Browse all 37 CVE security advisories affecting Kaspersky Lab. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Kaspersky Lab operates as a global cybersecurity provider, primarily developing antivirus software and endpoint protection solutions for consumers and enterprises. With 37 recorded Common Vulnerabilities and Exposures (CVEs), the company’s historical vulnerability landscape has predominantly featured remote code execution (RCE) and cross-site scripting (XSS) flaws within its desktop applications and web interfaces. These defects often stemmed from improper input validation or memory management errors, allowing attackers to potentially escalate privileges or execute arbitrary commands. While the firm maintains robust defensive capabilities, its products have occasionally been scrutinized for supply chain risks and geopolitical associations, particularly regarding data handling practices in Russia. Despite these controversies, Kaspersky continues to serve millions of users worldwide, balancing its extensive threat intelligence resources with ongoing efforts to harden its software architecture against the identified security weaknesses.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2019-8279 | Vanilla Forums 跨站脚本漏洞 — Vanilla Forums | 5.4 | - | 2019-03-02 |
This page lists every published CVE security advisory associated with Kaspersky Lab. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.