Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Internet_security
(Kaspersky)Repositories |
Unknown: This might be proprietary software. |
#Vulnerabilities | 14 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2017-08-25 | CVE-2017-12817 | In Kaspersky Internet Security for Android 11.12.4.1622, some of the application trace files were not encrypted. | Internet_security | 7.5 | ||
2021-04-01 | CVE-2021-26718 | KIS for macOS in some use cases was vulnerable to AV bypass that potentially allowed an attacker to disable anti-virus protection. | Internet_security | 5.5 | ||
2019-11-26 | CVE-2019-15688 | Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, Kaspersky Security Cloud up to 2020, the web protection component did not adequately inform the user about the threat of redirecting to an untrusted site. Bypass. | Anti\-Virus, Internet_security, Security_cloud, Small_office_security, Total_security | N/A | ||
2019-11-26 | CVE-2019-15686 | Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, Kaspersky Security Cloud up to 2020, the web protection component allowed an attacker remotely disable various anti-virus protection features. DoS, Bypass. | Anti\-Virus, Internet_security, Security_cloud, Small_office_security, Total_security | N/A | ||
2019-11-26 | CVE-2019-15685 | Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, Kaspersky Security Cloud up to 2020, the web protection component allowed an attacker remotely disable such product's security features as private browsing and anti-banner. Bypass. | Anti\-Virus, Internet_security, Security_cloud, Small_office_security, Total_security | N/A | ||
2019-07-18 | CVE-2019-8286 | Information Disclosure in Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security versions up to 2019 could potentially disclose unique Product ID by forcing victim to visit a specially crafted webpage (for example, via clicking phishing link). Vulnerability has CVSS v3.0 base score 2.6 | Anti\-Virus, Free_anti\-Virus, Internet_security, Small_office_security, Total_security | 4.3 | ||
2017-01-06 | CVE-2016-4329 | A local denial of service vulnerability exists in window broadcast message handling functionality of Kaspersky Anti-Virus software. Sending certain unhandled window messages, an attacker can cause application termination and in the same way bypass KAV self-protection mechanism. | Anti\-Virus, Internet_security, Total_security | 5.5 | ||
2017-01-06 | CVE-2016-4307 | A denial of service vulnerability exists in the IOCTL handling functionality of Kaspersky Internet Security KL1 driver. A specially crafted IOCTL signal can cause an access violation in KL1 kernel driver resulting in local system denial of service. An attacker can run a program from user-mode to trigger this vulnerability. | Internet_security | 5.5 | ||
2017-01-06 | CVE-2016-4305 | A denial of service vulnerability exists in the syscall filtering functionality of Kaspersky Internet Security KLIF driver. A specially crafted native api call can cause a access violation in KLIF kernel driver resulting in local denial of service. An attacker can run program from user-mode to trigger this vulnerability. | Internet_security | 5.5 | ||
2017-01-06 | CVE-2016-4304 | A denial of service vulnerability exists in the syscall filtering functionality of the Kaspersky Internet Security KLIF driver. A specially crafted native api call request can cause a access violation exception in KLIF kernel driver resulting in local denial of service. An attacker can run program from user-mode to trigger this vulnerability. | Internet_security | 5.5 |