CVE-2021-35052

A component in Kaspersky Password Manager could allow an attacker to elevate a process Integrity level from Medium to High.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
KasperskyCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 17%
VendorProductVersion
kasperskypassword_manager
𝑥
≤ 9.0.1
kasperskypassword_manager
9.0.2
kasperskypassword_manager
9.0.2:patch_a
kasperskypassword_manager
9.0.2:patch_b
kasperskypassword_manager
9.0.2:patch_c
kasperskypassword_manager
9.0.2:patch_d
kasperskypassword_manager
9.0.2:patch_e
kasperskypassword_manager
9.0.2:patch_f
kasperskypassword_manager
9.0.2:patch_g
kasperskypassword_manager
9.0.2:patch_h
kasperskypassword_manager
9.0.2:patch_i
kasperskypassword_manager
9.0.2:patch_j
kasperskypassword_manager
9.0.2:patch_k
kasperskypassword_manager
9.0.2:patch_l
kasperskypassword_manager
9.0.2:patch_m
kasperskypassword_manager
9.0.2:patch_n
kasperskypassword_manager
9.0.2:patch_o
kasperskypassword_manager
9.0.2:patch_p
kasperskypassword_manager
9.0.2:patch_q
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.kaspersky.com/general/vulnerability.aspx?el=12430#221121
https://www.zerodayinitiative.com/advisories/ZDI-21-1335/
https://support.kaspersky.com/general/vulnerability.aspx?el=12430#221121
https://www.zerodayinitiative.com/advisories/ZDI-21-1335/