Known Vulnerabilities for products from Panda

Listed below are 20 of the newest known vulnerabilities associated with the vendor "Panda".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2026-39658 json Not Provided 2026-04-08 2026-04-29
CVE-2025-60050 json Not Provided 2025-12-18 2026-04-27
CVE-2025-30842 json Not Provided 2025-03-27 2026-04-23
CVE-2009-3735 json The ActiveScan Installer ActiveX control in as2stubie.dll before 1.3.3.0 in PandaActiveScan Installer 2.0 in Panda ActiveScan... Not Provided 2010-02-11 2026-04-29
CVE-2008-3156 json The ActiveScan ActiveX Control (as2guiie.dll) in Panda ActiveScan before 1.02.00 allows remote attackers to download and exec... Not Provided 2008-07-11 2026-04-23
CVE-2008-3155 json Stack-based buffer overflow in the ActiveX control (as2guiie.dll) in Panda ActiveScan before 1.02.00 allows remote attackers ... Not Provided 2008-07-11 2026-04-23
CVE-2008-1471 json The cpoint.sys driver in Panda Internet Security 2008 and Antivirus+ Firewall 2008 allows local users to cause a denial of se... Not Provided 2008-03-24 2026-04-23
CVE-2007-4191 json Panda Antivirus 2008 stores service executables under the product's installation directory with weak permissions, which allow... Not Provided 2007-08-08 2026-04-23
CVE-2007-3969 json Buffer overflow in Panda Antivirus before 20070720 allows remote attackers to execute arbitrary code via a crafted EXE file, ... Not Provided 2007-07-25 2026-04-23
CVE-2007-3026 json Integer overflow in Panda Software AdminSecure allows remote attackers to execute arbitrary code via crafted packets with mod... Not Provided 2007-07-25 2026-04-23
CVE-2007-1673 json unzoo.c, as used in multiple products including AMaViS 2.4.1 and earlier, allows remote attackers to cause a denial of servic... Not Provided 2007-05-09 2026-04-23
CVE-2007-1670 json Panda Software Antivirus before 20070402 allows remote attackers to cause a denial of service (infinite loop) via a ZOO archi... Not Provided 2007-05-09 2026-04-23
CVE-2006-5967 json Race condition in Panda ActiveScan 5.53.00, and other versions before 5.54.01, allows remote attackers to cause memory corrup... Not Provided 2006-11-17 2026-04-23
CVE-2006-5966 json Panda ActiveScan 5.53.00, and other versions before 5.54.01, allows remote attackers to (1) reboot the system using the Reini... Not Provided 2006-11-17 2026-04-23
CVE-2006-4659 json The Panda Platinum Internet Security 2006 10.02.01 and 2007 11.00.00 uses predictable URLs for the spam classification of eac... 5 - MEDIUM 2006-09-09 2018-10-17
CVE-2006-4658 json Panda Platinum Internet Security 2006 10.02.01 and 2007 11.00.00 uses sequential message numbers in generated URLs that are n... 5 - MEDIUM 2006-09-09 2018-10-17
CVE-2006-4657 json Panda Platinum Internet Security 2006 10.02.01 and 2007 11.00.00 stores service executables under the product's installation ... 7.2 - HIGH 2006-09-09 2018-10-17
CVE-2006-4295 json Cross-site scripting (XSS) vulnerability in ascan_6.asp in Panda ActiveScan 5.53.00 allows remote attackers to inject arbitra... 4.3 - MEDIUM 2006-08-23 2008-09-05
CVE-2005-3922 json Heap-based buffer overflow in pskcmp.dll in Panda Software Antivirus library allows remote attackers to execute arbitrary cod... Not Provided 2005-11-30 2025-04-03
CVE-2005-3380 json Multiple interpretation error in Panda Titanium 2005 4.02.01 allows remote attackers to bypass virus scanning via a file such... Not Provided 2005-10-30 2025-04-03
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report