CyberSec.Space Logo
Back to CVE Browser

CVE-2020-10180

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0920%
EPSS Percentile40.59th
PublishedMar 5, 2020
Last ModifiedNov 21, 2024

Vulnerability Description

The ESET AV parsing engine allows virus-detection bypass via a crafted BZ2 Checksum field in an archive. This affects versions before 1294 of Smart Security Premium, Internet Security, NOD32 Antivirus, Cyber Security Pro (macOS), Cyber Security (macOS), Mobile Security for Android, Smart TV Security, and NOD32 Antivirus 4 for Linux Desktop.

Affected Platforms (CPE)

📦
Eset

Cyber Security

< 1294
📦
Eset

Cyber Security

< 1294
📦
Eset

Mobile Security

< 1294
📦
Eset

Nod32 Antivirus

< 1294
📦
Eset

Nod32 Antivirus

= 4
📦
Eset

Smart Security

< 1294
📦
Eset

Smart Security

< 1294
📦
Eset

Smart Tv Security

< 1294

References & Advisories

🔗 https://blog.zoller.lu/p/tzo-11-2020-eset-generic-malformed.html
🔗 https://blog.zoller.lu/p/tzo-11-2020-eset-generic-malformed.html

Related Vulnerabilities

CVE-2023-66759.8

Unrestricted Upload of File with Dangerous Type vulnerability in National Keep Cyber Security Services CyberMath allows Upload a W...

CVE-2024-71089.8

Incorrect Authorization vulnerability in National Keep Cyber Security Services CyberMath allows Accessing Functionality Not Proper...

CVE-2026-26249.8

Missing Authentication for Critical Function vulnerability in ePati Cyber ​​Security Technologies Inc. Antikor Next Generation Fir...

CVE-2023-66768.8

Cross-Site Request Forgery (CSRF) vulnerability in National Keep Cyber Security Services CyberMath allows Cross Site Request Forge...