CVE-2019-15688

EUVD-2019-6627
Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, Kaspersky Security Cloud up to 2020, the web protection component did not adequately inform the user about the threat of redirecting to an untrusted site. Bypass.
Open Redirect
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.1 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 44%
Affected Products (NVD)
VendorProductVersion
kasperskyanti-virus
𝑥
≤ 2020
kasperskyanti-virus
𝑥
≤ 2020
kasperskyinternet_security
𝑥
≤ 2020
kasperskysecurity_cloud
𝑥
≤ 2020
kasperskysmall_office_security
𝑥
≤ 7
kasperskytotal_security
𝑥
≤ 2020
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.kaspersky.com/general/vulnerability.aspx?el=12430#251119_1
https://support.kaspersky.com/general/vulnerability.aspx?el=12430#251119_1