-11cpe:2.3:a:quickheal:total_security:2019-11:*:*:*:*:android:*:*
quickhealtotal_security2019-11cpe:2.3:a:quickheal:total_security:2019-11:*:*:*:*:mac_os:*:*
quickhealtotal_security_multi-device2019-11cpe:2.3:a:quickheal:total_security_multi-device:2019-11:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
quickheal	antivirus_for_server	2019-11	cpe:2.3:a:quickheal:antivirus_for_server:2019-11:::::::*
quickheal	antivirus_pro	2019-11	cpe:2.3:a:quickheal:antivirus_pro:2019-11:::::::*
quickheal	home_security	2019-11	cpe:2.3:a:quickheal:home_security:2019-11:::::::*
quickheal	internet_security	2019-11	cpe:2.3:a:quickheal:internet_security:2019-11:::::::*
quickheal	total_security	2019-11	cpe:2.3:a:quickheal:total_security:2019-11:::::-::
quickheal	total_security	2019-11	cpe:2.3:a:quickheal:total_security:2019-11:::::android::
quickheal	total_security	2019-11	cpe:2.3:a:quickheal:total_security:2019-11:::::mac_os::
quickheal	total_security_multi-device	2019-11	cpe:2.3:a:quickheal:total_security_multi-device:2019-11:::::::*

References

packetstormsecurity.com/files/156580/QuickHeal-Generic-Malformed-Archive-Bypass.html

seclists.org/fulldisclosure/2020/Mar/14

blog.zoller.lu/p/from-low-hanging-fruit-department_24.html

blog.zoller.lu/p/tzo-20-2020-quickheal-malformed-archive.html

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.5

Confidence

High

EPSS

0.001

Percentile

47.6%

JSON

Related for NVD:CVE-2020-9362

cvelist1 prion1 cve1