Gdata-Software Total Security vulnerabilities
8 known vulnerabilities affecting gdata-software/total_security.
Total CVEs
8
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH8
Vulnerabilities
Page 1 of 1
CVE-2018-10018P3HIGHCVSS 8.8PoCv25.4.0.32018-07-13
CVE-2018-10018 [HIGH] CWE-119 CVE-2018-10018: The GDASPAMLib.AntiSpam ActiveX control ASK\GDASpam.dll in G DATA Total Security 25.4.0.3 has a buff
The GDASPAMLib.AntiSpam ActiveX control ASK\GDASpam.dll in G DATA Total Security 25.4.0.3 has a buffer overflow via a long IsBlackListed argument.
nvd
CVE-2024-1867P3HIGHCVSS 7.8fixed in 25.5.17.3552024-11-22
CVE-2024-1867 [HIGH] CWE-59 CVE-2024-1867: G DATA Total Security Link Following Local Privilege Escalation Vulnerability. This vulnerability al
G DATA Total Security Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of G DATA Total Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
The specific flaw exists
nvd
CVE-2024-1868P3HIGHCVSS 7.8fixed in 25.5.17.3552024-11-22
CVE-2024-1868 [HIGH] CWE-59 CVE-2024-1868: G DATA Total Security Link Following Local Privilege Escalation Vulnerability. This vulnerability al
G DATA Total Security Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of G DATA Total Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
The specific flaw exists
nvd
CVE-2024-30377P3HIGHCVSS 7.8fixed in 25.5.18.3332024-11-22
CVE-2024-30377 [HIGH] CWE-59 CVE-2024-30377: G DATA Total Security Scan Server Link Following Local Privilege Escalation Vulnerability. This vuln
G DATA Total Security Scan Server Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of G DATA Total Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
The specifi
nvd
CVE-2023-42126P3HIGHCVSS 7.8v25.5.14.952024-05-03
CVE-2023-42126 [HIGH] CWE-59 CVE-2023-42126: G DATA Total Security GDBackupSvc Service Link Following Local Privilege Escalation Vulnerability. T
G DATA Total Security GDBackupSvc Service Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of G Data Total Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
The
nvd
CVE-2023-27347P3HIGHCVSS 7.8fixed in 25.5.13.262024-05-03
CVE-2023-27347 [HIGH] CWE-59 CVE-2023-27347: G DATA Total Security Link Following Local Privilege Escalation Vulnerability. This vulnerability al
G DATA Total Security Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of G Data Total Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
The specific flaw exist
nvd
CVE-2019-9742P3HIGHCVSS 7.5fixed in 2019-02-222019-03-13
CVE-2019-9742 [HIGH] CWE-862 CVE-2019-9742: gdwfpcd.sys in G Data Total Security before 2019-02-22 allows an attacker to bypass ACLs because Int
gdwfpcd.sys in G Data Total Security before 2019-02-22 allows an attacker to bypass ACLs because Interpreted Device Characteristics lacks FILE_DEVICE_SECURE_OPEN and therefore files and directories "inside" the \\.\gdwfpcd device are not properly protected, leading to unintended impersonation or object creation.
nvd
CVE-2024-6871P3HIGHCVSS 7.8v25.5.15.212024-11-22
CVE-2024-6871 [HIGH] CWE-732 CVE-2024-6871: G DATA Total Security Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This
G DATA Total Security Incorrect Permission Assignment Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of G DATA Total Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
The spe
nvd