Kaspersky Endpoint Security
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Kaspersky Endpoint Security.
By the Year
In 2026 there have been 0 vulnerabilities in Kaspersky Endpoint Security. Last year, in 2025 Endpoint Security had 1 security vulnerability published. Right now, Endpoint Security is on track to have less security vulnerabilities in 2026 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 1 | 6.10 |
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 2 | 7.65 |
It may take a day or so for new Endpoint Security vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Kaspersky Endpoint Security Security Vulnerabilities
Kaspersky Endpoint Security XSS via AV DBs <18.11.2025
CVE-2025-64984
6.1 - Medium
- November 20, 2025
Kaspersky has fixed a security issue in Kaspersky Endpoint Security for Linux (any version with anti-virus databases prior to 18.11.2025), Kaspersky Industrial CyberSecurity for Linux Nodes (any version with anti-virus databases prior to 18.11.2025), and Kaspersky Endpoint Security for Mac (12.0.0.325, 12.1.0.553, and 12.2.0.694 with anti-virus databases prior to 18.11.2025) that could have allowed a reflected XSS attack to be carried out by an attacker using phishing techniques.
XSS
Kaspersky Anti-Virus products for home and Kaspersky Endpoint Security with antivirus databases released before 12 March 2022 had a bug in a data parsing module
CVE-2022-27534
9.8 - Critical
- April 01, 2022
Kaspersky Anti-Virus products for home and Kaspersky Endpoint Security with antivirus databases released before 12 March 2022 had a bug in a data parsing module that potentially allowed an attacker to execute arbitrary code. The fix was delivered automatically. Credits: Georgy Zaytsev (Positive Technologies).
A denial-of-service issue existed in one of modules
CVE-2021-27223
5.5 - Medium
- April 01, 2022
A denial-of-service issue existed in one of modules that was incorporated in Kaspersky Anti-Virus products for home and Kaspersky Endpoint Security. A local user could cause Windows crash by running a specially crafted binary module. The fix was delivered automatically. Credits: (Straghkov Denis, Kurmangaleev Shamil, Fedotov Andrey, Kuts Daniil, Mishechkin Maxim, Akolzin Vitaliy) @ ISPRAS
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Kaspersky Endpoint Security or by Kaspersky? Click the Watch button to subscribe.
