Vulnerabilities > Comodo > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-08-28 CVE-2019-14694 Use After Free vulnerability in Comodo Antivirus 12.0.0.6870
A use-after-free flaw in the sandbox container implemented in cmdguard.sys in Comodo Antivirus 12.0.0.6870 can be triggered due to a race condition when handling IRP_MJ_CLEANUP requests in the minifilter for directory change notifications.
local
high complexity
comodo CWE-416
4.7
2019-07-17 CVE-2019-3973 Out-of-bounds Write vulnerability in Comodo Antivirus
Comodo Antivirus versions 11.0.0.6582 and below are vulnerable to Denial of Service affecting CmdGuard.sys via its filter port "cmdServicePort".
local
low complexity
comodo CWE-787
5.5
2019-07-17 CVE-2019-3972 Out-of-bounds Read vulnerability in Comodo Antivirus
Comodo Antivirus versions 12.0.0.6810 and below are vulnerable to Denial of Service affecting CmdAgent.exe via an unprotected section object "<GUID>_CisSharedMemBuff".
local
low complexity
comodo CWE-125
5.5
2019-07-17 CVE-2019-3971 Unspecified vulnerability in Comodo Antivirus
Comodo Antivirus versions up to 12.0.0.6810 are vulnerable to a local Denial of Service affecting CmdVirth.exe via its LPC port "cmdvrtLPCServerPort".
local
low complexity
comodo
5.5
2019-07-17 CVE-2019-3970 Exposure of Resource to Wrong Sphere vulnerability in Comodo Antivirus
Comodo Antivirus versions up to 12.0.0.6810 are vulnerable to Arbitrary File Write due to Cavwp.exe handling of Comodo's Antivirus database.
local
low complexity
comodo CWE-668
5.5