CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 5 days ago•7 views

CVE-2016-20090

Comodo Dragon Browser versions up to 52.15.25.663 contain a privilege escalation vulnerability in the DragonUpdater service due to an unquoted service path running with SYSTEM privileges. A local attacker can insert a malicious executable in the service path and execute arbitrary code with elevat...

8.5CVSS0.00122EPSS

CVE•added 5 days ago•11 views

CVE-2016-20090

CVE-2016-20090 affects Comodo Dragon Browser up to version 52.15.25.663. The issue is a privilege escalation in the DragonUpdater service caused by an unquoted service path that runs with SYSTEM privileges. A local attacker can drop a malicious executable in the service path and trigger code exec...

8.5CVSS6.2AI score0.00122EPSS

EUVD•added 5 days ago•6 views

EUVD-2016-10903

8.5CVSS6.2AI score0.00122EPSS

Cvelist•added 5 days ago•27 views

CVE-2016-20090 Comodo Dragon Browser 52.15.25.663 Privilege Escalation via Unquoted Service Path

8.5CVSS0.00122EPSS

Nuclei•added 2026/06/16 7:13 a.m.•18 views

Comodo Unified Threat Management Web Console - Remote Code Execution

Comodo Firewall & Central Manager UTM All Release before 2.7.0 & 1.5.0 are susceptible to a web shell based remote code execution vulnerability. id: CVE-2018-17431 info: name: Comodo Unified Threat Management Web Console - Remote Code Execution author: dwisiswant0 severity: critical description:...

9.8CVSS9.1AI score0.84311EPSS

Exploits4References5

EUVD•added 2026/06/07 12:8 p.m.•11 views

EUVD-2026-34990

Comodo Internet Security's firewall driver Inspect.sys contains an integer underflow in its IPv6 packet parser. The parser decrements an unsigned 64-bit payload-length value taken from the IPv6 fixed header's payload length field by the size of each IPv6 extension header without validating it, so...

8.7CVSS5.6AI score0.00536EPSS

Exploits0References3

Vulnrichment•added 2026/06/07 12:8 p.m.•8 views

CVE-2026-49494 Xcitium Client Security / Comodo Internet Security Remote Denial of Service

Xcitium Client Security XCS before 13.8.2.10019 and Comodo Internet Security CIS through 12.3.4.8162 fix expected by 2026 Q3 contain an integer underflow vulnerability in the firewall driver Inspect.sys that allows remote unauthenticated attackers to crash the system by sending a crafted IPv6...

8.7CVSS6.2AI score0.00536EPSS

Exploits0References4

Cvelist•added 2026/06/07 12:8 p.m.•46 views

CVE-2026-49494 Xcitium Client Security / Comodo Internet Security Remote Denial of Service

8.7CVSS0.00536EPSS

Exploits0References4

Positive Technologies•added 2026/06/07 12:0 a.m.•10 views

PT-2026-47183

Name of the Vulnerable Software and Affected Versions Comodo Internet Security affected versions not specified Description The firewall driver Inspect.sys contains an integer underflow in its IPv6 packet parser. The parser decrements an unsigned 64-bit payload-length value, derived from the IPv6...

8.7CVSS5.5AI score0.00536EPSS

Exploits0References9

CNNVD•added 2026/06/07 12:0 a.m.•8 views

Comodo Internet Security 数字错误漏洞

Comodo Internet Security is a set of computer security software developed by the American company Comodo, primarily aimed at internet security. Comodo Internet Security has a digital error vulnerability; this vulnerability stems from an integer underflow in the IPv6 packet resolver within the...

8.7CVSS5.8AI score0.00536EPSS

Exploits0References3

CNNVD•added 2026/03/16 12:0 a.m.•4 views

OpenEDR 安全漏洞

OpenEDR is an open-source terminal detection and response security platform developed by Comodo Cyber Security. Version 2.5.1.0 of OpenEDR contains a security vulnerability. This vulnerability stems from the ability to bypass the system’s defense mechanisms by renaming malicious executable files,...

7.8CVSS5.8AI score0.00157EPSS

Exploits1References4

OSV•added 2026/03/04 5:33 p.m.•3 views

CLSA-2026-1772645603 Update of ca-certificates

update to CKBI 2.82 from NSS 3.120 - updated certificates: - Certificate "GlobalSign Root CA" - Certificate "Entrust.net Premium 2048 Secure Server CA" - Certificate "Comodo AAA Services root" - Certificate "XRamp Global CA Root" - Certificate "Go Daddy Class 2 CA" - Certificate "Starfield Class...

OSV•added 2026/03/04 5:14 p.m.•4 views

CLSA-2026-1772644488 Update of ca-certificates

update to CKBI 2.82 from NSS 3.121 - updated certificates: - Certificate "GlobalSign Root CA" - Certificate "Entrust.net Premium 2048 Secure Server CA" - Certificate "Comodo AAA Services root" - Certificate "XRamp Global CA Root" - Certificate "Go Daddy Class 2 CA" - Certificate "Starfield Class...

OSV•added 2026/03/04 5:11 p.m.•5 views

CLSA-2026-1772644297 Update of ca-certificates

OSV•added 2026/03/04 5:8 p.m.•4 views

CLSA-2026-1772644086 Update of nss

OSV•added 2026/03/04 4:45 p.m.•4 views

CLSA-2026-1772642715 Update of alt-php

Update ca-certificates database to 20260129: - mozilla\certdata.h,nssckbi.h: Update Mozilla certificate authority bundle of the version 2.82. - The following certificates were updated: Certificate "GlobalSign Root CA" Certificate "Entrust.net Premium 2048 Secure Server CA" Certificate "Comodo AAA...

OSV•added 2026/02/25 1:47 p.m.•7 views

CLSA-2026-1772027218 Update of ca-certificates

update to CKBI 2.82 from NSS 3.120 - updated certificates: - Certificate "Entrust.net Premium 2048 Secure Server CA" - Certificate "Entrust Root Certification Authority" - Certificate "ePKI Root Certification Authority" - Certificate "AffirmTrust Commercial" - Certificate "AffirmTrust Networking"...