Lucene search

K

Windows Kernel Security Vulnerabilities

cve
cve

CVE-2023-40374

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 is vulnerable to denial of service with a specially crafted query statement. IBM X-Force ID: ...

7.5CVSS

7.1AI Score

0.001EPSS

2023-10-16 11:15 PM
52
cve
cve

CVE-2023-38740

IBM Db2 for Linux, UNIX, and Windows (includes Db2 Connect Server) 11.5 is vulnerable to a denial of service with a specially crafted SQL statement. IBM X-Force ID: ...

7.5CVSS

7.4AI Score

0.001EPSS

2023-10-16 10:15 PM
46
cve
cve

CVE-2023-38728

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted XML query statement. IBM X-Force ID: ...

7.5CVSS

7.1AI Score

0.001EPSS

2023-10-16 10:15 PM
55
cve
cve

CVE-2023-30987

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to denial of service with a specially crafted query on certain databases. IBM X-Force ID: ...

7.5CVSS

7.1AI Score

0.001EPSS

2023-10-16 09:15 PM
58
cve
cve

CVE-2023-38720

IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.5 and 11.5 is vulnerable to denial of service with a specially crafted ALTER TABLE statement. IBM X-Force ID: ...

7.5CVSS

7.1AI Score

0.001EPSS

2023-10-16 09:15 PM
45
cve
cve

CVE-2023-36712

Windows Kernel Elevation of Privilege...

7.8CVSS

7.9AI Score

0.001EPSS

2023-10-10 06:15 PM
336
cve
cve

CVE-2023-36725

Windows Kernel Elevation of Privilege...

7.8CVSS

7.9AI Score

0.0005EPSS

2023-10-10 06:15 PM
336
cve
cve

CVE-2023-36698

Windows Kernel Security Feature Bypass...

4.4CVSS

5.4AI Score

0.0005EPSS

2023-10-10 06:15 PM
320
cve
cve

CVE-2023-36576

Windows Kernel Information Disclosure...

5.5CVSS

5.9AI Score

0.0005EPSS

2023-10-10 06:15 PM
337
cve
cve

CVE-2022-48183

A vulnerability was reported in ThinkPad T14s Gen 3 and X13 Gen3 that could cause the BIOS tamper detection mechanism to not trigger under specific circumstances which could allow unauthorized...

6.8CVSS

6.5AI Score

0.001EPSS

2023-10-09 09:15 PM
30
cve
cve

CVE-2022-48182

A vulnerability was reported in ThinkPad T14s Gen 3 and X13 Gen3 that could cause the BIOS tamper detection mechanism to not trigger under specific circumstances which could allow unauthorized...

6.8CVSS

6.5AI Score

0.001EPSS

2023-10-09 09:15 PM
21
cve
cve

CVE-2023-45247

Sensitive information disclosure and manipulation due to missing authorization. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build...

7.1CVSS

6.6AI Score

0.0004EPSS

2023-10-09 12:15 PM
15
cve
cve

CVE-2023-45246

Sensitive information disclosure and manipulation due to improper authentication. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build...

7.1CVSS

6.7AI Score

0.0004EPSS

2023-10-06 11:15 AM
30
cve
cve

CVE-2023-45245

Sensitive information disclosure due to missing authorization. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build...

5.5CVSS

4AI Score

0.0004EPSS

2023-10-06 10:15 AM
17
cve
cve

CVE-2023-45244

Sensitive information disclosure and manipulation due to missing authorization. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 35895, Acronis Cyber Protect 16 (Linux, macOS, Windows) before build...

7.1CVSS

6.7AI Score

0.0004EPSS

2023-10-06 10:15 AM
52
cve
cve

CVE-2023-44214

Sensitive information disclosure due to missing authorization. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build...

5.5CVSS

5.3AI Score

0.0004EPSS

2023-10-05 10:15 PM
24
cve
cve

CVE-2023-45240

Sensitive information disclosure due to missing authorization. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build...

5.5CVSS

5.3AI Score

0.0004EPSS

2023-10-05 10:15 PM
26
cve
cve

CVE-2023-44212

Sensitive information disclosure and manipulation due to missing authorization. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build...

7.1CVSS

6.9AI Score

0.0004EPSS

2023-10-05 10:15 PM
26
cve
cve

CVE-2023-45243

Sensitive information disclosure due to missing authorization. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build...

5.5CVSS

5.3AI Score

0.0004EPSS

2023-10-05 10:15 PM
25
cve
cve

CVE-2023-44211

Sensitive information disclosure and manipulation due to missing authorization. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 31637, Acronis Cyber Protect 16 (Linux, Windows) before build...

7.1CVSS

6.7AI Score

0.0004EPSS

2023-10-05 10:15 PM
57
cve
cve

CVE-2023-45242

Sensitive information disclosure due to missing authorization. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build...

5.5CVSS

5.3AI Score

0.0004EPSS

2023-10-05 10:15 PM
23
cve
cve

CVE-2023-45241

Sensitive information leak through log files. The following products are affected: Acronis Cyber Protect Cloud Agent (Linux, macOS, Windows) before build 35739, Acronis Cyber Protect 16 (Linux, macOS, Windows) before build...

5.5CVSS

4.7AI Score

0.0004EPSS

2023-10-05 10:15 PM
60
cve
cve

CVE-2023-43799

Altair is a GraphQL Client. Prior to version 5.2.5, the Altair GraphQL Client Desktop Application does not sanitize external URLs before passing them to the underlying system. Moreover, Altair GraphQL Client also does not isolate the context of the renderer process. This affects versions of the...

7.8CVSS

7.5AI Score

0.001EPSS

2023-10-04 09:15 PM
27
cve
cve

CVE-2023-44210

Sensitive information disclosure and manipulation due to missing authorization. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build...

5.5CVSS

6.9AI Score

0.0004EPSS

2023-10-04 08:15 PM
18
cve
cve

CVE-2023-44209

Local privilege escalation due to improper soft link handling. The following products are affected: Acronis Agent (Linux, macOS, Windows) before build...

7.8CVSS

5.8AI Score

0.0004EPSS

2023-10-04 08:15 PM
17
cve
cve

CVE-2023-44206

Sensitive information disclosure and manipulation due to improper authorization. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build...

9.1CVSS

6.7AI Score

0.001EPSS

2023-09-27 03:19 PM
17
cve
cve

CVE-2023-44207

Stored cross-site scripting (XSS) vulnerability in protection plan name. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build...

5.4CVSS

6.1AI Score

0.0004EPSS

2023-09-27 03:19 PM
13
cve
cve

CVE-2023-44205

Sensitive information disclosure due to improper authorization. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build...

5.3CVSS

4AI Score

0.0005EPSS

2023-09-27 03:19 PM
13
cve
cve

CVE-2023-44161

Sensitive information manipulation due to cross-site request forgery. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build...

6.5CVSS

4AI Score

0.0005EPSS

2023-09-27 03:19 PM
8
cve
cve

CVE-2023-44160

Sensitive information manipulation due to cross-site request forgery. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build...

6.5CVSS

4AI Score

0.0005EPSS

2023-09-27 03:19 PM
14
cve
cve

CVE-2023-44159

Sensitive information disclosure due to cleartext storage of sensitive information. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build...

7.5CVSS

5.3AI Score

0.001EPSS

2023-09-27 03:19 PM
11
cve
cve

CVE-2023-44158

Sensitive information disclosure due to insufficient token field masking. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build...

7.5CVSS

4AI Score

0.001EPSS

2023-09-27 03:19 PM
21
cve
cve

CVE-2023-44154

Sensitive information disclosure and manipulation due to improper authorization. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build...

8.1CVSS

4AI Score

0.001EPSS

2023-09-27 03:19 PM
24
cve
cve

CVE-2023-44156

Sensitive information disclosure due to spell-jacking. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build...

7.5CVSS

5.4AI Score

0.001EPSS

2023-09-27 03:19 PM
11
cve
cve

CVE-2023-44155

Sensitive information leak through log files. The following products are affected: Acronis Cyber Protect 15 (Linux, Windows) before build...

7.5CVSS

4.7AI Score

0.001EPSS

2023-09-27 03:19 PM
13
cve
cve

CVE-2023-44153

Sensitive information disclosure due to cleartext storage of sensitive information in memory. The following products are affected: Acronis Cyber Protect 15 (Linux, macOS, Windows) before build...

7.5CVSS

3.7AI Score

0.001EPSS

2023-09-27 03:19 PM
13
cve
cve

CVE-2023-44152

Sensitive information disclosure and manipulation due to improper authentication. The following products are affected: Acronis Cyber Protect 15 (Linux, macOS, Windows) before build...

9.1CVSS

6.1AI Score

0.001EPSS

2023-09-27 03:19 PM
18
cve
cve

CVE-2023-43767

Certain WithSecure products allow Denial of Service via the aepack archive unpack handler. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac...

7.5CVSS

7.5AI Score

0.0005EPSS

2023-09-22 05:15 AM
18
cve
cve

CVE-2023-43766

Certain WithSecure products allow Local privilege escalation via the lhz archive unpack handler. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for.....

7.8CVSS

7.8AI Score

0.0004EPSS

2023-09-22 05:15 AM
18
cve
cve

CVE-2023-43761

Certain WithSecure products allow Denial of Service (infinite loop). This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure Elements.....

7.5CVSS

7.5AI Score

0.0005EPSS

2023-09-22 05:15 AM
12
cve
cve

CVE-2023-43760

Certain WithSecure products allow Denial of Service via a fuzzed PE32 file. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure...

7.5CVSS

7.4AI Score

0.0005EPSS

2023-09-22 05:15 AM
18
cve
cve

CVE-2023-43765

Certain WithSecure products allow Denial of Service in the aeelf component. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for Mac 15, WithSecure...

7.5CVSS

7.5AI Score

0.0005EPSS

2023-09-22 05:15 AM
16
cve
cve

CVE-2023-42525

Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file types. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security...

7.5CVSS

7.4AI Score

0.0005EPSS

2023-09-18 07:15 AM
12
cve
cve

CVE-2023-42524

Certain WithSecure products allow an infinite loop in a scanning engine via unspecified file types. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security...

7.5CVSS

7.4AI Score

0.0005EPSS

2023-09-18 07:15 AM
11
cve
cve

CVE-2023-42521

Certain WithSecure products allow a remote crash of a scanning engine via processing of a compressed file. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client...

7.5CVSS

7.5AI Score

0.0005EPSS

2023-09-18 07:15 AM
14
cve
cve

CVE-2023-42522

Certain WithSecure products allow a remote crash of a scanning engine via processing of an import struct in a PE file. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later,...

7.5CVSS

7.4AI Score

0.0005EPSS

2023-09-18 07:15 AM
13
cve
cve

CVE-2023-42523

Certain WithSecure products allow a remote crash of a scanning engine via unpacking of a PE file. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client Security for....

7.5CVSS

7.5AI Score

0.0005EPSS

2023-09-18 07:15 AM
13
cve
cve

CVE-2023-42526

Certain WithSecure products allow a remote crash of a scanning engine via decompression of crafted data files. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client....

7.5CVSS

7.5AI Score

0.0005EPSS

2023-09-18 06:15 AM
14
cve
cve

CVE-2023-42520

Certain WithSecure products allow a remote crash of a scanning engine via unpacking of crafted data files. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Client...

7.5CVSS

7.5AI Score

0.0005EPSS

2023-09-18 06:15 AM
12
cve
cve

CVE-2023-38150

Windows Kernel Elevation of Privilege...

7.8CVSS

8AI Score

0.0005EPSS

2023-09-12 05:15 PM
390
Total number of security vulnerabilities2875