Kaspersky Update
4095Warning Date
Severity Level
Warning Number
Target Sector
20 August, 2019
● Medium
2019-357
All
Description:
Kaspersky has released security update to address a vulnerability in the following products:
- Kaspersky Anti-Virus 2019
- Kaspersky Internet Security 2019
- Kaspersky Total Security 2019
- Kaspersky Free Anti-Virus 2019
- Kaspersky Small Office Security 6
Threats:
- To exploit this vulnerability an attacker would need to lure a user into visiting a specially crafted web page (For example, by sending a suspicious link via e-mail), then conducting a cross-site scripting (XSS) attack which could potentially lead to user’s data disclosure.
Best practice and Recommendations:
The CERT team encourages users to update the affected versions and to review Kaspersky security advisory:
https://support.kaspersky.com/general/vulnerability.aspx?el=12430#160819”