Sandbox Escape Vulnerability in Comodo Antivirus and Firewall Products
CVE-2019-14270

7.1HIGH

Key Information:

Vendor: Comodo
Status: Firewall; Internet Security; Antivirus
Vendor: CVE Published:; 25 July 2019

What is CVE-2019-14270?

The Comodo Antivirus, Comodo Firewall, and Comodo Internet Security Premium products, specifically version 12.0.0.6870 and earlier, are susceptible to a sandbox escape vulnerability linked to the Comodo Container feature. This vulnerability could potentially allow an attacker to escape the protected environment and execute arbitrary code on the host machine, posing significant security risks.

References

https://gaissecurity.com/yazi/discovery-of-sandbox-escape...

x_refsource_MISC

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 25, 2019
Vulnerability Reserved
Jul 25, 2019