CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2018-9332
https://notcve.org/view.php?id=CVE-2018-9332
K7Computing Pvt Ltd K7AntiVirus Premium 15.01.00.53 is affected by: Incorrect Access Control. The impact is: gain privileges (local). K7Computing Pvt Ltd K7AntiVirus Premium versión 15.01.00.53, está afectado por: un Control de Acceso Incorrecto. El impacto es: alcanzar privilegios (local) • http://k7antivirus.com http://k7computing.com https://support.k7computing.com/index.php?/selfhelp/view-article/Advisory-issued-on-6th-January-2021 • CWE-269: Improper Privilege Management •
CVSS: 6.7EPSS: 0%CPEs: 1EXPL: 1CVE-2020-27587
https://notcve.org/view.php?id=CVE-2020-27587
Quick Heal Total Security before 19.0 allows attackers with local admin rights to obtain access to files in the File Vault via a brute-force attack on the password. Quick Heal Total Security versiones anteriores a 19.0, permite a atacantes con derechos de administrador local obtener acceso a los archivos en el File Vault mediante un ataque de fuerza bruta sobre la contraseña • https://cyberworldmirror.com/quick-heal-addressed-multiple-vulnerabilities-in-version-19-update-now • CWE-521: Weak Password Requirements •
CVSS: 5.9EPSS: 0%CPEs: 1EXPL: 1CVE-2020-27586
https://notcve.org/view.php?id=CVE-2020-27586
Quick Heal Total Security before version 19.0 transmits quarantine and sysinfo files via clear text. Quick Heal Total Security anterior a versión 19.0, transmite archivos de cuarentena y de sysinfo por medio de texto sin cifrar • https://cyberworldmirror.com/quick-heal-addressed-multiple-vulnerabilities-in-version-19-update-now • CWE-319: Cleartext Transmission of Sensitive Information •
CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 1CVE-2020-27585
https://notcve.org/view.php?id=CVE-2020-27585
Quick Heal Total Security before 19.0 allows attackers with local admin rights to modify sensitive anti virus settings via a brute-attack on the settings password. Quick Heal Total Security versiones anteriores a 19.0, permite a atacantes con derechos de administrador local modificar la configuración confidencial del antivirus mediante un ataque de fuerza bruta sobre la contraseña de configuración • https://cyberworldmirror.com/quick-heal-addressed-multiple-vulnerabilities-in-version-19-update-now • CWE-521: Weak Password Requirements •
CVSS: 6.5EPSS: 0%CPEs: 6EXPL: 0CVE-2019-15687
https://notcve.org/view.php?id=CVE-2019-15687
Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, Kaspersky Security Cloud up to 2020, the web protection component was vulnerable to remote disclosure of various information about the user's system (like Windows version and version of the product, host unique ID). Information Disclosure. Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, Kaspersky Security Cloud hasta el 2020, el componente web protection era vulnerable a una divulgación remota de diversa información sobre el sistema del usuario (como versión de Window y versión del producto, ID único del host). Divulgación de Información. • https://support.kaspersky.com/general/vulnerability.aspx?el=12430#251119_1 •