CVE-2021-27223

Name of the Vulnerable Software and Affected Versions Kaspersky Anti-Virus (affected versions not specified) Kaspersky Internet Security (affected versions not specified) Kaspersky Total Security (affected versions not specified) Kaspersky Small Office Security (affected versions not specified) Kaspersky Security Cloud (affected versions not specified) Kaspersky Endpoint Security (affected versions not specified)

Description A denial-of-service issue existed in one of the modules incorporated in Kaspersky products. This issue is related to insufficient access control in the module. A local user could cause a Windows crash by running a specially crafted binary module, potentially allowing an attacker to terminate the operation of the Microsoft Windows operating system.

Recommendations For Kaspersky Anti-Virus, consider applying the automatically delivered fix. For Kaspersky Internet Security, consider applying the automatically delivered fix. For Kaspersky Total Security, consider applying the automatically delivered fix. For Kaspersky Small Office Security, consider applying the automatically delivered fix. For Kaspersky Security Cloud, consider applying the automatically delivered fix. For Kaspersky Endpoint Security, consider applying the automatically delivered fix. At the moment, there is no information about a newer version that contains a fix for this vulnerability.