Lucene search
+L

70 matches found

NVD
NVD
added 2020/04/15 3:15 p.m.20 views

CVE-2020-0895

A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'Windows VBScript Engine Remote Code Execution Vulnerability'...

7.6CVSS8.4AI score0.07746EPSS
Exploits0References1
OSV
OSV
added 2020/04/15 3:15 p.m.5 views

CVE-2020-0895

A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'Windows VBScript Engine Remote Code Execution Vulnerability'...

7.5CVSS7.7AI score0.07746EPSS
Exploits0References1
CVE
CVE
added 2020/04/15 3:12 p.m.130 views

CVE-2020-0895

CVE-2020-0895 is the Windows VBScript Engine RCE vulnerability. Connected CNVD-2020-31543 describes a VBScript Engine buffer overflow in IE (affecting IE9/11) related to memory handling. The provided documents confirm a remote code execution risk via VBScript objects in memory but do not specify ...

7.6CVSS8.3AI score0.07746EPSS
Exploits0References1Affected Software1
Kaspersky
Kaspersky
added 2020/04/14 12:0 a.m.50 views

KLA11749 Multiple vulnerabilities in Microsoft Browsers

Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Scripting Engine can be exploited remotely via specially crafted website to...

9.3CVSS8.6AI score0.30018EPSS
Exploits0References21
CVE
CVE
added 2019/05/16 6:17 p.m.122 views

CVE-2019-0895

The connected CNVD entries describe a Windows Jet Database Engine vulnerability as a buffer overflow/heap overflow issue arising when memory boundaries are not properly validated. They state an attacker could exploit this condition to cause memory corruption, affecting Windows/Windows Server envi...

9.3CVSS8.1AI score0.1371EPSS
Exploits0References1Affected Software8
OpenVAS
OpenVAS
added 2019/05/15 12:0 a.m.439 views

Microsoft Windows Multiple Vulnerabilities (KB4494440)

This host is missing a critical security update according to Microsoft KB4494440 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...

9.9CVSS7.6AI score0.26264EPSS
Exploits3References3
OpenVAS
OpenVAS
added 2019/05/15 12:0 a.m.85 views

Microsoft Windows Multiple Vulnerabilities (KB4499167)

This host is missing a critical security update according to Microsoft KB4499167 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...

9.9CVSS7.6AI score0.26264EPSS
Exploits3References3
Symantec
Symantec
added 2019/05/14 12:0 a.m.82 views

Microsoft Windows JET Database Engine CVE-2019-0895 Remote Code Execution Vulnerability

Description Microsoft Windows JET Database Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10...

0.7AI score0.1371EPSS
Exploits0Affected Software3
Tenable Nessus
Tenable Nessus
added 2019/05/14 12:0 a.m.93 views

KB4499180: Windows Server 2008 and Windows Vista SP2 May 2019 Security Update (BlueKeep)

The remote Windows host is missing security update 4499180 or cumulative update 4499149. It is, therefore, affected by multiple vulnerabilities : - A denial of service vulnerability exists when .NET Framework and .NET Core improperly process RegEx strings. An attacker who successfully exploited...

10CVSS8.4AI score0.99999EPSS
Exploits124References32
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 1:14 p.m.23 views

Security Bulletin: IBM SPSS SamplePower vsflex8l ActiveX Control ComboList Property Remote Code Execution Vulnerability (CVE-2014-0895)

Summary There is security vulnerability with an ActiveX control shipped by IBM SPSS SamplePower Version 3.0.1. This is corrected in the IBM SPSS SamplePower product Interim Fix. Vulnerability Details VULNERABILITY DETAILS: CVE IDs: CVE-2014-0895 DESCRIPTION: The latest available Interim Fix...

7.5CVSS0.3AI score0.0398EPSS
Exploits1Affected Software1
seebug.org
seebug.org
added 2018/03/23 12:0 a.m.76 views

Windows Kernel 64-bit stack memory disclosure in NtQueryInformationThread(ThreadBasicInformation)(CVE-2018-0895)

We have discovered that the nt!NtQueryInformationThread system call invoked with the 0 information class ThreadBasicInformation discloses portions of uninitialized kernel stack memory to user-mode clients. The vulnerability affects 64-bit versions of Windows 7 to 10. The specific layout of the...

5.3AI score0.02866EPSS
Exploits2
Circl
Circl
added 2018/03/20 12:0 a.m.16 views

CVE-2018-0895

creationtimestamp| type| source ---|---|--- 2018-03-20 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/44309 2018-03-23 08:30:56+00:00| seen| https://t.me/antichat/1124...

4.7CVSS5.4AI score0.02866EPSS
Exploits2References2
Prion
Prion
added 2018/03/14 5:29 p.m.34 views

Information disclosure

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way...

2.1CVSS4.4AI score0.02866EPSS
Exploits17References3Affected Software5
Prion
Prion
added 2018/03/14 5:29 p.m.25 views

Information disclosure

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way...

1.9CVSS4.3AI score0.02866EPSS
Exploits17References3Affected Software5
Prion
Prion
added 2018/03/14 5:29 p.m.26 views

Information disclosure

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way...

1.9CVSS4.3AI score0.02866EPSS
Exploits17References4Affected Software5
Prion
Prion
added 2018/03/14 5:29 p.m.27 views

Information disclosure

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way...

1.9CVSS4.3AI score0.02866EPSS
Exploits17References4Affected Software5
Prion
Prion
added 2018/03/14 5:29 p.m.30 views

Information disclosure

The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way...

1.9CVSS4.3AI score0.02866EPSS
Exploits17References3Affected Software5
CVE
CVE
added 2018/03/14 5:0 p.m.115 views

CVE-2018-0895

Technical details for CVE-2018-0895 are not provided in the connected documents. Public information in this dataset does not specify affected products/versions/impact. Monitor for updates.

4.7CVSS4.7AI score0.02866EPSS
Exploits2References4Affected Software8
OpenVAS
OpenVAS
added 2017/05/30 12:0 a.m.19 views

Nextcloud 'Calender and Addressbook' Information Disclosure Vulnerability - Linux

Nextcloud is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

3.5CVSS3.6AI score0.00724EPSS
Exploits0References2
CVE
CVE
added 2017/05/08 8:0 p.m.74 views

CVE-2017-0895

The CVE-2017-0895 vulnerability affects Nextcloud Server before 10.0.4 and 11.0.2, where a logical error allows disclosure of calendar and addressbook names to other logged‑in users. No calendar/addressbook content is exposed. Affected versions are fixed in the NC-SA-2017-012 advisory, with Nextc...

3.5CVSS3.9AI score0.00724EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder