Name of the Vulnerable Software and Affected Versions Kaspersky Anti-Virus (affected versions not specified) Kaspersky Internet Security (affected versions not specified) Kaspersky Total Security (affected versions not specified) Kaspersky Small Office Security (affected versions not specified) Kaspersky Security Cloud (affected versions not specified)

Description The issue is related to errors in processing XML requests in the installation files of Kaspersky antivirus software. Exploiting this issue may allow an attacker to impact the confidentiality, integrity, and availability of protected information.

Recommendations For Kaspersky Anti-Virus, update to a version that includes a fix for the XML request processing errors. For Kaspersky Internet Security, update to a version that includes a fix for the XML request processing errors. For Kaspersky Total Security, update to a version that includes a fix for the XML request processing errors. For Kaspersky Small Office Security, update to a version that includes a fix for the XML request processing errors. For Kaspersky Security Cloud, update to a version that includes a fix for the XML request processing errors. As a temporary workaround, consider restricting access to XML request processing functionality in the affected software until a patch is available.