Anti-Malware Software Vulnerabilities

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

Vendor

Identifying all affected vendors is a good starting point for an overview. This makes it possible to determine an homogeneous landscape or the most important hotspots in heterogeneous landscapes.

Product

Cisco Email Security Appliance75
Cisco Web Security Appliance70
Symantec Endpoint Protection67
ClamAV53
Trend Micro OfficeScan52

Grouping vulnerabilities by products helps to get an overview. This makes it possible to determine an homogeneous landscape or the most important hotspots in heterogeneous landscapes.

Remediation

Official Fix910
Temporary Fix0
Workaround14
Unavailable53
Not Defined549

Vendors and researchers are eager to find countermeasures to mitigate security vulnerabilities. These can be distinguished between multiple forms and levels of remediation which influence risks differently.

Exploitability

High44
Functional3
Proof-of-Concept458
Unproven72
Not Defined949

Researcher and attacker which are looking for security vulnerabilities try to exploit them for academic purposes or personal gain. The level and quality of exploitability can be distinguished to determine simplicity and strength of attacks.

Access Vector

Not Defined0
Physical1
Local390
Adjacent90
Network1045

The approach a vulnerability it becomes important to use the expected access vector. This is typically via the network, local, or physically even.

Authentication

Not Defined0
High15
Low469
None1042

To exploit a vulnerability a certail level of authentication might be required. Vulnerabilities without such a requirement are much more popular.

User Interaction

Not Defined0
Required143
None1383

Some attack scenarios require some user interaction by a victim. This is typical for phishing, social engineering and cross site scripting attacks.

C3BM Index

Our unique C3BM Index (CVSSv3 Base Meta Index) cumulates the CVSSv3 Meta Base Scores of all entries over time. Comparing this index to the amount of disclosed vulnerabilities helps to pinpoint the most important events.

CVSSv3 Base

≤10
≤21
≤36
≤455
≤5142
≤6434
≤7275
≤8375
≤994
≤10144

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp

≤10
≤21
≤37
≤468
≤5239
≤6409
≤7350
≤8261
≤9105
≤1086

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB

≤10
≤21
≤313
≤495
≤5140
≤6504
≤7189
≤8372
≤967
≤10145

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD

≤10
≤21
≤33
≤412
≤528
≤6134
≤767
≤8266
≤940
≤1046

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

CNA

≤10
≤20
≤30
≤40
≤53
≤611
≤72
≤89
≤92
≤101

A CVE Numbering Authority (CNA) is responsible for assigning new CVE entries. They might also include a CVSS score. These are usually not complete and might differ from VulDB scores.

Vendor

≤10
≤20
≤33
≤47
≤52
≤610
≤715
≤815
≤91
≤100

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

Exploit 0-day

<1k80
<2k155
<5k234
<10k303
<25k414
<50k318
<100k21
≥100k1

The moderation team is working with the threat intelligence team to determine prices for exploits. Our unique algorithm is used to identify the 0-day prices for an exploit, before it got distributed or became public. Calculated prices are aligned to prices disclosed by vulnerability broker and compared to prices we see on exploit markets.

Exploit Today

<1k1066
<2k79
<5k187
<10k109
<25k83
<50k2
<100k0
≥100k0

The 0-day prices do not consider time-relevant factors. The today price does reflect price impacts like disclosure of vulnerability details, alternative exploits, availability of countermeasures. These dynamic aspects might decrease the exploit prices over time. Under certain circumstances this happens very fast.

Exploit Market Volume

Our unique calculation of exploit prices makes it possible to forecast the expected exploit market volume. The calculated prices for all possible 0-day expoits are cumulated for this task. Comparing the volume to the amount of disclosed vulnerabilities helps to pinpoint the most important events.

🔴 CTI Activities

Our unique Cyber Threat Intelligence aims to determine the ongoing research of actors to anticipiate their acitivities. Observing exploit markets on the Darknet, discussions of vulnerabilities on mailinglists, and exchanges on social media makes it possible to identify planned attacks. Monitored actors and activities are classified whether they are offensive or defensive. They are also weighted as some actors are well-known for certain products and technologies. And some of their disclosures might contain more or less details about technical aspects and personal context. The world map highlights active actors in real-time.

Affected Products (431): Adaware Antivirus, Alwil Avast Antivirus, ALWIL Avast Antivirus, Alwil Software Avast! Antivirus, AMaViS Mail Virus Scanner, AMaViS Virus Scanner, AMC Security- Antivirus Clean, Anti-virus Kaspersky Anti-virus, Anti-Virus Total Security, Anti-virus Virusblockada32, AntiVir AntiVirus, Antivir Antivirus, Antiy Antivirus Engine, ArcaVir ArcaVir Antivirus, Authentium Command Antivirus, Avast Antivirus, avast Antivirus, avast antivirus, avast Antivirus Home, avast Antivirus Professional, Avast Antivirus Professional, avast Avast Antivirus, avast Avast Antivirus Free, avast Avast Antivirus Home, Avast Free Antivirus, Avast Internet Security, Avast Premier, Avast Pro Antivirus, Avast! Antivirus, avast! Antivirus, Avast! Internet Security, Avast! Antivirus, AVG Anti-Virus, AVG Antivirus, AVG AntiVirus FREE, AVG AVG anti-virus, AVG AVG Anti-Virus, AVG AVG AntiVirus, AVG Free Antivirus, AVG Internet Security, AVG Ultimate, Avira Antivirus, Avira Antivirus Engine, Avira Antivirus for Endpoint, Avira Antivirus for Small Business, Avira Antivir Antivirus, Avira Cross Platform Anti-Malware SDK, Avira Exchange Security Gateway), Avira Free Anti-Virus, Avira Free Antivirus, Avira Internet Security Suite for Windows, Avira Security Suite for Windows, Awesome Antivirus 2014, Barracuda Spam, Barracuda Virus WAF, Barracuda Web Security Flex, BitDefender Antivirus, BitDefender Antivirus Free, BitDefender Antivirus Free 2020, BitDefender Antivirus Plus, Bitdefender Bitdefender Antivirus, BitDefender Endpoint Security Tool, BitDefender High-Level Antimalware SDK, BitDefender Internet Security, BitDefender Online Anti-Virus Scanner, BitDefender Security Tools, BitDefender Security Tools for Windows, BitDefender Total Security, BitDefender VPN Standalone, BitDefender Antivirus Plus, Bluevirus-design PH Pexplorer, Bluevirus-design SMA-DB, bluevirus-design SMA-DB, Blue Coat Malware Analysis Appliance, Blue Coat Malware Analyzer G2, BullGuard Antivirus, BullGuard Internet Security, BullGuard Online Backup, BullGuard Premium Protection, CA Anti-Virus Enterprise, CA Anti-Virus for the Enterprise, CA eTrust Antivirus, CA Etrust Antivirus, ca Etrust Antivirus, CA eTrust Antivirus EE, CA eTrust Antivirus WebScan, Canon IT Solutions CompuSec, Canon IT Solutions DESlock+ Pro, Canon IT Solutions ESET Internet Security, Canon IT Solutions ESET NOD32 Antivirus, Canon IT Solutions ESET Smart Security, Canon IT Solutions ESET Smart Security Premium, Cheyenne Inoculan Anti-Virus Server, Christian Hilgers HTTP Anti Virus Proxy HAVP, Cisco Advanced Malware Protection, Cisco AsyncOS, Cisco ClamAV, Cisco Cloud Web Security, Cisco Content Management Security Appliance, Cisco Content Security Management, Cisco Content Security Management Appliance, Cisco Email Security, Cisco Email Security Appliance, Cisco Immunet, Cisco Immunet Antimalware Installer, Cisco IronPort Email Security Appliance, Cisco Secure Email and Web Manager, Cisco Secure Web Appliance, Cisco Web Security, Cisco Web Security Appliance, Clam Antivirus, ClamAV, ClamAV Antivirus, ClamAV Antivirus Software, ClamAV Mail Filter, Comodo Antivirus, Comodo Firewall, Comodo Internet Security Premium, Content Security Management Appliance, Dell SonicWALL Email Security, DFNDR Security Anti-Hacking , DFNDR Security Antivirus, DFNDR Security Cleaner, Dr. Web Antivirus, Dr.Web Antivirus, Dr.Web Security Space, DrWeb Anti-virus, Drweb Web Security Space, EG Free Antivirus, Email Security Appliance, Emsisoft Anti-Malware, eScan Antivirus, ESET Antispyware Module Module, ESET Antivirus, ESET Cyber Security, ESET Cyber Security Pro, ESET Endpoint Antivirus, ESET Endpoint Security, ESET ESET Cyber Security Pro, ESET Internet Security, ESET Mobile Security, ESET NOD32 Antivirus, ESet NOD32 Antivirus, ESET Server Security, ESET Smart Security Premium, ESET Smart TV Security, Eset Software NOD32 Antivirus, eTrust eTrust Vet Antivirus, F-Prot Antivirus, F-Prot F-prot Antivirus, F-Prot F-Prot Antivirus, F-Secure Anti-Virus, F-Secure anti-virus, F-Secure Anti-Virus Engine, F-Secure Anti-Virus for Workstations, F-Secure Anti-Virus Internet Gatekeeper, F-Secure Antivirus, F-Secure AntiVirus, F-Secure Antivirus Engine, F-Secure Client Security, F-Secure Computer Protection, F-Secure Internet Security, F-Secure PSB Workstation Security, F-Secure SAFE, files_antivirus, FireEye Malware Analysis System, Flets VIRUS CLEAR Easy Setup , Flets Application Tool, Forcepoint Email Security, Forcepoint Web Security, Forcepoint Web Security Content Gateway, Fortinet Antivirus, Fortinet Fortiguard Antivirus, Fortinet Fortinet Antivirus, Frisk F-Prot Antivirus, FRISK Software F-Prot Antivirus, Frisk Software F-Prot Antivirus, Frisk Software F-prot Antivirus, Gdata Antivirus, GFI VIPRE Antivirus, Grisoft AVG Anti-Virus, Grisoft AVG Antivirus, Grisoft Avg Antivirus, Groupware Server Antivirus Engine, HAVP HTTP Antivirus Proxy, Hi Hi Security Virus Cleaner - Antivirus Booster, Ikarus anti.virus, Ikarus Anti-Virus, Ikarus Anti Virus, Ikarus Ikarus Antivirus, Ikarus Ikarus AntiVirus, Ikarus Virus Utilities T3 Command Line Scanner, Intego VirusBarrier, Intel Security Anti-Virus, Intel Security Anti-Virus Engine, Intel VirusScan Enterprise Linux, IObit Malware Fighter, IObit Malware Fighter Pro, Iolo AntiSpyware, Iolo System Shield AntiVirus, Jiangmin Antivirus, Jingyun Antivirus, K7 Antivirus, K7 Antivirus Premium, K7 Total Security, K7 Ultimate Security, K7computing AntiVirus, K7computing K7AntiVirus Premium, Kaspersky Anti-Virus, kaspersky anti-virus, Kaspersky Anti-Virus for Check Point FireWall, Kaspersky Antivirus, Kaspersky Endpoint Security, Kaspersky Free Anti-Virus, Kaspersky Internet Security, Kaspersky Kaspersky Anti-virus Scanner, Kaspersky Security Cloud, Kaspersky Small Office Security, Kaspersky Total Security, Kaspersky Virus Removal Tool, Kaspersky Lab Anti-Virus, Kaspersky Lab Antivirus Engine, Kaspersky Lab Kaspersky Anti-virus, Kaspersky Lab Kaspersky Anti-Virus, KingSoft Antivirus Online Update Module, Kingsoftsecurity Kingsoft AntiVirus, Kingsoftsecurity Kingsoft Antivirus, LabMSF Antivirus beta, Lookout Security , Lookout Antivirus, Malwarebytes, Malwarebytes AdwCleaner, Malwarebytes Anti-Exploit, Malwarebytes Anti-Malware, Malwarebytes AntiMalware, Malwarebytes Free, Malwarefox Anti-Malware, MalwareFox AntiMalware, Malware Finder, Malware Information Sharing Platform, Malware Remover, Malware Scanner Plugin, Max Secure Anti Virus, McAfee Antivirus, McAfee Antivirus Engine, McAfee ASaP Virusscan, McAfee E-Mail, McAfee Email, McAfee Email Anti-virus, McAfee GroupShield, McAfee Total Protection Free Antivirus Trial, McAfee VirusScan, McAfee VirusScan Enterprise, mcafee virusscan enterprise, McAfee VirusScan Security Center, McAfee Virus Scan Enterprise, McAfee WebShield, McAfee Web Security, McAfee Web Security Appliance, Microsoft Defender Antimalware Platform, Microsoft Malware Protection Engine, Microsoft Security Essentials Antimalware Engine, MicroWorld eScan Anti-Virus, Mimecast Email Security, NAI VirusScan, Network Associates NetShield, Network Associates VirusScan, NOD32 Antivirus, Norman Antivirus, Norman Antivirus , Norman Malware Cleaner, Norman Norman Virus Control, Norman Virus Control, Norman Virus Control Antivirus, Norman Antispyware, Norton Antivirus, Nq Antivirus Free, NQ NQ Mobile Security , NQ Antivirus, Panda Antivirus, Panda Antivirus Platinum, Panda Antivirus Pro, Panda Dome, Panda Firewall, Panda Free Antivirus, Panda Global Protection, Panda Gold Protection, Panda Internet Security, Panda Titanium 2006 Antivirus, Pandasecurity Panda Antivirus, PCProtect Anti-Virus, PCProtect Antivirus, Pctools Pctools Antivirus, PrivaWall PrivaWall Antivirus, Protector Plus Antivirus Software, Quickheal AntiVirus Plus 2009, Quickheal AntiVirus Pro, Quick Heal Antivirus Pro, Quick Heal AntiVirus Pro, Quick Heal Internet Security, Quick Heal Total Security, Rising Antivirus, RISING Antivirus, Rising Rising Antivirus, Rising Antivirus International Rising Web Scan Object, SalD Dr. Web Anti Virus, Softwin BitDefender Antivirus, SonicWALL AntiSpam , SonicWall Email Security, SonicWALL Email Security, SonicWALL Email Security Appliance, SonicWALL Email Security Virtual Appliance, SonicWALL Hosted Email Security, SonicWALL Email Security Appliance, SonicWALL EMail Security Appliance, Sophos Anti-Virus, Sophos Antivirus, Sophos Threat Engine Detection, SourceFire ClamAV, SOURCENEXT Virus Security, STOPzilla AntiMalware, Symantec Anti-Virus Engine, Symantec AntiVirus, Symantec Antivirus, Symantec AntiVirus Corporate Edition, Symantec Antivirus Scan Engine, Symantec AntiVirus Scan Engine, Symantec Endpoint Protection, Symantec Endpoint Protection AVEngine, Symantec Endpoint Protection Manager, Symantec Endpoint Protection SBE, Symantec Endpoint Protection Small Business Edition, Symantec Mail Security for MS Exchange, Symantec Norton Anti-Virus, Symantec Norton Antivirus, Symantec Norton AntiVirus, symantec norton antivirus, Symantec Norton Antivirus for Internet Email Gateway, Symantec Norton Internet Security, Symantec Norton Security, Symantec pcAnywhere, Symantec Security Check Virus Detection, Symantec Symantec Antivirus Scan Engine, Symantec Symantec Endpoint Protection Cloud, Symantec Web Security, Synology Antivirus Essential, Torchsoft Malware Defender, Total Defense Anti-Virus, Trend Micro Anti-Threat Toolkit, Trend Micro Antivirus, Trend Micro AntiVirus, Trend Micro Antivirus 2021, Trend Micro Antivirus for Mac 2019, Trend Micro Antivirus Plus, Trend Micro Antivirus+Securiuty, Trend Micro Apex One, Trend Micro Apex One as a Service, Trend Micro Deep Security, Trend Micro HouseCall, Trend Micro Internet Security, Trend Micro Interscan Applettrap, Trend Micro InterScan Messaging Security, Trend Micro InterScan Messaging Security Suite, Trend Micro Interscan Messaging Security Virtual Appliance, Trend Micro InterScan Messaging Virtual Appliance, Trend Micro Interscan Viruswall, Trend Micro InterScan VirusWall, Trend Micro Interscan Webmanager, Trend Micro InterScan Web Security Suite, Trend Micro InterScan Web Security Virtual Appliance, Trend Micro Interscan Web Security Virtual Appliance, Trend Micro Maximum Security, Trend Micro Micro Apex One, Trend Micro Norton AntiVirus, Trend Micro OfficeScan, Trend Micro OfficeScan Corporate Edition, Trend Micro OfficeScan XG, Trend Micro OfficeScan XG SP1, Trend Micro Portable Security, Trend Micro Rootkit Buster, Trend Micro Safe Lock, Trend Micro ServerProtect, Trend Micro ServerProtection, Trend Micro ServerProtect EarthAgent, Trend Micro ServerProtect for EMC Celerra, Trend Micro ServerProtect for Linux, Trend Micro ServerProtect for Microsoft Windows and Novell Netware, Trend Micro ServerProtect for Network Appliance Filers, Trend Micro ServerProtect for Storage, Trend Micro VirusWall, Trend Micro Virus Buster, Trend Micro Virus Buster 2001, Trend Micro Virus Control System, Trend Micro Web Security, Trend Micro Worry-Free Business Security, Trend Micro Security, TrustGo Antivirus , TrustGo Mobile Security, Trustix Antivirus, Twister Anti-TrojanVirus, Ukranian National Antivirus UNA, VBA32 Antivirus, VBA32 VBA32 Antivirus, VirIT eXplorer Anti-Virus, Virus.Win32.Ipamor.c, Virus.Win32.Renamer.a, Virus.Win32.Sality.gen, Virus.Win32.Shodi.e, VirusBlokAda Vba32 Antivirus, VirusBlokAda VBA32 Personal Antivirus, VirusBuster, VirusBuster Virusbuster Internet Securit Suite, VirusTotal, VirusTotal YARA, Watchdog Anti-Malware, Watchdog Anti-Virus, Watchdog Antivirus, Watchdog Online Security Pro, Websense Email Security, Websense TRITON, Websense Triton, Websense TRITON AP-DATA, Websense TRITON AP-EMAIL, Websense TRITON AP-WEB, Websense Triton Content Manager, Websense Triton Web Filter, Websense Web Security, Web Security Appliance, Zemana AntiMalware, Zillya! Antivirus, Zoner Zoner AntiVirus Free

PublishedBaseTempVulnerabilityProductExpRemCTICVE
12/01/20225.55.3Symantec Endpoint Protection Privilege EscalationEndpoint ProtectionNot DefinedOfficial Fix0.24CVE-2022-37017
12/01/20225.55.5Symantec Endpoint Protection Privilege EscalationEndpoint ProtectionNot DefinedNot Defined0.27CVE-2022-37016
11/04/20225.55.5Watchdog Antivirus wsdkd.sys access controlAntivirusNot DefinedNot Defined0.03CVE-2022-38582
11/02/20224.34.1Cisco Email Security Appliance HTTP request unknown vulnerabilityEmail Security Appliance/Secure Email and Web Manager/Secure Web ApplianceNot DefinedOfficial Fix0.06CVE-2022-20942
11/02/20227.57.2Cisco Email Security Appliance TLS resource consumptionEmail Security ApplianceNot DefinedOfficial Fix0.03CVE-2022-20960
10/11/20226.86.3Microsoft Malware Protection Engine Defender privileges managementMalware Protection EngineUnprovenOfficial Fix0.06CVE-2022-37971
09/17/20227.06.9Watchdog Anti-Virus Binary access controlAnti-VirusNot DefinedNot Defined0.00CVE-2022-38611
09/07/20227.07.0IObit Malware Fighter Executable access controlMalware FighterNot DefinedNot Defined0.03CVE-2022-37771
08/10/20228.38.3ClamAV Antivirus Regex Module out-of-boundsAntivirusNot DefinedNot Defined0.03CVE-2022-20792
07/30/20226.56.4SonicWALL Hosted Email Security Capture ATP Security Service security checkHosted Email SecurityNot DefinedOfficial Fix0.03CVE-2022-2324
06/27/20223.63.5Malware Scanner Plugin Setting cross site scriptingMalware Scanner PluginNot DefinedOfficial Fix0.03CVE-2022-1995
06/22/20228.88.8Comodo Antivirus Quarantine access controlAntivirusNot DefinedNot Defined0.03CVE-2022-34008
06/16/20229.89.6Cisco Secure Email and Web Manager Web-based Management Interface improper authenticationSecure Email and Web Manager/Email Security ApplianceNot DefinedOfficial Fix0.03CVE-2022-20798
06/16/20226.05.9Cisco Secure Email and Web Manager Web Management Interface information disclosureSecure Email and Web Manager/Email Security ApplianceNot DefinedOfficial Fix0.07CVE-2022-20664
04/12/20225.85.3Microsoft Malware Protection Engine Defender denial of serviceMalware Protection EngineUnprovenOfficial Fix0.04CVE-2022-24548
04/09/20226.36.3Trend Micro Antivirus symlinkAntivirusNot DefinedNot Defined0.04CVE-2022-27883
04/07/20224.44.4Cisco Web Security Appliance Web-based Management Interface cross site scriptingWeb Security ApplianceNot DefinedOfficial Fix0.00CVE-2022-20781
04/07/20226.66.4Cisco Web Security Appliance Web-Based Reputation Score Engine access controlWeb Security ApplianceNot DefinedOfficial Fix0.03CVE-2022-20784
04/07/20225.35.2Cisco Email Security Appliance Service Port 199 denial of serviceEmail Security Appliance/Web Security Appliance/Secure Email and Web ManagerNot DefinedOfficial Fix0.03CVE-2022-20675
04/02/20226.56.5Kaspersky Anti-Virus/Endpoint Security Binary Module denial of serviceAnti-Virus/Endpoint SecurityNot DefinedNot Defined0.04CVE-2021-27223
04/02/20226.36.0Kaspersky Anti-Virus/Endpoint Security Data Parser Remote Code ExecutionAnti-Virus/Endpoint SecurityNot DefinedOfficial Fix0.03CVE-2022-27534
04/02/20228.38.1MicroWorld eScan Anti-Virus runasroot Command input validationeScan Anti-VirusNot DefinedOfficial Fix0.04CVE-2021-26624
04/01/20226.36.1EG Free Antivirus WinSEGAV AutoConfig Service access controlFree AntivirusNot DefinedNot Defined0.04CVE-2021-46439
03/16/20224.34.1Mimecast Email Security Domain access controlEmail SecurityNot DefinedOfficial Fix0.04CVE-2020-36519
03/07/20225.25.1BitDefender Total Security messaging_ipc.dll null pointer dereferenceTotal Security/Internet Security/Antivirus Plus/Security Tools/VPN StandaloneNot DefinedOfficial Fix0.03CVE-2021-4198
03/07/20228.38.1BitDefender Total Security Crash BDReinit.exe permission assignmentTotal Security/Internet Security/Antivirus Plus/Security Tools for WindowsNot DefinedOfficial Fix0.04CVE-2021-4199
03/01/20224.04.0F-Secure Anti-Virus Engine Fmlib denial of serviceAnti-Virus EngineNot DefinedNot Defined0.04CVE-2021-44747
02/26/20225.95.8ESET Endpoint Antivirus/Server Security eset_rtp Kernel Module use after freeEndpoint Antivirus/Server SecurityNot DefinedOfficial Fix0.07CVE-2022-0615
02/24/20226.36.0Trend Micro Antivirus Update access controlAntivirusNot DefinedOfficial Fix0.00CVE-2022-24671
02/24/20224.34.3Trend Micro ServerProtection Information Server denial of serviceServerProtectionNot DefinedNot Defined0.23CVE-2022-25331
02/24/20227.37.3Trend Micro ServerProtect Information Server improper authenticationServerProtectNot DefinedNot Defined0.03CVE-2022-25329
02/24/20226.36.3Trend Micro ServerProtect Information Server integer overflowServerProtectNot DefinedNot Defined0.04CVE-2022-25330
02/18/20228.58.3BitDefender Antivirus Plus/Internet Security/Total Security DLL File ProductAgentUI.exe Privilege EscalationAntivirus Plus/Internet Security/Total SecurityNot DefinedOfficial Fix0.03CVE-2020-8107
02/17/20227.57.3Cisco Email Security Appliance DANE Email Verification resource managementEmail Security ApplianceNot DefinedOfficial Fix0.03CVE-2022-20653
02/09/20224.54.4F-Secure Antivirus ACE Decompression denial of serviceAntivirusNot DefinedOfficial Fix0.02CVE-2021-40837
02/09/20228.38.1ESET Endpoint Antivirus Pipe access controlEndpoint AntivirusNot DefinedOfficial Fix0.06CVE-2021-37852
02/04/20223.53.5VirusTotal YARA libyara.c yr_set_configuration buffer overflowYARANot DefinedNot Defined0.09CVE-2021-45429
01/16/20225.55.3files_antivirus protection mechanismfiles_antivirusNot DefinedOfficial Fix0.02CVE-2021-33828
01/16/20225.55.3files_antivirus Administrative Setting os command injectionfiles_antivirusNot DefinedOfficial Fix0.03CVE-2021-33827
01/14/20227.97.9Panda Free Antivirus Named Pipe unnecessary privilegesFree AntivirusNot DefinedNot Defined0.03CVE-2021-34998
01/14/20227.57.5Clam Antivirus OOXML Parser denial of serviceAntivirusNot DefinedNot Defined0.03CVE-2022-20698
12/27/20216.36.0Avast Antivirus Trusted Process access controlAntivirusNot DefinedOfficial Fix0.00CVE-2021-45339
12/27/20216.36.0Avast Antivirus access controlAntivirusNot DefinedOfficial Fix0.08CVE-2021-45338
12/27/20214.74.5Avast Antivirus Self-Defense Driver wsc_proxy.exe access controlAntivirusNot DefinedOfficial Fix0.04CVE-2021-45337
12/27/20215.35.1Avast Antivirus Sandbox access controlAntivirusNot DefinedOfficial Fix0.07CVE-2021-45336
12/27/20216.36.0Avast Antivirus Sandbox permissionAntivirusNot DefinedOfficial Fix0.04CVE-2021-45335
12/22/20214.04.0F-Secure Antivirus Engine PST File denial of serviceAntivirus EngineNot DefinedOfficial Fix0.03CVE-2021-40836
11/30/20218.38.3Trend Micro Antivirus 2021 access controlAntivirus 2021Not DefinedNot Defined0.04CVE-2021-43771
11/26/20215.15.1F-Secure Antivirus Engine UPX File Unpacker denial of serviceAntivirus EngineNot DefinedNot Defined0.02CVE-2021-40833
11/09/20218.37.3Microsoft Malware Protection Engine Defender Remote Code ExecutionMalware Protection EngineUnprovenOfficial Fix0.17CVE-2021-42298

1476 more entries are not shown

Do you want to use VulDB in your project?

Use the official API to access entries easily!