CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-2204 – Zemana AntiLogger v2.74.204.664 - Denial of Service (DoS)
https://notcve.org/view.php?id=CVE-2024-2204
15 Mar 2024 — Zemana AntiLogger v2.74.204.664 is vulnerable to a Denial of Service (DoS) vulnerability by triggering the 0x80002004 and 0x80002010 IOCTL codes of the zam64.sys and zamguard64.sys drivers. Zemana AntiLogger v2.74.204.664 es afectado por una vulnerabilidad de denegación de servicio (DoS) al activar los códigos IOCTL 0x80002004 y 0x80002010 de los controladores zam64.sys y zamguard64.sys. • https://fluidattacks.com/advisories/hassan • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-2180 – Zemana AntiLogger v2.74.204.664 - Kernel Memory Leak
https://notcve.org/view.php?id=CVE-2024-2180
15 Mar 2024 — Zemana AntiLogger v2.74.204.664 is vulnerable to a Memory Information Leak vulnerability by triggering the 0x80002020 IOCTL code of the zam64.sys and zamguard64.sys drivers Zemana AntiLogger v2.74.204.664 es afectado por una vulnerabilidad de fuga de información de memoria al activar el código IOCTL 0x80002020 de los controladores zam64.sys y zamguard64.sys • https://fluidattacks.com/advisories/gomez • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-404: Improper Resource Shutdown or Release •
CVSS: 6.7EPSS: 1%CPEs: 2EXPL: 1CVE-2022-42045
https://notcve.org/view.php?id=CVE-2022-42045
13 Jul 2023 — Certain Zemana products are vulnerable to Arbitrary code injection. This affects Watchdog Anti-Malware 4.1.422 and Zemana AntiMalware 3.2.28. • https://github.com/ReCryptLLC/CVE-2022-42045 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.8EPSS: 10%CPEs: 264EXPL: 1CVE-2019-6440
https://notcve.org/view.php?id=CVE-2019-6440
16 Jan 2019 — Zemana AntiMalware before 3.0.658 Beta mishandles update logic. Zemana AntiMalware en versiones anteriores a la 3.0.658 Beta gestiona de manera incorrecta la lógica de actualización. • https://github.com/hexnone/CVE-2019-6440 • CWE-19: Data Processing Errors •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2018-15491
https://notcve.org/view.php?id=CVE-2018-15491
18 Aug 2018 — A vulnerability in the permission and encryption implementation of Zemana Anti-Logger 1.9.3.527 and prior (fixed in 1.9.3.602) allows an attacker to take control of the whitelisting feature (MyRules2.ini under %LOCALAPPDATA%\Zemana\ZALSDK) to permit execution of unauthorized applications (such as ones that record keystrokes). Una vulnerabilidad en la implementación de cifrado y permisos de Zemana Anti-Logger, en versiones 1.9.3.527 y anteriores (solucionado en la versión 1.9.3.602), permite que un atacante ... • https://exchange.xforce.ibmcloud.com/vulnerabilities/148554 • CWE-732: Incorrect Permission Assignment for Critical Resource CWE-798: Use of Hard-coded Credentials •