zemana CVE Vulnerabilities & Metrics

Focus on zemana vulnerabilities and metrics.

Last updated: 08 Mar 2025, 23:25 UTC

About zemana Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with zemana. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Global CVE Overview

Total zemana CVEs: 5
Earliest CVE date: 18 Aug 2018, 02:29 UTC
Latest CVE date: 15 Mar 2024, 05:15 UTC

Latest CVE reference: CVE-2024-2204

Rolling Stats

30-day Count (Rolling): 0
365-day Count (Rolling): 2

Calendar-based Variation

Calendar-based Variation compares a fixed calendar period (e.g., this month versus the same month last year), while Rolling Growth Rate uses a continuous window (e.g., last 30 days versus the previous 30 days) to capture trends independent of calendar boundaries.

Variations & Growth

Month Variation (Calendar): 0%
Year Variation (Calendar): 100.0%

Month Growth Rate (30-day Rolling): 0.0%
Year Growth Rate (365-day Rolling): 100.0%

Monthly CVE Trends (current vs previous Year)

Annual CVE Trends (Last 20 Years)

Critical zemana CVEs (CVSS ≥ 9) Over 20 Years

CVSS Stats

Average CVSS: 2.5

Max CVSS: 7.5

Critical CVEs (≥9): 0

CVSS Range vs. Count

Range	Count
0.0-3.9	3
4.0-6.9	1
7.0-8.9	1
9.0-10.0	0

CVSS Distribution Chart

Top 5 Highest CVSS zemana CVEs

These are the five CVEs with the highest CVSS scores for zemana, sorted by severity first and recency.

CVE-2019-6440 zemana Published on 16 Jan 2019, 04:29 UTC (CVSS: 7.5)
Zemana AntiMalware before 3.0.658 Beta mishandles update logic.
CVE-2018-15491 zemana Published on 18 Aug 2018, 02:29 UTC (CVSS: 5.0)
A vulnerability in the permission and encryption implementation of Zemana Anti-Logger 1.9.3.527 and prior (fixed in 1.9.3.602) allows an attacker to take control of the whitelisting feature (MyRules2.ini under %LOCALAPPDATA%\Zemana\ZALSDK) to permit execution of unauthorized applications (such as ones that record keystrokes).
CVE-2024-2204 zemana Published on 15 Mar 2024, 05:15 UTC (CVSS: 0)
Zemana AntiLogger v2.74.204.664 is vulnerable to a Denial of Service (DoS) vulnerability by triggering the 0x80002004 and 0x80002010 IOCTL codes of the zam64.sys and zamguard64.sys drivers.
CVE-2024-2180 zemana Published on 15 Mar 2024, 05:15 UTC (CVSS: 0)
Zemana AntiLogger v2.74.204.664 is vulnerable to a Memory Information Leak vulnerability by triggering the 0x80002020 IOCTL code of the zam64.sys and zamguard64.sys drivers
CVE-2022-42045 zemana Published on 13 Jul 2023, 19:15 UTC (CVSS: 0)
Certain Zemana products are vulnerable to Arbitrary code injection. This affects Watchdog Anti-Malware 4.1.422 and Zemana AntiMalware 3.2.28.

All CVEs for zemana

CVE-2024-2204 zemana vulnerability CVSS: 0 15 Mar 2024, 05:15 UTC

Zemana AntiLogger v2.74.204.664 is vulnerable to a Denial of Service (DoS) vulnerability by triggering the 0x80002004 and 0x80002010 IOCTL codes of the zam64.sys and zamguard64.sys drivers.

CVE-2024-2180 zemana vulnerability CVSS: 0 15 Mar 2024, 05:15 UTC

Zemana AntiLogger v2.74.204.664 is vulnerable to a Memory Information Leak vulnerability by triggering the 0x80002020 IOCTL code of the zam64.sys and zamguard64.sys drivers

CVE-2022-42045 zemana vulnerability CVSS: 0 13 Jul 2023, 19:15 UTC

Certain Zemana products are vulnerable to Arbitrary code injection. This affects Watchdog Anti-Malware 4.1.422 and Zemana AntiMalware 3.2.28.

CVE-2019-6440 zemana vulnerability CVSS: 7.5 16 Jan 2019, 04:29 UTC

Zemana AntiMalware before 3.0.658 Beta mishandles update logic.

CVE-2018-15491 zemana vulnerability CVSS: 5.0 18 Aug 2018, 02:29 UTC

A vulnerability in the permission and encryption implementation of Zemana Anti-Logger 1.9.3.527 and prior (fixed in 1.9.3.602) allows an attacker to take control of the whitelisting feature (MyRules2.ini under %LOCALAPPDATA%\Zemana\ZALSDK) to permit execution of unauthorized applications (such as ones that record keystrokes).