How should we interpret CVSS severity scores?

CVSS estimates technical severity, but it does not automatically equal business risk. Prioritize using context like internet exposure, asset criticality, known exploitation, and whether compensating controls exist. A Medium CVSS on an exposed production system can be more urgent than a Critical on an isolated non-production host.

Vulnerability Database

Q: What is a Vulnerability (CVE) and why does it matter?

A security vulnerability is a weakness in software, hardware, or configuration that can be exploited to compromise confidentiality, integrity, or availability. Many vulnerabilities are tracked as CVEs (Common Vulnerabilities and Exposures), which provide a standardized identifier so teams can coordinate patching, mitigation, and risk assessment across tools and vendors.

Q: What's the difference between a vulnerability, an exploit, and a zero-day?

A vulnerability is the underlying weakness. An exploit is the method or code used to take advantage of it. A zero-day is a vulnerability that is unknown to the vendor or has no publicly available fix when attackers begin using it. Risk increases sharply when exploitation becomes reliable or widespread.

Q: Why do vulnerabilities keep reappearing in our environment?

Recurring findings usually come from incomplete asset discovery, inconsistent patch management, inherited images, and configuration drift. In modern environments, you also need to watch the software supply chain: dependencies, containers, build pipelines, and third-party services can reintroduce the same weakness even after you patch a single host.

Q: How do we prioritize remediation without burning out the team?

Use a repeatable triage model: focus first on externally exposed assets, high-value systems (identity, VPN, email, production), vulnerabilities with known exploits, and issues that enable remote code execution or privilege escalation. Then enforce patch SLAs and track progress so remediation is steady, not reactive.

Q: How can SynScan help reduce vulnerability risk over time?

SynScan combines attack surface monitoring and continuous security auditing to keep your inventory current, flag high-impact vulnerabilities early, and help you turn raw findings into a practical remediation plan.

325,773

Total vulnerabilities in the database

Vulnerabilities for products matching "internet_security"

Found 15 matching products. Filters apply to all results.

You can search for specific versions with /product/internet_security/1.2.3

bitdefender / internet_security

11 vulnerabilities found

Title	Severity	Date	Affected Version
CVE-2025-7073	High	December 10, 2025 12/10/25	< 27.10.45.497
CVE-2023-6154	High	April 1, 2024 4/1/24	== 27.0.25.114
CVE-2022-0357	Medium	May 24, 2023 5/24/23	< 26.0.10.45
CVE-2021-4199	High	March 7, 2022 3/7/22	< 26.0.3.29
CVE-2021-4198	Medium	March 7, 2022 3/7/22	< 26.0.3.29
CVE-2020-8107	High	February 18, 2022 2/18/22	< 24.0.26.136
CVE-2020-15732	Medium	June 22, 2021 6/22/21	< 25.0.7.29
CVE-2019-14242	High	July 30, 2019 7/30/19	< 23.0.24.120
CVE-2017-6186	High	March 21, 2017 3/21/17	<= 12.0
CVE-2009-0850	Low	March 9, 2009 3/9/09	== 2009
CVE-2007-5775	Critical	November 1, 2007 11/1/07	*

bullguard / internet_security

2 vulnerabilities found

Title	Severity	Exploit	Date	Affected Version
CVE-2014-9642	High		February 6, 2015 2/6/15	<= 14.1.287
CVE-2008-5409	High		December 10, 2008 12/10/08	== 8.5

trendmicro / internet_security

17 vulnerabilities found

Title	Severity	Date	Affected Version
CVE-2024-23940	High	January 29, 2024 1/29/24	< 6.0.2103
CVE-2021-43772	Medium	December 3, 2021 12/3/21	<= 2021
CVE-2018-18333	High	February 5, 2019 2/5/19	< 15.0.0.1163
CVE-2018-10513	High	August 30, 2018 8/30/18	<= 12.0
CVE-2018-10514	High	August 30, 2018 8/30/18	<= 12.0
CVE-2018-15363	High	August 30, 2018 8/30/18	<= 12.0
CVE-2018-3608	High	July 6, 2018 7/6/18	<= 12.0.1191
CVE-2018-6232	High	May 25, 2018 5/25/18	<= 12.0
CVE-2018-6233	High	May 25, 2018 5/25/18	<= 12.0
CVE-2018-6234	Low	May 25, 2018 5/25/18	<= 12.0
CVE-2018-6235	High	May 25, 2018 5/25/18	<= 12.0
CVE-2018-6236	Medium	May 25, 2018 5/25/18	<= 12.0
CVE-2017-5565	High	March 21, 2017 3/21/17	<= 11.1.1005
CVE-2016-1226	Low	June 19, 2016 6/19/16	== 8.0 == 10.0
CVE-2016-1225	Medium	June 19, 2016 6/19/16	== 8.0 == 10.0
CVE-2010-3189	High	August 31, 2010 8/31/10	== 2010
CVE-2009-0686	High	April 1, 2009 4/1/09	== 2008 == 2009

f-secure / internet_security

2 vulnerabilities found

Title	Severity	Exploit	Date	Affected Version
CVE-2019-11644	Medium		May 17, 2019 5/17/19	< 17.6
CVE-2009-1782	Medium		May 22, 2009 5/22/09	<= 2009

avg / internet_security

5 vulnerabilities found

Title	Severity	Date	Affected Version
CVE-2024-6510	High	September 12, 2024 9/12/24	< 24.1
CVE-2017-5566	High	March 21, 2017 3/21/17	== 17.1
CVE-2015-8578	Medium	December 16, 2015 12/16/15	== 2015
CVE-2014-9632	High	February 6, 2015 2/6/15	>= 2013 < 2013.3495 >= 2015 < 2015.5314
CVE-2010-5152	Medium	August 25, 2012 8/25/12	== 9.0.791

kingsoft / internet_security

1 vulnerabilities found

Title	Severity	Exploit	Date	Affected Version
CVE-2012-0321	Low		March 2, 2012 3/2/12	== 2011

avast / internet_security

2 vulnerabilities found

Title	Severity	Exploit	Date	Affected Version
CVE-2017-5567	High		March 21, 2017 3/21/17	<= 12.3
CVE-2016-4025	Low		November 3, 2016 11/3/16	== 11.1.2261 == 11.1.2241 == 11.1.2262 == 11.1.2245 == 11.1.2253 == 11.1.2260

kaspersky / internet_security

14 vulnerabilities found

Title	Severity	Date	Affected Version
CVE-2022-27534	Critical	April 1, 2022 4/1/22	< 12.03.2022
CVE-2021-27223	Medium	April 1, 2022 4/1/22	< 2021-06
CVE-2021-26718	Medium	April 1, 2021 4/1/21	< 21.1
CVE-2019-15685	Low	November 26, 2019 11/26/19	<= 2020
CVE-2019-15686	Low	November 26, 2019 11/26/19	<= 2020
CVE-2019-15687	Medium	November 26, 2019 11/26/19	<= 2020
CVE-2019-15688	Medium	November 26, 2019 11/26/19	<= 2020
CVE-2019-8286	Low	July 18, 2019 7/18/19	<= 2019
CVE-2017-12816	Critical	August 25, 2017 8/25/17	== 11.12.4.1622
CVE-2017-12817	High	August 25, 2017 8/25/17	== 11.12.4.1622
CVE-2016-4304	Low	January 6, 2017 1/6/17	== 16.0.0
CVE-2016-4305	Low	January 6, 2017 1/6/17	== 16.0.0
CVE-2016-4307	Low	January 6, 2017 1/6/17	== 16.0.0
CVE-2016-4329	Low	January 6, 2017 1/6/17	== 16.0.0.614

k7computing / internet_security

10 vulnerabilities found

Title	Severity	Date	Affected Version
CVE-2017-16549	Low	January 16, 2018 1/16/18	< 15.1.0297
CVE-2017-16550	Low	January 16, 2018 1/16/18	< 15.1.0297
CVE-2017-16551	Low	January 16, 2018 1/16/18	< 15.1.0297
CVE-2017-16552	Low	January 16, 2018 1/16/18	< 15.1.0297
CVE-2017-16553	Low	January 16, 2018 1/16/18	< 15.1.0297
CVE-2017-16554	Low	January 16, 2018 1/16/18	< 15.1.0297
CVE-2017-16555	Low	January 16, 2018 1/16/18	< 15.1.0297
CVE-2017-16556	Low	January 16, 2018 1/16/18	< 15.1.0297
CVE-2017-16557	Low	January 16, 2018 1/16/18	< 15.1.0297
CVE-2017-17429	Low	January 16, 2018 1/16/18	< 15.1.0297

mcafee / internet_security

1 vulnerabilities found

Title	Severity	Exploit	Date	Affected Version
CVE-2019-3648	Medium		November 13, 2019 11/13/19	<= 16.0.r22

quickheal / internet_security

7 vulnerabilities found

Title	Severity	Date	Affected Version
CVE-2020-9362	High	February 24, 2020 2/24/20	== 2019-11
CVE-2018-8090	High	July 25, 2018 7/25/18	== 17.00
CVE-2017-8773	Critical	May 4, 2017 5/4/17	<= 10.1.0.316
CVE-2017-8774	Critical	May 4, 2017 5/4/17	<= 10.1.0.316
CVE-2017-8775	Critical	May 4, 2017 5/4/17	<= 10.1.0.316
CVE-2017-8776	High	May 4, 2017 5/4/17	<= 10.1.0.316
CVE-2017-5005	Critical	January 2, 2017 1/2/17	<= 10.1.0.316

eset / internet_security

9 vulnerabilities found

Title	Severity	Date	Affected Version
CVE-2024-3779	Medium	July 16, 2024 7/16/24	< 17.2.7.0
CVE-2024-0353	High	February 15, 2024 2/15/24	< 17.0.10.0
CVE-2023-7043	Low	January 31, 2024 1/31/24	>= 16.1.14.0 < 17.0.15.0
CVE-2021-37851	High	May 11, 2022 5/11/22	>= 11.2 < 15.1.12.0
CVE-2022-27167	High	May 10, 2022 5/10/22	>= 11.2 < 15.1.12.0
CVE-2021-37852	High	February 9, 2022 2/9/22	>= 10.0.337.1 < 15.0.18.0
CVE-2020-26941	Medium	January 26, 2021 1/26/21	<= 13.2 == 1294
CVE-2020-10193	High	March 6, 2020 3/6/20	< 1294
CVE-2020-9264	Medium	February 18, 2020 2/18/20	< 1296

comodo / internet_security

9 vulnerabilities found

Title	Severity	Date	Affected Version
CVE-2025-7098	Medium	July 6, 2025 7/6/25	== 12.3.4.8162
CVE-2025-7097	High	July 6, 2025 7/6/25	== 12.3.4.8162
CVE-2025-7096	High	July 6, 2025 7/6/25	== 12.3.4.8162
CVE-2025-7095	Low	July 6, 2025 7/6/25	== 12.3.4.8162
CVE-2024-7252	High	July 29, 2024 7/29/24	== 12.2.4.8032
CVE-2024-7251	High	July 29, 2024 7/29/24	== 12.2.4.8032
CVE-2024-7250	High	July 29, 2024 7/29/24	== 12.2.4.8032
CVE-2024-7248	High	July 29, 2024 7/29/24	== 12.2.4.8032
CVE-2019-14270	Low	July 25, 2019 7/25/19	<= 12.0.0.6870

kyrol / internet_security

1 vulnerabilities found

Title	Severity	Exploit	Date	Affected Version
CVE-2019-19820	High		January 10, 2020 1/10/20	== 9.0.6.9

huorong / internet_security

1 vulnerabilities found

Title	Severity	Exploit	Date	Affected Version
CVE-2020-35364	Critical		December 26, 2020 12/26/20	== 5.0.55.2

Showing vulnerabilities for 15 products matching "internet_security". Each product has independent pagination.

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo

Frequently Asked Questions

What is a Vulnerability (CVE) and why does it matter?

A security vulnerability is a weakness in software, hardware, or configuration that can be exploited to compromise confidentiality, integrity, or availability. Many vulnerabilities are tracked as CVEs (Common Vulnerabilities and Exposures), which provide a standardized identifier so teams can coordinate patching, mitigation, and risk assessment across tools and vendors.

CVSS (Common Vulnerability Scoring System) estimates technical severity, but it doesn't automatically equal business risk. Prioritize using context like internet exposure, affected asset criticality, known exploitation (proof-of-concept or in-the-wild), and whether compensating controls exist. A "Medium" CVSS on an exposed, production system can be more urgent than a "Critical" on an isolated, non-production host.

A vulnerability is the underlying weakness. An exploit is the method or code used to take advantage of it. A zero-day is a vulnerability that is unknown to the vendor or has no publicly available fix when attackers begin using it. In practice, risk increases sharply when exploitation becomes reliable or widespread.

Recurring findings usually come from incomplete Asset Discovery, inconsistent patch management, inherited images, and configuration drift. In modern environments, you also need to watch the software supply chain: dependencies, containers, build pipelines, and third-party services can reintroduce the same weakness even after you patch a single host. Unknown or unmanaged assets (often called Shadow IT) are a common reason the same issues resurface.

Use a simple, repeatable triage model: focus first on externally exposed assets, high-value systems (identity, VPN, email, production), vulnerabilities with known exploits, and issues that enable remote code execution or privilege escalation. Then enforce patch SLAs and track progress using consistent metrics so remediation is steady, not reactive.

SynScan combines attack surface monitoring and continuous security auditing to keep your inventory current, flag high-impact vulnerabilities early, and help you turn raw findings into a practical remediation plan.