Filtered by vendor Escanav
Subscriptions
Total
28 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2023-2875 | 1 Escanav | 1 Escan Anti-virus | 2024-11-21 | 5.5 Medium |
| A vulnerability, which was classified as problematic, was found in eScan Antivirus 22.0.1400.2443. Affected is the function 0x22E008u in the library PROCOBSRVESX.SYS of the component IoControlCode Handler. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. VDB-229854 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. | ||||
| CVE-2021-26624 | 1 Escanav | 1 Escan Anti-virus | 2024-11-21 | 7.8 High |
| An local privilege escalation vulnerability due to a "runasroot" command in eScan Anti-Virus. This vulnerability is due to invalid arguments and insufficient execution conditions related to "runasroot" command. This vulnerability can induce remote attackers to exploit root privileges by manipulating parameter values. | ||||
| CVE-2018-6203 | 1 Escanav | 1 Anti-virus | 2024-11-21 | N/A |
| In eScan Antivirus 14.0.1400.2029, the driver file (econceal.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x8300210C. | ||||
| CVE-2018-6202 | 1 Escanav | 1 Anti-virus | 2024-11-21 | N/A |
| In eScan Antivirus 14.0.1400.2029, the driver file (econceal.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x830020F8. | ||||
| CVE-2018-6201 | 1 Escanav | 1 Anti-virus | 2024-11-21 | N/A |
| In eScan Antivirus 14.0.1400.2029, the driver file (econceal.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x830020E0 or 0x830020E4. | ||||
| CVE-2018-18388 | 1 Escanav | 1 Escan Anti-virus | 2024-11-21 | N/A |
| eScan Agent Application (MWAGENT.EXE) 4.0.2.98 in MicroWorld Technologies eScan 14.0 allows remote or local attackers to execute arbitrary commands by sending a carefully crafted payload to TCP port 2222. | ||||
| CVE-2018-10098 | 1 Escanav | 1 Escan Internet Security Suite | 2024-11-21 | N/A |
| In MicroWorld eScan Internet Security Suite (ISS) for Business 14.0.1400.2029, the driver econceal.sys allows a non-privileged user to send a 0x830020E0 IOCTL request to \\.\econceal to cause a denial of service (BSOD). | ||||
| CVE-2024-42919 | 1 Escanav | 1 Escan Management Console | 2024-09-13 | 9.8 Critical |
| eScan Management Console 14.0.1400.2281 is vulnerable to Incorrect Access Control via acteScanAVReport. | ||||