Required CVE Record Information
Description
Kaspersky has fixed a security issue in Kaspersky Anti-Virus SDK for Windows, Kaspersky Security for Virtualization Light Agent, Kaspersky Endpoint Security for Windows, Kaspersky Small Office Security, Kaspersky for Windows (Standard, Plus, Premium), Kaspersky Free, Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Security Cloud, Kaspersky Safe Kids, Kaspersky Anti-Ransomware Tool that could allow an authenticated attacker to write data to a limited area outside the allocated kernel memory buffer. The fix was installed automatically for all Kaspersky Endpoint products.
CVSS 1 Total
| Score | Severity | Version | Vector String |
|---|---|---|---|
| 5.3 | MEDIUM | 3.1 | CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H |
Product Status
Learn moreVersions 2 Total
Default Status: unaffected
affected
Versions 2 Total
Default Status: unaffected
affected
unknown
Versions 0 Total
Default Status: All versions are unknown
Versions 0 Total
Default Status: All versions are unknown
Versions 0 Total
Default Status: All versions are unknown
Versions 0 Total
Default Status: All versions are unknown
Versions 0 Total
Default Status: All versions are unknown
Versions 0 Total
Default Status: All versions are unknown
Versions 0 Total
Default Status: All versions are unknown
Versions 0 Total
Default Status: All versions are unknown
Versions 0 Total
Default Status: All versions are unknown
Credits
- Florian Schweins finder
References 1 Total
- support.kaspersky.com: Advisory issued on February 6, 2025 vendor-advisory