Vulnerabilities > Gdata Software > Total Security
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-03-13 | CVE-2019-9742 | Missing Authorization vulnerability in Gdata-Software Total Security gdwfpcd.sys in G Data Total Security before 2019-02-22 allows an attacker to bypass ACLs because Interpreted Device Characteristics lacks FILE_DEVICE_SECURE_OPEN and therefore files and directories "inside" the \\.\gdwfpcd device are not properly protected, leading to unintended impersonation or object creation. | 5.0 |
2018-07-13 | CVE-2018-10018 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Gdata-Software Total Security 25.4.0.3 The GDASPAMLib.AntiSpam ActiveX control ASK\GDASpam.dll in G DATA Total Security 25.4.0.3 has a buffer overflow via a long IsBlackListed argument. | 6.8 |