Lucene search
+L

78 matches found

Circl
Circl
added 2020/09/10 6:36 a.m.8 views

CVE-2020-0761

creationtimestamp| type| source ---|---|--- 2020-09-10 06:36:29+00:00| published-proof-of-concept| https://t.me/xnotes/195...

8.8CVSS8AI score0.03608EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/09/08 12:0 a.m.124 views

KB4570333: Windows 10 Version 1809 and Windows Server 2019 September 2020 Security Update

The remote Windows host is missing security update 4570333. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary co...

9.3CVSS8.2AI score0.53399EPSS
Exploits2References80
Tenable Nessus
Tenable Nessus
added 2020/09/08 12:0 a.m.56 views

KB4577070: Windows Server 2008 September 2020 Security Update

The remote Windows host is missing security update 4577070 or cumulative update 4577064. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when the Windows RSoP Service Application improperly handles memory. CVE-2020-0648 - An elevation of...

9.3CVSS8AI score0.53399EPSS
Exploits0References41
Tenable Nessus
Tenable Nessus
added 2020/09/08 12:0 a.m.80 views

KB4577053: Windows 7 and Windows Server 2008 R2 September 2020 Security Update

The remote Windows host is missing security update 4577053 or cumulative update 4577051. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability exists when the Windows RSoP Service Application improperly handles memory. CVE-2020-0648 - An elevation of...

9.3CVSS8AI score0.53399EPSS
Exploits0References43
NVD
NVD
added 2019/04/09 2:29 a.m.22 views

CVE-2019-0761

A security feature bypass vulnerability exists when Internet Explorer fails to validate the correct Security Zone of requests for specific URLs, aka 'Internet Explorer Security Feature Bypass Vulnerability'. This CVE ID is unique from CVE-2019-0768...

6.5CVSS5.8AI score0.03854EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/04/09 1:49 a.m.31 views

CVE-2019-0761

A security feature bypass vulnerability exists when Internet Explorer fails to validate the correct Security Zone of requests for specific URLs, aka 'Internet Explorer Security Feature Bypass Vulnerability'. This CVE ID is unique from CVE-2019-0768...

6.2AI score0.03854EPSS
Exploits0References1
CVE
CVE
added 2019/04/09 1:49 a.m.89 views

CVE-2019-0761

Technical details for CVE-2019-0761 are not publicly available in the provided documents; the corpus mentions IE security feature bypass but does not disclose affected components, versions, root cause, or remediation. Monitor for updates.

6.5CVSS5.6AI score0.03854EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/03/12 12:0 a.m.35 views

Security Updates for Internet Explorer (March 2019)

The Internet Explorer installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge. The vulnerability cou...

7.6CVSS7.5AI score0.3126EPSS
Exploits1References16
Tenable Nessus
Tenable Nessus
added 2019/03/12 12:0 a.m.52 views

KB4489884: Windows Server 2012 March 2019 Security Update

The remote Windows host is missing security update 4489884 or cumulative update 4489891. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that Windows Deployment Services TFTP Server handles objects in memory. An attacker who...

9.3CVSS8.1AI score0.34209EPSS
Exploits1References30
Check Point Advisories
Check Point Advisories
added 2018/02/25 12:0 a.m.56 views

Microsoft Windows EOT Font Engine Information Disclosure (CVE-2018-0761)

An information disclosure vulnerability has been reported in the EOT component of Microsoft Windows operating systems. The vulnerability is due to improper handling of objects in the Windows EOT Font Engine. A remote attacker could exploit this vulnerability by enticing a user to open specially...

2.1CVSS4.8AI score0.02367EPSS
Exploits0
NVD
NVD
added 2018/02/15 2:29 a.m.28 views

CVE-2018-0761

The Microsoft Windows Embedded OpenType EOT font engine in Microsoft Windows 7 SP1 and Windows Server 2008 R2 allows information disclosure, due to how the Windows EOT font engine handles embedded fonts, aka "Windows EOT Font Engine Information Disclosure Vulnerability". This CVE ID is unique fro...

5.5CVSS4.6AI score0.02367EPSS
Exploits0References3
Prion
Prion
added 2018/02/15 2:29 a.m.30 views

Information disclosure

The Microsoft Windows Embedded OpenType EOT font engine in Microsoft Windows 7 SP1 and Windows Server 2008 R2 allows information disclosure, due to how the Windows EOT font engine handles embedded fonts, aka "Windows EOT Font Engine Information Disclosure Vulnerability". This CVE ID is unique fro...

4.3CVSS4.5AI score0.06042EPSS
Exploits0References3Affected Software2
Prion
Prion
added 2018/02/15 2:29 a.m.22 views

Information disclosure

The Microsoft Windows Embedded OpenType EOT font engine in Microsoft Windows 7 SP1, Windows Server 2008 R2, and Windows Server 2012 allows information disclosure, due to how the Windows EOT font engine handles embedded fonts, aka "Windows EOT Font Engine Information Disclosure Vulnerability". Thi...

2.1CVSS4.5AI score0.06042EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2018/02/15 2:0 a.m.81 views

CVE-2018-0761

CVE-2018-0761 concerns the Windows EOT Font Engine information disclosure in Microsoft Windows, caused by improper handling of embedded fonts. Affects Windows 7 SP1 and Windows Server 2008 R2 (per NVD entry for CVE-2018-0761); related advisories describe the same class of vulnerability across Win...

5.5CVSS4.5AI score0.02367EPSS
Exploits0References3Affected Software2
Tenable Nessus
Tenable Nessus
added 2018/02/13 12:0 a.m.97 views

KB4074587: Windows 7 and Windows Server 2008 R2 February 2018 Security Update

The remote Windows host is missing security update 4074587 or cumulative update 4074598. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability...

9.3CVSS7.8AI score0.53715EPSS
Exploits6References18
CVE
CVE
added 2017/09/08 8:0 p.m.68 views

CVE-2017-0761

CVE-2017-0761 affects Android's media framework (libavc). It is a remote code execution vulnerability impacting Android 6.0/6.0.1, 7.0, 7.1.1, 7.1.2 and 8.0. The issue is documented in the Android Security Bulletin with patches released for the 2017-09-01/2017-09-05 patch levels; mitigation is to...

9.3CVSS7.9AI score0.01323EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/05/25 5:0 p.m.26 views

CVE-2016-0761

Cloud Foundry Garden-Linux versions prior to v0.333.0 and Elastic Runtime 1.6.x version prior to 1.6.17 contain a flaw in managing container files during Docker image preparation that could be used to delete, corrupt or overwrite host files and directories, including other container filesystems o...

9.4AI score0.01605EPSS
Exploits0References1
CVE
CVE
added 2017/05/25 5:0 p.m.48 views

CVE-2016-0761

CVE-2016-0761 affects Cloud Foundry Garden-Linux (versions prior to v0.333.0) and Elastic Runtime 1.6.x prior to 1.6.17. The flaw is in how container files are managed during Docker image preparation, which could allow deletion, corruption, or overwriting of host files and directories, including ...

10CVSS9.3AI score0.01605EPSS
Exploits0References1Affected Software2
NVD
NVD
added 2015/06/04 10:59 a.m.19 views

CVE-2015-0761

Cisco AnyConnect Secure Mobility Client before 3.18009 and 4.x before 4.02052 on Linux does not properly implement unspecified internal functions, which allows local users to obtain root privileges via crafted vpnagent options, aka Bug ID CSCus86790...

7.2CVSS6.3AI score0.00417EPSS
Exploits0References3
CVE
CVE
added 2015/06/04 10:0 a.m.49 views

CVE-2015-0761

Cisco AnyConnect Secure Mobility Client for Linux (Linux builds affected: before 3.1(8009) and before 4.0(2052)) contains a local privilege escalation due to improper implementation of internal functions, allowing an authenticated, local attacker to obtain root privileges by crafting vpnagent opt...

7.2CVSS6.5AI score0.00417EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder