GCVE - cpe:2.3:a:kaspersky:small_office_security:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:kaspersky:small_office_security:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Kaspersky (`0e3919d1-d2ab-5693-bce6-610f4c2052a6`)
Product	Small Office Security (`73cfffe3-45e3-544f-b429-d747b05994d5`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-27534`	vulnerable	2026-06-03 14:46:46.162835	Details available Kaspersky Anti-Virus products for home and Kaspersky Endpoint Security with antivirus databases released before 12 March 2022 had a bug in a data parsing module that potentially allowed an attacker to execute arbitrary code. The fix was delivered automatically. Credits: Georgy Zaytsev (Positive Technologies). Published: 2022-04-01T22:17:49.000Z Updated: 2024-08-03T05:32:59.959Z Open on db.gcve.eu Reference links https://support.kaspersky.com/general/vulnerability.aspx?el=12430#310322_2	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-27223`	vulnerable	2026-06-03 14:44:09.734059	Details available A denial-of-service issue existed in one of modules that was incorporated in Kaspersky Anti-Virus products for home and Kaspersky Endpoint Security. A local user could cause Windows crash by running a specially crafted binary module. The fix was delivered automatically. Credits: (Straghkov Denis, Kurmangaleev Shamil, Fedotov Andrey, Kuts Daniil, Mishechkin Maxim, Akolzin Vitaliy) @ ISPRAS Published: 2022-04-01T22:17:48.000Z Updated: 2024-08-03T20:40:47.509Z Open on db.gcve.eu Reference links https://support.kaspersky.com/general/vulnerability.aspx?el=12430#310322_1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-8286`	vulnerable	2026-06-03 14:40:47.430292	Details available Information Disclosure in Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security versions up to 2019 could potentially disclose unique Product ID by forcing victim to visit a specially crafted webpage (for example, via clicking phishing link). Vulnerability has CVSS v3.0 base score 2.6 Published: 2019-07-18T18:34:15.000Z Updated: 2024-08-04T21:17:30.549Z Open on db.gcve.eu Reference links https://support.kaspersky.com/general/vulnerability.aspx?el=12430#110719 http://www.securityfocus.com/bid/109300	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-15688`	vulnerable	2026-06-03 14:39:48.097425	Details available Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, Kaspersky Security Cloud up to 2020, the web protection component did not adequately inform the user about the threat of redirecting to an untrusted site. Bypass. Published: 2019-11-26T15:32:17.000Z Updated: 2024-08-05T00:56:22.438Z Open on db.gcve.eu Reference links https://support.kaspersky.com/general/vulnerability.aspx?el=12430#251119_1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-15687`	vulnerable	2026-06-03 14:39:48.097009	Details available Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, Kaspersky Security Cloud up to 2020, the web protection component was vulnerable to remote disclosure of various information about the user's system (like Windows version and version of the product, host unique ID). Information Disclosure. Published: 2019-11-26T15:45:17.000Z Updated: 2024-08-05T00:56:22.458Z Open on db.gcve.eu Reference links https://support.kaspersky.com/general/vulnerability.aspx?el=12430#251119_1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-15686`	vulnerable	2026-06-03 14:39:48.096602	Details available Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, Kaspersky Security Cloud up to 2020, the web protection component allowed an attacker remotely disable various anti-virus protection features. DoS, Bypass. Published: 2019-11-26T15:44:49.000Z Updated: 2024-08-05T00:56:22.047Z Open on db.gcve.eu Reference links https://support.kaspersky.com/general/vulnerability.aspx?el=12430#251119_1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-15685`	vulnerable	2026-06-03 14:39:48.095573	Details available Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, Kaspersky Security Cloud up to 2020, the web protection component allowed an attacker remotely disable such product's security features as private browsing and anti-banner. Bypass. Published: 2019-11-26T15:44:19.000Z Updated: 2024-08-05T00:56:22.456Z Open on db.gcve.eu Reference links https://support.kaspersky.com/general/vulnerability.aspx?el=12430#251119_1	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.