Zemana
Products
3- 4 CVEs
- 3 CVEs
- 1 CVE
Recent CVEs
7| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-1853 | Med | 0.36 | 5.5 | 0.00 | Mar 14, 2024 | Zemana AntiLogger v2.74.204.664 is vulnerable to an Arbitrary Process Termination vulnerability by triggering the 0x80002048 IOCTL code of the zam64.sys and zamguard64.sys drivers. | ||
| CVE-2019-6440 | 0.01 | — | 0.03 | Jan 16, 2019 | Zemana AntiMalware before 3.0.658 Beta mishandles update logic. | |||
| CVE-2024-2204 | 0.00 | — | 0.00 | Mar 15, 2024 | Zemana AntiLogger v2.74.204.664 is vulnerable to a Denial of Service (DoS) vulnerability by triggering the 0x80002004 and 0x80002010 IOCTL codes of the zam64.sys and zamguard64.sys drivers. | |||
| CVE-2024-2180 | 0.00 | — | 0.00 | Mar 15, 2024 | Zemana AntiLogger v2.74.204.664 is vulnerable to a Memory Information Leak vulnerability by triggering the 0x80002020 IOCTL code of the zam64.sys and zamguard64.sys drivers | |||
| CVE-2022-42045 | 0.00 | — | 0.01 | Jul 13, 2023 | Certain Zemana products are vulnerable to Arbitrary code injection. This affects Watchdog Anti-Malware 4.1.422 and Zemana AntiMalware 3.2.28. | |||
| CVE-2021-31727 | 0.00 | — | 0.00 | May 17, 2021 | Incorrect access control in zam64.sys, zam32.sys in MalwareFox AntiMalware 2.74.0.150 where IOCTL's 0x80002014, 0x80002018 expose unrestricted disk read/write capabilities respectively. A non-privileged process can open a handle to \.\ZemanaAntiMalware, register with the driver… | |||
| CVE-2018-15491 | 0.00 | — | 0.01 | Aug 18, 2018 | A vulnerability in the permission and encryption implementation of Zemana Anti-Logger 1.9.3.527 and prior (fixed in 1.9.3.602) allows an attacker to take control of the whitelisting feature (MyRules2.ini under %LOCALAPPDATA%\Zemana\ZALSDK) to permit execution of unauthorized… |
- risk 0.36cvss 5.5epss 0.00
Zemana AntiLogger v2.74.204.664 is vulnerable to an Arbitrary Process Termination vulnerability by triggering the 0x80002048 IOCTL code of the zam64.sys and zamguard64.sys drivers.
- CVE-2019-6440Jan 16, 2019risk 0.01cvss —epss 0.03
Zemana AntiMalware before 3.0.658 Beta mishandles update logic.
- CVE-2024-2204Mar 15, 2024risk 0.00cvss —epss 0.00
Zemana AntiLogger v2.74.204.664 is vulnerable to a Denial of Service (DoS) vulnerability by triggering the 0x80002004 and 0x80002010 IOCTL codes of the zam64.sys and zamguard64.sys drivers.
- CVE-2024-2180Mar 15, 2024risk 0.00cvss —epss 0.00
Zemana AntiLogger v2.74.204.664 is vulnerable to a Memory Information Leak vulnerability by triggering the 0x80002020 IOCTL code of the zam64.sys and zamguard64.sys drivers
- CVE-2022-42045Jul 13, 2023risk 0.00cvss —epss 0.01
Certain Zemana products are vulnerable to Arbitrary code injection. This affects Watchdog Anti-Malware 4.1.422 and Zemana AntiMalware 3.2.28.
- CVE-2021-31727May 17, 2021risk 0.00cvss —epss 0.00
Incorrect access control in zam64.sys, zam32.sys in MalwareFox AntiMalware 2.74.0.150 where IOCTL's 0x80002014, 0x80002018 expose unrestricted disk read/write capabilities respectively. A non-privileged process can open a handle to \.\ZemanaAntiMalware, register with the driver…
- CVE-2018-15491Aug 18, 2018risk 0.00cvss —epss 0.01
A vulnerability in the permission and encryption implementation of Zemana Anti-Logger 1.9.3.527 and prior (fixed in 1.9.3.602) allows an attacker to take control of the whitelisting feature (MyRules2.ini under %LOCALAPPDATA%\Zemana\ZALSDK) to permit execution of unauthorized…