CVE-2019-8286

Information Disclosure in Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security versions up to 2019 could potentially disclose unique Product ID by forcing victim to visit a specially crafted webpage (for example, via clicking phishing link). Vulnerability has CVSS v3.0 base score 2.6

Published: Jul 18, 2019
Updated: Apr 13, 2023
CVE: CVE-2019-8286
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.3
AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:P/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
kaspersky / total_security	-	2019.x
kaspersky / anti-virus	-	2019.x
kaspersky / internet_security	-	2019.x
kaspersky / free_anti-virus	-	2019.x
kaspersky / small_office_security	-	6.0.x

http://www.securityfocus.com/bid/109300
https://support.kaspersky.com/general/vulnerability.aspx?el=12430#110719

Vulnerability Database

289,782

CVE-2019-8286