CVE-2019-15687

Published: Nov 26, 2019Modified: Nov 21, 2024

6.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Exploitability: 2.8 / Impact: 3.6

Source: NVD

Description

Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, Kaspersky Security Cloud up to 2020, the web protection component was vulnerable to remote disclosure of various information about the user's system (like Windows version and version of the product, host unique ID). Information Disclosure.

Affected (6)

Products: Kaspersky: Anti Virus, Internet Security, Security Cloud, Small Office Security, Total Security

5 products

Small Office Security

Total Security

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Kaspersky Anti Virus	Up to 2020
Kaspersky Anti Virus	Up to 2020
Kaspersky Internet Security	Up to 2020
Kaspersky Security Cloud	Up to 2020
Kaspersky Small Office Security	Up to 7
Kaspersky Total Security	Up to 2020

References (2)

https://support.kaspersky.com/general/vulnerability.aspx?el=12430#251119_1

Source: vulnerability@kaspersky.com

Vendor Advisory

https://support.kaspersky.com/general/vulnerability.aspx?el=12430#251119_1

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.