Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7634 matches found

Slackware Linux
Slackware Linuxadded 2017/10/01 8:31 p.m.44 views

[slackware-security] openexr

New openexr packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/openexr-2.2.0-i586-2slack14.2.txz: Rebuilt. Patched bugs that may lead to program crashes or possibly execution of arbitrary code...

8.8CVSS8.3AI score0.0331EPSS
Exploits0
Slackware Linux
Slackware Linuxadded 2017/09/28 6:39 a.m.27 views

[slackware-security] gegl

New gegl packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/gegl-0.2.0-i586-4slack14.2.txz: Rebuilt. Patched integer overflows in operations/external/ppm-load.c that could allow a...

7.5CVSS7.1AI score0.1326EPSS
Exploits0
VulnCheck KEV
VulnCheck KEVadded 2017/09/28 12:0 a.m.3 views

VulnCheck KEV: CVE-2017-11826

A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user...

9.3CVSS7.6AI score0.81627EPSS
Exploits3References1
Zero Day Initiative
Zero Day Initiativeadded 2017/09/26 12:0 a.m.28 views

Apple Safari String link Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of the...

6.8CVSS2.9AI score0.05301EPSS
Exploits1References1
Tenable Nessus
Tenable Nessusadded 2017/09/19 12:0 a.m.66 views

Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / 14.2 / current : httpd (SSA:2017-261-01) (Optionsbleed)

New httpd packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2017-261-01. The te...

7.5CVSS6.8AI score0.94999EPSS
Exploits9References2
Slackware Linux
Slackware Linuxadded 2017/09/18 7:20 p.m.28 views

[slackware-security] libgcrypt

New libgcrypt packages are available for Slackware 14.2 and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/libgcrypt-1.7.9-i586-1slack14.2.txz: Upgraded. Mitigate a local side-channel attack on Curve25519 dubbed "May the Fourth be With...

7.5CVSS7.5AI score0.0351EPSS
Exploits0
Slackware Linux
Slackware Linuxadded 2017/09/15 8:16 p.m.52 views

[slackware-security] bluez

New bluez packages are available for Slackware 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/bluez-5.47-i586-1slack14.2.txz: Upgraded. Fixed an information disclosure vulnerability which allows remote...

6.5CVSS6.3AI score0.07774EPSS
Exploits3
Zero Day Initiative
Zero Day Initiativeadded 2017/09/15 12:0 a.m.33 views

Microsoft Chakra Array Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Chakra. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.5CVSS7.9AI score0.08716EPSS
Exploits0References1
Prion
Prionadded 2017/09/13 1:29 a.m.16 views

Memory corruption

Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 R2, and Microsoft Edge and Internet Explorer in Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of th...

7.6CVSS7.7AI score0.09202EPSS
Exploits0References4Affected Software1
CNVD
CNVDadded 2017/09/13 12:0 a.m.1 views

Microsoft Edge Memory Corruption Vulnerability (CNVD-2017-28654)

Microsoft Windows 10 is an operating system released by Microsoft Corporation.Microsoft Edge is a web browser that comes with the system.scripting engine is a JavaScript engine component. A memory corruption vulnerability exists in the scripting engine of Edge in Microsoft Windows. A remote...

7.6CVSS7.7AI score0.08716EPSS
Exploits0References1
CNVD
CNVDadded 2017/09/13 12:0 a.m.1 views

Microsoft Windows Shell Remote Code Execution Vulnerability

Microsoft Windows 7 SP1, etc. are a series of operating systems from Microsoft USA.Shell is one of the scripting plug-ins. A remote code execution vulnerability exists in Shell in Microsoft Windows. A remote attacker can exploit this vulnerability to execute arbitrary code in the context of the...

7.6CVSS7.8AI score0.20519EPSS
Exploits0References1
OpenVAS
OpenVASadded 2017/09/13 12:0 a.m.34 views

Microsoft Office 2013 Service Pack 1 Remote Code Execution Vulnerability (KB3213564)

This host is missing an important security update according to Microsoft KB3213564 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

9.3CVSS7.5AI score0.17224EPSS
Exploits0References2
OpenVAS
OpenVASadded 2017/09/13 12:0 a.m.25 views

Microsoft PowerPoint 2016 Multiple RCE Vulnerabilities (KB4011041)

This host is missing an important security update according to Microsoft KB4011041 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

9.3CVSS7.5AI score0.21319EPSS
Exploits0References3
OpenVAS
OpenVASadded 2017/09/13 12:0 a.m.32 views

Microsoft Office 2016 Remote Code Execution Vulnerability (KB3203474)

This host is missing an important security update according to Microsoft KB3203474 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

9.3CVSS7.5AI score0.2026EPSS
Exploits0References2
OpenVAS
OpenVASadded 2017/09/13 12:0 a.m.71 views

Microsoft Office 2007 Service Pack 3 Remote Code Execution Vulnerability (KB3213646)

This host is missing an important security update according to Microsoft KB3213646 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

9.3CVSS7.5AI score0.17224EPSS
Exploits0References2
OpenVAS
OpenVASadded 2017/09/13 12:0 a.m.41 views

Microsoft Excel 2007 Service Pack 3 Remote Code Execution Vulnerability (KB4011062)

This host is missing an important security update according to Microsoft KB4011062 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

9.3CVSS7.5AI score0.16358EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiativeadded 2017/09/12 12:0 a.m.50 views

Microsoft Office PowerPoint ppt File Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office PowerPoint. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS3.2AI score0.21319EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2017/09/12 12:0 a.m.1 views

PT-2017-2961 · Microsoft · Office

Name of the Vulnerable Software and Affected Versions: Microsoft Office affected versions not specified Description: The issue is related to the improper handling of objects in memory by Microsoft Office software. This can be exploited by a remote attacker to execute arbitrary code. The...

9.3CVSS7.7AI score0.2026EPSS
Exploits0References8
OSV
OSVadded 2017/09/08 6:29 p.m.2 views

CVE-2016-5759

The mkdumprd script called "dracut" in the current working directory "." allows local users to trick the administrator into executing code as root...

7.8CVSS5.8AI score0.00382EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiativeadded 2017/09/07 12:0 a.m.35 views

Foxit Reader XFA gotoURL Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the gotoURL method...

6.8CVSS3.4AI score0.03195EPSS
Exploits0References1
Rows per page
Query Builder