Vulnerabilities in Kaspersky Lab

37 results
CVE-2019-8271UltraVNC revision 1211 has a heap buffer overflow vulnerability in VNC server code inside file transfer handler, which can potentially resulEPSS 8.3%CVE-2019-8274UltraVNC revision 1211 has a heap buffer overflow vulnerability in VNC server code inside file transfer offer handler, which can potentiallyEPSS 8.3%CVE-2019-8273UltraVNC revision 1211 has a heap buffer overflow vulnerability in VNC server code inside file transfer request handler, which can potentialEPSS 8.3%CVE-2018-15353A Buffer Overflow exploited through web interface by remote attacker can cause remote code execution in Kraftway 24F2XG Router firmware 3.5.EPSS 7.7%CVE-2019-8276UltraVNC revision 1211 has a stack buffer overflow vulnerability in VNC server code inside file transfer request handler, which can result iEPSS 5.7%CVE-2019-8269UltraVNC revision 1206 has stack-based Buffer overflow vulnerability in VNC client code inside FileTransfer module, which leads to a denial EPSS 5.7%CVE-2018-15350Router Default Credentials in Kraftway 24F2XG Router firmware version 3.5.30.1118 allow remote attackers to get privileged access to the rouEPSS 4.7%CVE-2019-8280UltraVNC revision 1203 has out-of-bounds access vulnerability in VNC client inside RAW decoder, which can potentially result code execution.EPSS 4.2%CVE-2019-8275UltraVNC revision 1211 has multiple improper null termination vulnerabilities in VNC server code, which result in out-of-bound data being acEPSS 4.0%CVE-2019-8272UltraVNC revision 1211 has multiple off-by-one vulnerabilities in VNC server code, which can potentially result in code execution. This attaEPSS 3.9%CVE-2019-8268UltraVNC revision 1206 has multiple off-by-one vulnerabilities in VNC client code connected with improper usage of ClientConnection::ReadStrEPSS 3.9%CVE-2019-8265UltraVNC revision 1207 has multiple out-of-bounds access vulnerabilities connected with improper usage of SETPIXELS macro in VNC client codeEPSS 3.1%CVE-2019-8264UltraVNC revision 1203 has out-of-bounds access vulnerability in VNC client inside Ultra2 decoder, which can potentially result in code execEPSS 3.1%CVE-2018-20026Improper Communication Address Filtering exists in CODESYS V3 products versions prior V3.5.14.0.EPSS 3.0%CVE-2019-8277UltraVNC revision 1211 contains multiple memory leaks (CWE-665) in VNC server code, which allows an attacker to read stack memory and can beEPSS 3.0%CVE-2019-8266UltraVNC revision 1207 has multiple out-of-bounds access vulnerabilities connected with improper usage of ClientConnection::Copybuffer functEPSS 2.8%CVE-2018-6306Unauthorized code execution from specific DLL and is known as DLL Hijacking attack in Kaspersky Password Manager versions before 8.0.6.538.EPSS 2.6%CVE-2018-20025Use of Insufficiently Random Values exists in CODESYS V3 products versions prior V3.5.14.0.EPSS 2.6%CVE-2018-15356An authenticated attacker can execute arbitrary code using command ejection in Eltex ESP-200 firmware version 1.2.0.EPSS 2.5%CVE-2019-8263UltraVNC revision 1205 has stack-based buffer overflow vulnerability in VNC client code inside ShowConnInfo routine, which leads to a denialEPSS 2.5%