CyberSec.Space Logo
返回 CVE 浏览器

CVE-2020-10180

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0920%
EPSS Percentile40.59th
Published2020年3月5日
Last Modified2024年11月21日

Vulnerability Description

The ESET AV parsing engine allows virus-detection bypass via a crafted BZ2 Checksum field in an archive. This affects versions before 1294 of Smart Security Premium, Internet Security, NOD32 Antivirus, Cyber Security Pro (macOS), Cyber Security (macOS), Mobile Security for Android, Smart TV Security, and NOD32 Antivirus 4 for Linux Desktop.

Affected Platforms (CPE)

📦
Eset

Cyber Security

< 1294
📦
Eset

Cyber Security

< 1294
📦
Eset

Mobile Security

< 1294
📦
Eset

Nod32 Antivirus

< 1294
📦
Eset

Nod32 Antivirus

= 4
📦
Eset

Smart Security

< 1294
📦
Eset

Smart Security

< 1294
📦
Eset

Smart Tv Security

< 1294

References & Advisories

🔗 https://blog.zoller.lu/p/tzo-11-2020-eset-generic-malformed.html
🔗 https://blog.zoller.lu/p/tzo-11-2020-eset-generic-malformed.html

相关漏洞威胁

CVE-2023-66759.8

Unrestricted Upload of File with Dangerous Type vulnerability in National Keep Cyber Security Services CyberMath allows Upload a W...

CVE-2024-71089.8

Incorrect Authorization vulnerability in National Keep Cyber Security Services CyberMath allows Accessing Functionality Not Proper...

CVE-2026-26249.8

Missing Authentication for Critical Function vulnerability in ePati Cyber ​​Security Technologies Inc. Antikor Next Generation Fir...

CVE-2023-66768.8

Cross-Site Request Forgery (CSRF) vulnerability in National Keep Cyber Security Services CyberMath allows Cross Site Request Forge...