CVE-2026-27749

Avira Internet Security contains a deserialization of untrusted data vulnerability in the System Speedup component. The Avira.SystemSpeedup.RealTimeOptimizer.exe process, which runs with SYSTEM privileges, deserializes data from a file located in C:\ProgramData using .NET BinaryFormatter without...

CVE-2026-27749

creationtimestamp| type| source ---|---|--- 2026-03-03 15:37:09+00:00| seen| https://infosec.exchange/users/quarkslab/statuses/116165982849269143 2026-03-03 15:37:37+00:00| seen| https://bsky.app/profile/quarkslab.bsky.social/post/3mg63xocxwc2l 2026-03-05 17:52:06+00:00| seen|...

PT-2026-22806

Name of the Vulnerable Software and Affected Versions Avira Internet Security affected versions not specified Description An improper link resolution issue exists in the Software Updater component of Avira Internet Security. The Software Updater, running with SYSTEM privileges, deletes a file...

MiracleLinux 8 : shim-15.4-2.ML.2 (AXSA:2021-2258:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2258:03 advisory. grub2: acpi command allows privileged user to load crafted ACPI tables when Secure Boot is enabled CVE-2020-14372 grub2: Use-after-free in rmmod...

Microsoft Office Multiple Vulnerabilities (Apr 2025) - Mac OS X

This host is missing an important security update for Microsoft Office on Mac OSX according to Microsoft security update April 2025 SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

CVE-2025-27749

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...

CVE-2025-27749

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...

CVE-2025-27749 Microsoft Office Remote Code Execution Vulnerability

...

CVE-2025-27749

CVE-2025-27749 is a Microsoft Office remote code execution vulnerability based on a use-after-free in Office components. The impact is local code execution with high severity (CVSS v3.1: 7.8, LOCAL, user interaction required). Microsoft and MSRC guidance indicate updates exist: security updates f...

CVE-2025-27749

creationtimestamp| type| source ---|---|--- 2025-04-08 16:14:25+00:00| seen| https://www.thezdi.com/blog/2025/4/8/the-april-2025-security-update-review 2025-04-09 07:18:23+00:00| seen| https://poliverso.org/objects/0477a01e-45bed739-4cf70d274d3babdb 2025-04-10 11:32:21+00:00| seen|...

CentOS 9 : shim-unsigned-x64-15.6-1.el9

The remote CentOS Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the shim-unsigned-x64-15.6-1.el9 build changelog. - A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot...

BELL-CVE-2020-27749 CVE-2020-27749 does not affect BellSoft software

Bulletin has no description...

CVE-2020-27749 affecting package grub2 for versions less than 2.06~rc1-7

CVE-2020-27749 affecting package grub2 for versions less than 2.06rc1-7. A patched version of the package is available...

Mageia: Security Advisory (MGASA-2021-0315)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Moderate: Red Hat Security Advisory: shim and fwupd security update

An update for fwupd, shim, shim-unsigned-aarch64, and shim-unsigned-x64 is now available for Red Hat Enterprise Linux 8.1 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which...

RHEL 8 : shim and fwupd (RHSA-2021:2790)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:2790 advisory. The shim package contains a first-stage UEFI boot loader that handles chaining to a trusted full boot loader under secure boot environments...

EulerOS Virtualization for ARM 64 3.0.6.0 : grub2 (EulerOS-SA-2021-2001)

According to the versions of the grub2 packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - A flaw was found in grub2 in versions prior to 2.06. Setparamprefix in the menu rendering code performs a length...

RHEL 8 : fwupd (RHSA-2021:2566)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2021:2566 advisory. The fwupd packages provide a service that allows session software to update device firmware. Security Fixes: grub2: acpi command allows...

[ASA-202106-43] grub: multiple issues

Arch Linux Security Advisory ASA-202106-43 ========================================== Severity: Medium Date : 2021-06-15 CVE-ID : CVE-2020-14372 CVE-2020-25632 CVE-2020-25647 CVE-2020-27749 CVE-2020-27779 CVE-2021-20225 CVE-2021-20233 Package : grub Type : multiple issues Remote : No Link :...

SUSE: Security Advisory (SUSE-SU-2021:14659-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...