Lucene search
K

91 matches found

Tenable Nessus
Tenable Nessus
added 2018/10/12 12:0 a.m.32 views

Foxit Reader < 9.3 Multiple Vulnerabilities

The version of Foxit Reader installed on the remote Windows host is prior to 9.3. It is, therefore, affected by multiple vulnerabilities. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid118093; scriptversion"1.7"; scriptsetattributeattribute:"pluginmodificationdate",...

8.8CVSS7.2AI score0.09482EPSS
Exploits15References32
OSV
OSV
added 2018/10/08 4:29 p.m.3 views

CVE-2018-3940

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused. An attacker needs to trick the user to open the malicious file to trigger...

8.8CVSS5.8AI score0.02114EPSS
Exploits1References3
CVE
CVE
added 2018/10/08 4:0 p.m.81 views

CVE-2018-3940

CVE-2018-3940 concerns Foxit PDF Reader’s JavaScript engine. The issue is a use-after-free vulnerability in Foxit PDF Reader 9.1.0.5096 that can be triggered by a specially crafted PDF, allowing memory reuse of a previously freed object. An attacker must entice the user to open the malicious file...

8.8CVSS7.9AI score0.02114EPSS
Exploits1References3Affected Software2
Check Point Advisories
Check Point Advisories
added 2018/10/02 12:0 a.m.90 views

Foxit Reader and PhantomPDF Multiple Use After Free Vulnerabilities (CVE-2018-3940; CVE-2018-3941; CVE-2018-3942; CVE-2018-3943; CVE-2018-3944; CVE-2018-3945; CVE-2018-3946)

A remote code execution vulnerability exists in Foxit Reader and PhantomPDF. The vulnerability is due to a use-after-free error while handling a specially crafted PDF file. Successful exploitation could lead to arbitrary code execution. Additional CVEs: CVE-2018-3957, CVE-2018-3958, CVE-2018-3959...

6.8CVSS8.6AI score0.09482EPSS
Exploits15
Cvelist
Cvelist
added 2018/03/16 2:4 p.m.9 views

CVE-2017-3940

...

Exploits0
CVE
CVE
added 2018/03/16 2:4 p.m.26 views

CVE-2017-3940

CVE-2017-3940 is rejected/not used; this entry does not represent an active vulnerability.

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/08/14 12:0 a.m.30 views

Debian DSA-3940-1 : cvs - security update

It was discovered that CVS, a centralised version control system, did not correctly handle maliciously constructed repository URLs, which allowed an attacker to run an arbitrary shell command. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this...

7.5CVSS6.9AI score0.05968EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2017/08/12 12:0 a.m.17 views

Debian: Security Advisory (DSA-3940-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.05968EPSS
Exploits1References3
Openbugbounty
Openbugbounty
added 2017/05/17 1:43 p.m.11 views

natwest.com XSS vulnerability

Vulnerable URL: http://www.natwest.com/apps/secure/tools/ibannew/Iban/IBANChecker.aspx?Theme='-confirmOPENBUGBOUNTY-' Details: Description| Value ---|--- Patched:| No Latest check for patch:| 10.08.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 3940 VIP websit...

6.3AI score
Exploits0
CVE
CVE
added 2016/10/10 10:0 a.m.50 views

CVE-2016-3940

CVE-2016-3940 affects the Android Synaptics touchscreen driver on Nexus 6P and Android One devices, prior to the 2016-10-05 patch level. The issue allows a local attacker to escalate privileges through a crafted application, due to a vulnerability in the Synaptics touchscreen driver (internal bug...

9.3CVSS8AI score0.00389EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.50 views

Oracle: Security Advisory (ELSA-2015-0290)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.05489EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.41 views

Oracle: Security Advisory (ELSA-2015-1272)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.2CVSS7AI score0.04517EPSS
Exploits1References2
CVE
CVE
added 2015/08/04 1:0 a.m.48 views

CVE-2015-3940

CVE-2015-3940 describes an untrusted search path vulnerability (CWE-427) in Schneider Electric Wonderware System Platform, affecting 2014 R2 and earlier versions. The issue allows local privilege escalation when a local user runs the vulnerable application and loads a Trojan-horse DLL from an uns...

6.9CVSS6.7AI score0.00457EPSS
Exploits0References5Affected Software1
RedHat Linux
RedHat Linux
added 2015/03/05 11:13 a.m.81 views

Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update

Updated kernel packages that fix multiple security issues, address several hundred bugs, and add numerous enhancements are now available as part of the ongoing support and maintenance of Red Hat Enterprise Linux version 7. This is the first regular update. Red Hat Product Security has rated this...

7.8CVSS6.9AI score0.05489EPSS
Exploits3References43
Check Point Advisories
Check Point Advisories
added 2014/12/28 12:0 a.m.28 views

Microsoft Graphics Device Interface Integer Overflow - Ver2 (CVE-2013-3940)

An integer overflow vulnerability has been reported in the way that the Windows Graphics Device Interface GDI processes specially crafted image files. An attacker could exploit this vulnerability by enticing a victim to open a specially crafted Windows Write file. Successful exploitation of this...

9.3CVSS5.5AI score0.34452EPSS
Exploits0
OpenVAS
OpenVAS
added 2014/12/14 12:0 a.m.53 views

Fedora Update for kernel FEDORA-2014-16632

Check the version of kernel SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868583";...

10CVSS8.4AI score0.37233EPSS
Exploits87References4
OpenVAS
OpenVAS
added 2014/10/18 12:0 a.m.38 views

Fedora Update for kernel FEDORA-2014-13045

Check the version of kernel SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868403";...

10CVSS8.5AI score0.37233EPSS
Exploits78References4
OpenVAS
OpenVAS
added 2014/07/28 12:0 a.m.35 views

Fedora Update for kernel FEDORA-2014-8487

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.6AI score0.37233EPSS
Exploits75References4
Tenable Nessus
Tenable Nessus
added 2014/07/23 12:0 a.m.78 views

RHEL 6 : kernel-rt (RHSA-2014:0913)

Updated kernel-rt packages that fix multiple security issues are now available for Red Hat Enterprise MRG 2.5. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings,...

7.8CVSS7.1AI score0.37233EPSS
Exploits24References21
RedHat Linux
RedHat Linux
added 2014/07/22 6:0 p.m.85 views

Important: Red Hat Security Advisory: kernel-rt security update

Updated kernel-rt packages that fix multiple security issues are now available for Red Hat Enterprise MRG 2.5. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings,...

7.8CVSS7AI score0.37233EPSS
Exploits24References10
Rows per page
Query Builder