Vulnerabilities > Escanav > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-16 | CVE-2023-4383 | Incorrect Permission Assignment for Critical Resource vulnerability in Escanav Escan Anti-Virus 7.0.32 A vulnerability, which was classified as critical, was found in MicroWorld eScan Anti-Virus 7.0.32 on Linux. | 7.8 |
| 2023-05-17 | CVE-2023-31702 | SQL Injection vulnerability in Escanav Escan Management Console 14.0.1400.2281 SQL injection in the View User Profile in MicroWorld eScan Management Console 14.0.1400.2281 allows remote attacker to dump entire database and gain windows XP command shell to perform code execution on database server via GetUserCurrentPwd?UsrId=1. | 7.2 |
| 2022-04-01 | CVE-2021-26624 | Improper Input Validation vulnerability in Escanav Escan Anti-Virus An local privilege escalation vulnerability due to a "runasroot" command in eScan Anti-Virus. | 8.8 |
| 2018-01-25 | CVE-2018-6203 | Improper Input Validation vulnerability in Escanav Anti-Virus 14.0.1400.2029 In eScan Antivirus 14.0.1400.2029, the driver file (econceal.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x8300210C. | 7.8 |
| 2018-01-25 | CVE-2018-6202 | Improper Input Validation vulnerability in Escanav Anti-Virus 14.0.1400.2029 In eScan Antivirus 14.0.1400.2029, the driver file (econceal.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x830020F8. | 7.8 |
| 2018-01-25 | CVE-2018-6201 | Improper Input Validation vulnerability in Escanav Anti-Virus 14.0.1400.2029 In eScan Antivirus 14.0.1400.2029, the driver file (econceal.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x830020E0 or 0x830020E4. | 7.8 |