Описание
The Quick Heal AV parsing engine (November 2019) allows virus-detection bypass via a crafted GPFLAG in a ZIP archive. This affects Total Security, Home Security, Total Security Multi-Device, Internet Security, Total Security for Mac, AntiVirus Pro, AntiVirus for Server, and Total Security for Android.
Ссылки
- Third Party AdvisoryVDB Entry
- Mailing ListThird Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party AdvisoryVDB Entry
- Mailing ListThird Party Advisory
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:quickheal:antivirus_for_server:2019-11:*:*:*:*:*:*:*
cpe:2.3:a:quickheal:antivirus_pro:2019-11:*:*:*:*:*:*:*
cpe:2.3:a:quickheal:home_security:2019-11:*:*:*:*:*:*:*
cpe:2.3:a:quickheal:internet_security:2019-11:*:*:*:*:*:*:*
cpe:2.3:a:quickheal:total_security:2019-11:*:*:*:*:-:*:*
cpe:2.3:a:quickheal:total_security:2019-11:*:*:*:*:android:*:*
cpe:2.3:a:quickheal:total_security:2019-11:*:*:*:*:mac_os:*:*
cpe:2.3:a:quickheal:total_security_multi-device:2019-11:*:*:*:*:*:*:*
EPSS
Процентиль: 44%
0.00213
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-436
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
The Quick Heal AV parsing engine (November 2019) allows virus-detection bypass via a crafted GPFLAG in a ZIP archive. This affects Total Security, Home Security, Total Security Multi-Device, Internet Security, Total Security for Mac, AntiVirus Pro, AntiVirus for Server, and Total Security for Android.
EPSS
Процентиль: 44%
0.00213
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-436