Name of the Vulnerable Software and Affected Versions Kaspersky Anti-Virus 8.0 for Linux File Servers

Description The issue is related to a cross-site scripting vulnerability in the web console of Kaspersky Anti-Virus 8.0 for Linux File Servers. An attacker can exploit this by sending a specially crafted GET request that includes JavaScript code in the URL, which will then be executed in the client's browser.

Recommendations For Kaspersky Anti-Virus 8.0 for Linux File Servers, consider disabling the web console functionality until a patch is available to prevent potential exploitation. Restrict access to the web console to minimize the risk of malicious JavaScript code execution. Avoid using the web console for sensitive operations until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.