Wind River Support Network

Home CVE Database CVE-2020-9320

CVE-2020-9320

Description

Avira AV Engine before 8.3.54.138 allows virus-detection bypass via a crafted ISO archive. This affects versions before 8.3.54.138 of Antivirus for Endpoint, Antivirus for Small Business, Exchange Security (Gateway), Internet Security Suite for Windows, Prime, Free Security Suite for Windows, and Cross Platform Anti-malware SDK. NOTE: Vendor asserts that vulnerability does not exist in product

Priority: MEDIUM

CVSS v3: 5.5

Component: proftpd

Publish Date: Feb 20, 2020

Related ID: --

CVSS v2: MEDIUM

Modified Date: Feb 28, 2020

Find out more about CVE-2020-9320 from the MITRE-CVE dictionary and NIST NVD

Products Affected

Product Name	Status	Defect	Fixed	Downloads
Linux
Wind River Linux LTS 17	Not Vulnerable	--	--	--
Wind River Linux 8	Not Vulnerable	--	--	--
Wind River Linux 9	Not Vulnerable	--	--	--
Wind River Linux 7	Not Vulnerable	--	--	--
Wind River Linux LTS 21	Won't Fix	--	--	--
Wind River Linux LTS 22	Won't Fix	--	--	--
Wind River Linux LTS 18	Not Vulnerable	--	--	--
Wind River Linux LTS 19	Not Vulnerable	--	--	--
Wind River Linux CD release	Won't Fix	--	--	--
Wind River Linux 6	Not Vulnerable	--	--	--
Wind River Linux LTS 23	Won't Fix	--	--	--
VxWorks
VxWorks 7	Not Vulnerable	--	--	--
VxWorks 6.9	Not Vulnerable	--	--	--
Helix Virtualization Platform Cert Edition
Helix Virtualization Platform Cert Edition	Not Vulnerable	--	--	--

Related Products

Product Name	Status	Defect	Fixed	Downloads

Notes
Requires LTSS - customers must have active LTSS (Long Term Security Shield) Support to receive up-to-date information about vulnerabilities that may affect legacy software. Please contact your Wind River account team or see https://docs.windriver.com/bundle/Support_and_Maintenance_Supplemental_Terms_and_Conditions and https://support2.windriver.com/index.php?page=plc for more information.