Lucene search
K

144 matches found

Prion
Prion
added 2022/05/24 9:15 p.m.18 views

Design/Logic Flaw

A vulnerability in CyberLink Power Director v14 allows attackers to escalate privileges via a crafted .exe file...

6.8CVSS7.5AI score0.00943EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2022/05/24 8:55 p.m.24 views

CVE-2022-29333

A vulnerability in CyberLink Power Director v14 allows attackers to escalate privileges via a crafted .exe file...

7.8AI score0.00943EPSS
Exploits1References3
CVE
CVE
added 2022/05/24 8:55 p.m.49 views

CVE-2022-29333

CVE-2022-29333 affects CyberLink PowerDirector v14, enabling privilege escalation via a crafted executable. The public descriptions confirm a local escalation Vector with user interaction required and partial to high impact on confidentiality, integrity, and availability per CVSS metrics, but no ...

7.8CVSS7.5AI score0.00943EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2022/03/31 11:15 p.m.26 views

CVE-2022-27965

Xlpd v7.0.0094 and below contains a binary hijack vulnerability which allows attackers to execute arbitrary code via a crafted .exe file...

6.9CVSS0.00454EPSS
Exploits1References2
NVD
NVD
added 2022/03/31 11:15 p.m.29 views

CVE-2022-27964

Xmanager v7.0.0096 and below contains a binary hijack vulnerability which allows attackers to execute arbitrary code via a crafted .exe file...

6.9CVSS0.00454EPSS
Exploits1References2
NVD
NVD
added 2022/03/31 11:15 p.m.31 views

CVE-2022-27963

Xftp 7.0.0088p and below contains a binary hijack vulnerability which allows attackers to execute arbitrary code via a crafted .exe file...

6.9CVSS0.00421EPSS
Exploits1References2
Prion
Prion
added 2022/03/31 11:15 p.m.22 views

Design/Logic Flaw

Xmanager v7.0.0096 and below contains a binary hijack vulnerability which allows attackers to execute arbitrary code via a crafted .exe file...

6.9CVSS6.8AI score0.00454EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2022/03/31 11:15 p.m.19 views

Design/Logic Flaw

Xftp 7.0.0088p and below contains a binary hijack vulnerability which allows attackers to execute arbitrary code via a crafted .exe file...

6.9CVSS6.8AI score0.00421EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/03/31 10:11 p.m.32 views

CVE-2022-27966

Xshell v7.0.0099 and below contains a binary hijack vulnerability which allows attackers to execute arbitrary code via a crafted .exe file...

7AI score0.00454EPSS
Exploits1References2
Cvelist
Cvelist
added 2022/03/31 10:11 p.m.39 views

CVE-2022-27963

Xftp 7.0.0088p and below contains a binary hijack vulnerability which allows attackers to execute arbitrary code via a crafted .exe file...

7.2AI score0.00421EPSS
Exploits1References2
Malwarebytes
Malwarebytes
added 2021/10/18 12:21 p.m.14 views

A week in security (Oct 11 – Oct 17)

Last week on Malwarebytes Labs Google warns some users that FancyBear’s been prowling around Inside Apple: How macOS attacks are evolving The joy of phishing your employees ExpressVPN made a choice, and so did I: Lock and Code S02E19 Update now! Apple patches another privilege escalation bug in i...

0.8AI score
Exploits0
Packet Storm
Packet Storm
added 2021/01/25 12:0 a.m.258 views

Backdoor.Win32.DarkKomet.bhfh Insecure Permissions

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/66fa06a4e3e799b059910dc17de295ae.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.DarkKomet.bhfh Vulnerability: Insecure Permissions Description: DarkKomet.bhfh create...

7.4AI score
Exploits0
Veracode
Veracode
added 2020/11/11 4:12 a.m.11 views

Malicious Package

wsbd.js is a malicious package. The package executes a malicious postinstall script which runs an exe file containing Trojan malware upon installation...

2.1AI score
Exploits0
NVD
NVD
added 2018/10/15 5:29 p.m.16 views

CVE-2018-15378

A vulnerability in ClamAV versions prior to 0.100.2 could allow an attacker to cause a denial of service DoS condition. The vulnerability is due to an error related to the MEW unpacker within the "unmew11" function libclamav/mew.c, which can be exploited to trigger an invalid read memory access v...

5.5CVSS5.2AI score0.01315EPSS
Exploits0References7
OSV
OSV
added 2018/10/15 5:29 p.m.3 views

ALPINE-CVE-2018-15378

A vulnerability in ClamAV versions prior to 0.100.2 could allow an attacker to cause a denial of service DoS condition. The vulnerability is due to an error related to the MEW unpacker within the "unmew11" function libclamav/mew.c, which can be exploited to trigger an invalid read memory access v...

5.5CVSS8.1AI score0.01315EPSS
Exploits0References1
OSV
OSV
added 2018/10/15 5:29 p.m.19 views

CVE-2018-15378

A vulnerability in ClamAV versions prior to 0.100.2 could allow an attacker to cause a denial of service DoS condition. The vulnerability is due to an error related to the MEW unpacker within the "unmew11" function libclamav/mew.c, which can be exploited to trigger an invalid read memory access v...

5.5CVSS6.4AI score
Exploits0References7
Cvelist
Cvelist
added 2018/10/15 5:0 p.m.20 views

CVE-2018-15378 Clam AntiVirus unmew11() Denial of Service Vulnerability

A vulnerability in ClamAV versions prior to 0.100.2 could allow an attacker to cause a denial of service DoS condition. The vulnerability is due to an error related to the MEW unpacker within the "unmew11" function libclamav/mew.c, which can be exploited to trigger an invalid read memory access v...

6.4AI score0.01315EPSS
Exploits0References7
AlpineLinux
AlpineLinux
added 2018/10/15 5:0 p.m.35 views

CVE-2018-15378

A vulnerability in ClamAV versions prior to 0.100.2 could allow an attacker to cause a denial of service DoS condition. The vulnerability is due to an error related to the MEW unpacker within the "unmew11" function libclamav/mew.c, which can be exploited to trigger an invalid read memory access v...

5.5CVSS6.6AI score0.01315EPSS
Exploits0
CVE
CVE
added 2018/10/15 5:0 p.m.135 views

CVE-2018-15378

CVE-2018-15378 affects ClamAV versions prior to 0.100.2. The root cause is an error in the MEW unpacker, specifically in the unmew11() function of libclamav/mew.c, which can trigger an invalid memory read when processing a specially crafted EXE file. The documented impact is a Denial of Service (...

5.5CVSS6.4AI score0.01315EPSS
Exploits0References7Affected Software1
Cisco
Cisco
added 2018/08/15 4:0 p.m.47 views

Cisco Email Security Appliance EXE File Scanning Bypass Vulnerability

A vulnerability in certain attachment detection mechanisms of Cisco Email Security Appliances ESA could allow an unauthenticated, remote attacker to bypass the filtering functionality of an affected system. The vulnerability is due to the improper detection of content within executable EXE files...

5.3CVSS1AI score0.02818EPSS
Exploits0References1
Rows per page
Query Builder