Lucene search
+L

193 matches found

redhatcve
redhatcve
added 2019/10/04 9:25 p.m.14 views

CVE-2009-0840

Heap-based buffer underflow in the readPostBody function in cgiutil.c in mapserv in MapServer 4.x before 4.10.4 and 5.x before 5.2.2 allows remote attackers to have an unknown impact via a negative value in the Content-Length HTTP header...

10CVSS6.6AI score0.09011EPSS
Exploits7References3
prion
prion
added 2019/04/09 9:29 p.m.18 views

Information disclosure

An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0840...

2.1CVSS5.1AI score0.02127EPSS
Exploits0References1Affected Software5
cve
cve
added 2019/04/09 8:18 p.m.142 views

CVE-2019-0840

The connected documents identify CVE-2019-0840 as a Windows kernel information disclosure vulnerability. The disclosed details describe an issue in the Microsoft Windows kernel where information can be exposed due to improper handling of objects in memory, leading to unauthorized access to sensit...

5.5CVSS6.1AI score0.02127EPSS
Exploits0References1Affected Software3
symantec
symantec
added 2019/04/09 12:0 a.m.27 views

Microsoft Windows CVE-2019-0840 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Technologies Affected Microsoft Windows 10 Version 1709 for ARM64-based Systems Microsoft Windows 10...

1.7AI score0.02127EPSS
Exploits0Affected Software2
nessus
nessus
added 2019/04/09 12:0 a.m.103 views

KB4493441: Windows 10 Version 1709 and Windows Server Version 1709 April 2019 Security Update

The remote Windows host is missing security update 4493441. It is, therefore, affected by multiple vulnerabilities : - A security feature bypass vulnerability exists in Windows which could allow an attacker to bypass Device Guard when Windows improperly handles calls to the LUAFV driver luafv.sys...

9.8CVSS8.3AI score0.4523EPSS
Exploits61References38
prion
prion
added 2018/02/15 2:29 a.m.22 views

Memory corruption

Microsoft Edge in Microsoft Windows 10 1607, 1703, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0835, CVE-2018-0836,...

9.3CVSS7.3AI score0.65858EPSS
Exploits21References3
prion
prion
added 2018/02/15 2:29 a.m.24 views

Memory corruption

Microsoft Edge and ChakraCore in Microsoft Windows 10 1703 and 1709 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0835, CVE-2018-0837, CVE-2018-083...

7.6CVSS7.3AI score0.65858EPSS
Exploits21References3
prion
prion
added 2018/02/15 2:29 a.m.17 views

Memory corruption

Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka...

9.3CVSS7.3AI score0.65858EPSS
Exploits21References5Affected Software1
cve
cve
added 2018/02/15 2:0 a.m.108 views

CVE-2018-0840

Technical details specific to CVE-2018-0840 are not provided in the connected documents. The GHSA advisories describe ChakraCore memory corruption vulnerabilities in general, but do not disclose affected products/versions or impacts for this CVE. Monitor for updates.

9.3CVSS7.3AI score0.53715EPSS
Exploits2References5Affected Software1
circl
circl
added 2018/02/15 12:0 a.m.13 views

CVE-2018-0840

creationtimestamp| type| source ---|---|--- 2018-02-15 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/44077...

9.3CVSS7.6AI score0.53715EPSS
Exploits2References1
openvas
openvas
added 2018/02/14 12:0 a.m.80 views

Microsoft Windows Multiple Vulnerabilities (KB4074591)

This host is missing a critical security update according to Microsoft KB4074591 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.8AI score0.65858EPSS
Exploits33References1
openvas
openvas
added 2018/02/14 12:0 a.m.151 views

Microsoft Windows Internet Explorer Multiple RCE Vulnerabilities (KB4074736)

This host is missing a critical security update according to Microsoft KB4074736 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.3CVSS7.5AI score0.53715EPSS
Exploits6References1
openvas
openvas
added 2018/02/14 12:0 a.m.270 views

Microsoft Windows Multiple Vulnerabilities (KB4074590)

This host is missing a critical security update according to Microsoft KB4074590 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.8AI score0.65858EPSS
Exploits33References1
symantec
symantec
added 2018/02/13 12:0 a.m.35 views

Microsoft Internet Explorer and Edge CVE-2018-0840 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer and Edge are prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsof...

7.8AI score0.53715EPSS
Exploits2Affected Software1
checkpoint_advisories
checkpoint_advisories
added 2018/02/13 12:0 a.m.37 views

Microsoft Browser Scripting Engine Memory Corruption (CVE-2018-0840)

A memory corruption vulnerability exists in Microsoft Browser. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

9.3CVSS7.7AI score0.53715EPSS
Exploits2
kaspersky
kaspersky
added 2018/02/13 12:0 a.m.694 views

KLA11199 Multiple vulnerabilities in Microsoft Browsers

Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Microsoft Edge c...

9.3CVSS8.2AI score0.65858EPSS
Exploits21References32
nessus
nessus
added 2018/02/13 12:0 a.m.80 views

Security Updates for Internet Explorer (February 2018)

The Internet Explorer installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability could...

9.3CVSS8.2AI score0.53715EPSS
Exploits6References6
nessus
nessus
added 2018/02/13 12:0 a.m.97 views

KB4074587: Windows 7 and Windows Server 2008 R2 February 2018 Security Update

The remote Windows host is missing security update 4074587 or cumulative update 4074598. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability...

9.3CVSS7.8AI score0.53715EPSS
Exploits6References18
ubuntucve
ubuntucve
added 2017/11/16 11:29 p.m.15 views

CVE-2017-0840

An information disclosure vulnerability in the Android media framework libstagefright. Product: Android. Versions: 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-62948670...

7.5CVSS7.1AI score0.00636EPSS
Exploits0References2
cve
cve
added 2017/11/16 11:0 p.m.61 views

CVE-2017-0840

CVE-2017-0840 is an information-disclosure vulnerability in Android’s media framework (libstagefright). Affected products/versions include Android 5.0.2–8.0 (5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0). The issue is classified as Information Disclosure (Media framework) with High impact per...

7.5CVSS6.8AI score0.00636EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder