Internet Security
by Comodo
CVEs (25)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-49494 | Hig | 0.49 | 7.5 | 0.01 | Jun 7, 2026 | Comodo Internet Security's firewall driver Inspect.sys contains an integer underflow in its IPv6 packet parser. The parser decrements an unsigned 64-bit payload-length value (taken from the IPv6 fixed header's payload length field) by the size of each IPv6 extension header… | ||
| CVE-2025-7098 | Med | 0.37 | 5.6 | 0.01 | Jul 6, 2025 | A vulnerability, which was classified as critical, was found in Comodo Internet Security Premium 12.3.4.8162. Affected is an unknown function of the component File Name Handler. The manipulation of the argument name/folder leads to path traversal. It is possible to launch the… | ||
| CVE-2025-7097 | 0.01 | — | 0.05 | Jul 6, 2025 | A vulnerability, which was classified as critical, has been found in Comodo Internet Security Premium 12.3.4.8162. This issue affects some unknown processing of the file cis_update_x64.xml of the component Manifest File Handler. The manipulation of the argument binary/params… | |||
| CVE-2025-7096 | 0.00 | — | 0.00 | Jul 6, 2025 | A vulnerability classified as critical was found in Comodo Internet Security Premium 12.3.4.8162. This vulnerability affects unknown code of the file cis_update_x64.xml of the component Manifest File Handler. The manipulation leads to improper validation of integrity check… | |||
| CVE-2025-7095 | 0.00 | — | 0.00 | Jul 6, 2025 | A vulnerability classified as critical has been found in Comodo Internet Security Premium 12.3.4.8162. This affects an unknown part of the component Update Handler. The manipulation leads to improper certificate validation. It is possible to initiate the attack remotely. The… | |||
| CVE-2024-7252 | 0.00 | — | 0.00 | Jul 29, 2024 | Comodo Internet Security Pro cmdagent Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Comodo Internet Security Pro. An attacker must first obtain the ability to execute… | |||
| CVE-2024-7251 | 0.00 | — | 0.00 | Jul 29, 2024 | Comodo Internet Security Pro cmdagent Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Comodo Internet Security Pro. An attacker must first obtain the ability to execute… | |||
| CVE-2024-7250 | 0.00 | — | 0.00 | Jul 29, 2024 | Comodo Internet Security Pro cmdagent Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Comodo Internet Security Pro. An attacker must first obtain the ability to execute… | |||
| CVE-2024-7248 | 0.00 | — | 0.00 | Jul 29, 2024 | Comodo Internet Security Pro Directory Traversal Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Comodo Internet Security Pro. An attacker must first obtain the ability to execute… | |||
| CVE-2019-18215 | 0.00 | — | 0.01 | Nov 18, 2019 | An issue was discovered in signmgr.dll 6.5.0.819 in Comodo Internet Security through 12.0. A DLL Preloading vulnerability allows an attacker to implant an unsigned DLL named iLog.dll in a partially unprotected product directory. This DLL is then loaded into a high-privileged… | |||
| CVE-2011-5123 | 0.00 | — | 0.01 | Aug 26, 2012 | The Antivirus component in Comodo Internet Security before 5.3.175888.1227 does not check whether X.509 certificates in signed executable files have been revoked, which has unknown impact and remote attack vectors. | |||
| CVE-2011-5122 | 0.00 | — | 0.02 | Aug 26, 2012 | The Antivirus component in Comodo Internet Security before 5.3.175888.1227 allows remote attackers to cause a denial of service (application crash) via a crafted compressed file. | |||
| CVE-2011-5121 | 0.00 | — | 0.01 | Aug 26, 2012 | The Antivirus component in Comodo Internet Security before 5.3.175888.1227 does not properly check whether unspecified X.509 certificates are revoked, which has unknown impact and remote attack vectors. | |||
| CVE-2011-5120 | 0.00 | — | 0.02 | Aug 26, 2012 | The Antivirus component in Comodo Internet Security before 5.4.189822.1355 allows remote attackers to cause a denial of service (application crash) via a crafted .PST file. | |||
| CVE-2011-5119 | 0.00 | — | 0.00 | Aug 26, 2012 | Multiple race conditions in Comodo Internet Security before 5.8.211697.2124 allow local users to bypass the Defense+ feature via unspecified vectors. | |||
| CVE-2011-5118 | 0.00 | — | 0.00 | Aug 26, 2012 | Multiple race conditions in Comodo Internet Security before 5.8.213334.2131 allow local users to bypass the Defense+ feature via unspecified vectors. | |||
| CVE-2010-5186 | 0.00 | — | 0.02 | Aug 26, 2012 | The Antivirus component in Comodo Internet Security before 4.1.150349.920 allows remote attackers to cause a denial of service (application crash) via a crafted file. | |||
| CVE-2010-5185 | 0.00 | — | 0.01 | Aug 26, 2012 | The Antivirus component in Comodo Internet Security before 5.3.174622.1216 does not check whether X.509 certificates in signed executable files have been revoked, which has unknown impact and remote attack vectors. | |||
| CVE-2009-5127 | 0.00 | — | 0.02 | Aug 26, 2012 | The Antivirus component in Comodo Internet Security before 3.8.64739.471 allows remote attackers to cause a denial of service (application crash) via a crafted file. | |||
| CVE-2009-5126 | 0.00 | — | 0.02 | Aug 26, 2012 | The Antivirus component in Comodo Internet Security before 3.8.65951.477 allows remote attackers to cause a denial of service (application crash) via a crafted file. |
- risk 0.49cvss 7.5epss 0.01
Comodo Internet Security's firewall driver Inspect.sys contains an integer underflow in its IPv6 packet parser. The parser decrements an unsigned 64-bit payload-length value (taken from the IPv6 fixed header's payload length field) by the size of each IPv6 extension header…
- risk 0.37cvss 5.6epss 0.01
A vulnerability, which was classified as critical, was found in Comodo Internet Security Premium 12.3.4.8162. Affected is an unknown function of the component File Name Handler. The manipulation of the argument name/folder leads to path traversal. It is possible to launch the…
- CVE-2025-7097Jul 6, 2025risk 0.01cvss —epss 0.05
A vulnerability, which was classified as critical, has been found in Comodo Internet Security Premium 12.3.4.8162. This issue affects some unknown processing of the file cis_update_x64.xml of the component Manifest File Handler. The manipulation of the argument binary/params…
- CVE-2025-7096Jul 6, 2025risk 0.00cvss —epss 0.00
A vulnerability classified as critical was found in Comodo Internet Security Premium 12.3.4.8162. This vulnerability affects unknown code of the file cis_update_x64.xml of the component Manifest File Handler. The manipulation leads to improper validation of integrity check…
- CVE-2025-7095Jul 6, 2025risk 0.00cvss —epss 0.00
A vulnerability classified as critical has been found in Comodo Internet Security Premium 12.3.4.8162. This affects an unknown part of the component Update Handler. The manipulation leads to improper certificate validation. It is possible to initiate the attack remotely. The…
- CVE-2024-7252Jul 29, 2024risk 0.00cvss —epss 0.00
Comodo Internet Security Pro cmdagent Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Comodo Internet Security Pro. An attacker must first obtain the ability to execute…
- CVE-2024-7251Jul 29, 2024risk 0.00cvss —epss 0.00
Comodo Internet Security Pro cmdagent Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Comodo Internet Security Pro. An attacker must first obtain the ability to execute…
- CVE-2024-7250Jul 29, 2024risk 0.00cvss —epss 0.00
Comodo Internet Security Pro cmdagent Link Following Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Comodo Internet Security Pro. An attacker must first obtain the ability to execute…
- CVE-2024-7248Jul 29, 2024risk 0.00cvss —epss 0.00
Comodo Internet Security Pro Directory Traversal Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Comodo Internet Security Pro. An attacker must first obtain the ability to execute…
- CVE-2019-18215Nov 18, 2019risk 0.00cvss —epss 0.01
An issue was discovered in signmgr.dll 6.5.0.819 in Comodo Internet Security through 12.0. A DLL Preloading vulnerability allows an attacker to implant an unsigned DLL named iLog.dll in a partially unprotected product directory. This DLL is then loaded into a high-privileged…
- CVE-2011-5123Aug 26, 2012risk 0.00cvss —epss 0.01
The Antivirus component in Comodo Internet Security before 5.3.175888.1227 does not check whether X.509 certificates in signed executable files have been revoked, which has unknown impact and remote attack vectors.
- CVE-2011-5122Aug 26, 2012risk 0.00cvss —epss 0.02
The Antivirus component in Comodo Internet Security before 5.3.175888.1227 allows remote attackers to cause a denial of service (application crash) via a crafted compressed file.
- CVE-2011-5121Aug 26, 2012risk 0.00cvss —epss 0.01
The Antivirus component in Comodo Internet Security before 5.3.175888.1227 does not properly check whether unspecified X.509 certificates are revoked, which has unknown impact and remote attack vectors.
- CVE-2011-5120Aug 26, 2012risk 0.00cvss —epss 0.02
The Antivirus component in Comodo Internet Security before 5.4.189822.1355 allows remote attackers to cause a denial of service (application crash) via a crafted .PST file.
- CVE-2011-5119Aug 26, 2012risk 0.00cvss —epss 0.00
Multiple race conditions in Comodo Internet Security before 5.8.211697.2124 allow local users to bypass the Defense+ feature via unspecified vectors.
- CVE-2011-5118Aug 26, 2012risk 0.00cvss —epss 0.00
Multiple race conditions in Comodo Internet Security before 5.8.213334.2131 allow local users to bypass the Defense+ feature via unspecified vectors.
- CVE-2010-5186Aug 26, 2012risk 0.00cvss —epss 0.02
The Antivirus component in Comodo Internet Security before 4.1.150349.920 allows remote attackers to cause a denial of service (application crash) via a crafted file.
- CVE-2010-5185Aug 26, 2012risk 0.00cvss —epss 0.01
The Antivirus component in Comodo Internet Security before 5.3.174622.1216 does not check whether X.509 certificates in signed executable files have been revoked, which has unknown impact and remote attack vectors.
- CVE-2009-5127Aug 26, 2012risk 0.00cvss —epss 0.02
The Antivirus component in Comodo Internet Security before 3.8.64739.471 allows remote attackers to cause a denial of service (application crash) via a crafted file.
- CVE-2009-5126Aug 26, 2012risk 0.00cvss —epss 0.02
The Antivirus component in Comodo Internet Security before 3.8.65951.477 allows remote attackers to cause a denial of service (application crash) via a crafted file.
Page 1 of 2