CVE-2020-9320

MEDIUM Year: 2020
CVSS v3 Score
5.5
Medium
CVSS v2 Score
4.3
Medium
Weakness Type
CWE-434
View all →

Vulnerability Description

Avira AV Engine before 8.3.54.138 allows virus-detection bypass via a crafted ISO archive. This affects versions before 8.3.54.138 of Antivirus for Endpoint, Antivirus for Small Business, Exchange Security (Gateway), Internet Security Suite for Windows, Prime, Free Security Suite for Windows, and Cross Platform Anti-malware SDK. NOTE: Vendor asserts that vulnerability does not exist in product

Related Vulnerabilities

CVE-2016-0354

MEDIUM
CVSS:5.5(Medium)

IBM Sametime Enterprise Meeting Server 8.5.2 and 9.0 could allow an authenticated user to upload a malicious file to a Sametime meeting room, that could be downloaded by unsuspecting users which could...

CWE-4342016

CVE-2018-15333

MEDIUM
CVSS:5.5(Medium)

On versions 11.2.1. and greater, unrestricted Snapshot File Access allows BIG-IP system's user with any role, including Guest Role, to have access and download previously generated and available snaps...

CWE-4342018

CVE-2020-15649

MEDIUM
CVSS:5.5(Medium)

Given an installed malicious file picker application, an attacker was able to steal and upload local files of their choosing, regardless of the actually files picked. *Note: This issue only affected F...

CWE-4342020

CVE-2022-40896

MEDIUM
CVSS:5.5(Medium)

A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via SmithyLexer.

CWE-4342022

CVE-2022-43283

MEDIUM
CVSS:5.5(Medium)

wasm2c v1.0.29 was discovered to contain an abort in CWriter::Write.

CWE-4342022

CVE-2023-31428

MEDIUM
CVSS:5.5(Medium)

Brocade Fabric OS before Brocade Fabric OS v9.1.1c, v9.2.0 contains a vulnerability in the command line that could allow a local user to dump files under user's home directory using grep.

CWE-4342023