CVE-2019-15687

Name of the Vulnerable Software and Affected Versions Kaspersky Anti-Virus versions up to 2020 Kaspersky Internet Security versions up to 2020 Kaspersky Total Security versions up to 2020 Kaspersky Free Anti-Virus versions up to 2020 Kaspersky Small Office Security versions up to 2020 Kaspersky Security Cloud versions up to 2020

Description The web protection component of the affected Kaspersky products was vulnerable to remote disclosure of various information about the user's system, including Windows version, product version, and host unique ID. This issue is related to the lack of protection for service data, which could allow a remote attacker to disclose protected information.

Recommendations For Kaspersky Anti-Virus versions up to 2020, update to a version later than 2020 to resolve the issue. For Kaspersky Internet Security versions up to 2020, update to a version later than 2020 to resolve the issue. For Kaspersky Total Security versions up to 2020, update to a version later than 2020 to resolve the issue. For Kaspersky Free Anti-Virus versions up to 2020, update to a version later than 2020 to resolve the issue. For Kaspersky Small Office Security versions up to 2020, update to a version later than 2020 to resolve the issue. For Kaspersky Security Cloud versions up to 2020, update to a version later than 2020 to resolve the issue.