Browse all 5 CVE security advisories affecting Kaspersky Labs. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Kaspersky Labs develops cybersecurity solutions focused on threat detection, prevention, and response for enterprises and consumers. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often through web interfaces or update mechanisms. Notable security characteristics include their threat intelligence network and research capabilities. In 2017, allegations emerged of ties to Russian intelligence, leading to bans in several Western governments, though the company consistently denied these claims. Currently, Kaspersky holds five CVEs, reflecting ongoing security challenges in their software portfolio.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2018-6288 | Kaspersky Secure Mail Gateway 跨站请求伪造漏洞 — Kaspersky Secure Mail Gateway | 8.8 | - | 2018-02-06 |
| CVE-2018-6289 | Kaspersky Secure Mail Gateway 安全漏洞 — Kaspersky Secure Mail Gateway | 9.8 | - | 2018-02-06 |
| CVE-2018-6290 | Kaspersky Secure Mail Gateway 权限许可和访问控制问题漏洞 — Kaspersky Secure Mail Gateway | 7.8 | - | 2018-02-06 |
| CVE-2018-6291 | Kaspersky Secure Mail Gateway 跨站脚本漏洞 — Kaspersky Secure Mail Gateway | 6.1 | - | 2018-02-06 |
| CVE-2017-12823 | Kaspersky Embedded Systems Security 缓冲区错误漏洞 — Kaspersky Embedded Systems Security | 7.8 | - | 2017-12-08 |
This page lists every published CVE security advisory associated with Kaspersky Labs. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.