CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0CVE-2020-9320 – AVIRA Generic Malformed Container Bypass
https://notcve.org/view.php?id=CVE-2020-9320
20 Feb 2020 — Avira AV Engine before 8.3.54.138 allows virus-detection bypass via a crafted ISO archive. This affects versions before 8.3.54.138 of Antivirus for Endpoint, Antivirus for Small Business, Exchange Security (Gateway), Internet Security Suite for Windows, Prime, Free Security Suite for Windows, and Cross Platform Anti-malware SDK. NOTE: Vendor asserts that vulnerability does not exist in product ** EN DISPUTA ** Avira AV Engine versiones anteriores a 8.3.54.138, permite omitir la detección de virus por medio ... • http://packetstormsecurity.com/files/156472/AVIRA-Generic-Malformed-Container-Bypass.html • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 7.1EPSS: 0%CPEs: 10EXPL: 0CVE-2013-4602 – Avira AntiVir Engine Denial of Service / Filter Evasion
https://notcve.org/view.php?id=CVE-2013-4602
14 Jun 2013 — A Denial of Service (infinite loop) vulnerability exists in Avira AntiVir Engine before 8.2.12.58 via an unspecified function in the PDF Scanner Engine. Se presenta una vulnerabilidad de denegación de servicio (bucle infinito) en Avira AntiVir Engine versiones anteriores a 8.2.12.58, por medio de una función no especificada en el PDF Scanner Engine. Avira AntiVir Engine versions prior to 8.2.12.58 suffers from filter evasion and denial of service vulnerabilities. • http://www.securityfocus.com/bid/60552 • CWE-400: Uncontrolled Resource Consumption •