Check CVE Id
Check CWE Id
Kernel pool memory corruption in one of drivers in Kaspersky Embedded Systems Security version 126.96.36.1990 leads to local privilege escalation.
(Improper Restriction of Operations within the Bounds of a Memory Buffer)
Embedded systems security
CVSS Base Score
Information Disclosure in Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security versions up to 2019 could potentially disclose unique Product ID by forcing victim to visit a specially crafted webpage (for example, via clicking p...
WebConsole Cross-Site Scripting in Kaspersky Secure Mail Gateway version 1.1.
Local Privilege Escalation in Kaspersky Secure Mail Gateway version 1.1.
Configuration file injection leading to Code Execution as Root in Kaspersky Secure Mail Gateway version 1.1.
Cross-site Request Forgery leading to Administrative account takeover in Kaspersky Secure Mail Gateway version 1.1.
In Kaspersky Internet Security for Android 188.8.131.522, some of the application trace files were not encrypted.
In Kaspersky Internet Security for Android 184.108.40.2062, some of application exports activities have weak permissions, which might be used by a malware application to get unauthorized access to the product functionality by using Android IPC.
The kluser is able to interact with the kav4fs-control binary in Kaspersky Anti-Virus for Linux File Server before Maintenance Pack 2 Critical Fix 4 (version 220.127.116.112). By abusing the quarantine read and write operations, it is possible to elevate t...
Back to Top