Vulnerabilities > Comodo
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-17 | CVE-2019-3972 | Out-of-bounds Read vulnerability in Comodo Antivirus 11.0.0.6582/12.0.0.6810 Comodo Antivirus versions 12.0.0.6810 and below are vulnerable to Denial of Service affecting CmdAgent.exe via an unprotected section object "<GUID>_CisSharedMemBuff". | 2.1 |
| 2019-07-17 | CVE-2019-3971 | Unspecified vulnerability in Comodo Antivirus 11.0.0.6582/12.0.0.6810 Comodo Antivirus versions up to 12.0.0.6810 are vulnerable to a local Denial of Service affecting CmdVirth.exe via its LPC port "cmdvrtLPCServerPort". | 2.1 |
| 2019-07-17 | CVE-2019-3970 | Improper Input Validation vulnerability in Comodo Antivirus Comodo Antivirus versions up to 12.0.0.6810 are vulnerable to Arbitrary File Write due to Cavwp.exe handling of Comodo's Antivirus database. | 2.1 |
| 2019-07-17 | CVE-2019-3969 | Unspecified vulnerability in Comodo Antivirus 11.0.0.6582/12.0.0.6810 Comodo Antivirus versions up to 12.0.0.6810 are vulnerable to Local Privilege Escalation due to CmdAgent's handling of COM clients. | 7.2 |
| 2019-01-30 | CVE-2018-17431 | Improper Authentication vulnerability in Comodo Unified Threat Management Firewall 1.5.0 Web Console in Comodo UTM Firewall before 2.7.0 allows remote attackers to execute arbitrary code without authentication via a crafted URL. | 9.8 |
| 2015-06-09 | CVE-2014-7872 | Permissions, Privileges, and Access Controls vulnerability in Comodo Geekbuddy 4.18.120 Comodo GeekBuddy before 4.18.121 does not restrict access to the VNC server, which allows local users to gain privileges by connecting to the server. | 7.2 |
| 2015-02-03 | CVE-2014-9633 | Permissions, Privileges, and Access Controls vulnerability in Comodo Backup 4.4.1 The bdisk.sys driver in COMODO Backup before 4.4.1.23 allows remote attackers to gain privileges via a crafted device handle, which triggers a NULL pointer dereference. | 7.5 |
| 2012-08-26 | CVE-2011-5123 | Cryptographic Issues vulnerability in Comodo Internet Security The Antivirus component in Comodo Internet Security before 5.3.175888.1227 does not check whether X.509 certificates in signed executable files have been revoked, which has unknown impact and remote attack vectors. | 10.0 |
| 2012-08-26 | CVE-2011-5122 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Comodo Internet Security The Antivirus component in Comodo Internet Security before 5.3.175888.1227 allows remote attackers to cause a denial of service (application crash) via a crafted compressed file. | 4.3 |
| 2012-08-26 | CVE-2011-5121 | Cryptographic Issues vulnerability in Comodo Internet Security The Antivirus component in Comodo Internet Security before 5.3.175888.1227 does not properly check whether unspecified X.509 certificates are revoked, which has unknown impact and remote attack vectors. | 10.0 |