CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2021-28130
https://notcve.org/view.php?id=CVE-2021-28130
24 Sep 2021 — Dr.Web Firewall 12.5.2.4160 on Windows incorrectly restricts applications signed by Dr.Web. A DLL for a custom payload within a legitimate binary (e.g., frwl_svc.exe) bypasses firewall filters. Dr.Web Firewall versión 12.5.2.4160, en Windows restringe incorrectamente las aplicaciones firmadas por Dr.Web. Una DLL para una carga útil personalizada dentro de un binario legítimo (por ejemplo, frwl_svc.exe) omite los filtros del firewall. • https://habr.com/ru/company/pm/blog/579328 • CWE-427: Uncontrolled Search Path Element •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 3CVE-2020-23967
https://notcve.org/view.php?id=CVE-2020-23967
08 Mar 2021 — Dr.Web Security Space versions 11 and 12 allow elevation of privilege for local users without administrative privileges to NT AUTHORITY\SYSTEM due to insufficient control during autoupdate. Dr.Web Security Space versiones 11 y 12, permiten una elevación de privilegios para usuarios locales sin privilegios administrativos a NT AUTHORITY\SYSTEM debido a un control insuficiente durante la actualización automática • https://amonitoring.ru/article/drweb • CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 7.0EPSS: 0%CPEs: 2EXPL: 0CVE-2010-5159
https://notcve.org/view.php?id=CVE-2010-5159
25 Aug 2012 — Race condition in Dr.Web Security Space Pro 6.0.0.03100 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack. NOTE: this issue is disputed by some third parties because it is a flaw in a protection mechanism for situations where a crafted program has a... • http://archives.neohapsis.com/archives/bugtraq/2010-05/0026.html • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •