7 matches found
CVE-2022-27534
CVE-2022-27534 affects Kaspersky Anti-Virus for home and Kaspersky Endpoint Security with antivirus databases released before 12 Mar 2022. A bug in the data parsing module could allow an attacker to execute arbitrary code. Impact is high; CVSSv3.1 base score 9.8 (NETWORK, NONE, UI: NONE, S: UNCHA...
CVE-2019-8286
CVE-2019-8286 concerns Kaspersky URL Advisor in multiple Kaspersky products. The issue stems from how the URL Advisor injects a remotely-hosted JavaScript into pages, where the injected URL contained a unique, per-user identifier. This could allow websites or third-party services to read the Kasp...
CVE-2021-27223
CVE-2021-27223 affects Kaspersky Anti‑Virus (home) and Kaspersky Endpoint Security. A local user can trigger a denial‑of‑service by executing a specially crafted binary module, causing Windows crash. The fix was delivered automatically by the vendor. The available documents do not provide deeper ...
CVE-2019-15685
CVE-2019-15685 affects Kaspersky Internet Security family (including Kaspersky Anti-Virus, Internet Security, Total Security, Free Anti-Virus, Small Office Security, Security Cloud up to 2020) with the Web Protection component. A web-protection input validation error allows an attacker to remotel...
CVE-2019-15688
The CVE-2019-15688 entry concerns Kaspersky’s web protection components in multiple products (Kaspersky Anti‑Virus/Internet Security/Total Security/Free etc.) where the user is not adequately informed about redirects to untrusted sites, enabling bypass of warnings. Connected sources add concrete ...
CVE-2019-15687
The CVE-2019-15687 issue affects Kaspersky consumer and security-suite products (Kaspersky Anti-Virus, Internet Security, Total Security, Free Antivirus, Small Office Security, Security Cloud up to 2020) where the Web Protection component could remotely disclose information about the user’s syste...
CVE-2019-15686
CVE-2019-15686 affects Kaspersky防 antivirus/product suites (Kaspersky Anti-Virus, Internet Security, Total Security, Free Anti-Virus, Small Office Security, Security Cloud up to 2020) with a vulnerability in the Web Protection component. The connected CNVD entry describes an input validation erro...