CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2651 matches found

CNVD•added 2020/03/14 12:0 a.m.•1 views

Chianxin Website Defender SQL Injection Rule Bypassing

There are SQL injection rule bypasses in the Chianson Web Defender product, which can be utilized by attackers to bypass its security protection and gain access to sensitive information in the database of the protected website...

7.8AI score

Exploits0

CNVD•added 2020/03/13 12:0 a.m.•1 views

Microsoft Windows Defender Security Center Privilege Mobilization Vulnerability

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is a set of operating systems for personal devices.Microsoft Windows Server is a set of server operating systems. Defender Security Center is one of the computer security components. A...

7.8CVSS6.9AI score0.00819EPSS

Exploits0

CNVD•added 2020/03/13 12:0 a.m.•4 views

Microsoft Windows Defender Security Center Privilege Mobilization Vulnerability (CNVD-2020-18167)

7.8CVSS6.9AI score0.00819EPSS

Exploits0

OSV•added 2020/03/12 4:15 p.m.•0 views

CVE-2020-0762

An elevation of privilege vulnerability exists when Windows Defender Security Center handles certain objects in memory.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Windows Defender Security Center Elevation of Privilege Vulnerability'. This CVE ID is...

7.8CVSS7.1AI score0.00819EPSS

Exploits0References1

OSV•added 2020/03/12 4:15 p.m.•1 views

CVE-2020-0763

7.8CVSS5.8AI score0.00819EPSS

Exploits0References1

NVD•added 2020/03/12 4:15 p.m.•14 views

CVE-2020-0762

7.8CVSS7.7AI score0.00819EPSS

Exploits0References1

NVD•added 2020/03/12 4:15 p.m.•16 views

CVE-2020-0763

7.8CVSS7.7AI score0.00819EPSS

Exploits0References1

Prion•added 2020/03/12 4:15 p.m.•17 views

Privilege escalation

4.6CVSS7.7AI score0.00819EPSS

Exploits0References1Affected Software2

Prion•added 2020/03/12 4:15 p.m.•16 views

Privilege escalation

4.6CVSS7.7AI score0.00819EPSS

Exploits0References1Affected Software2

Cvelist•added 2020/03/12 3:48 p.m.•18 views

CVE-2020-0763

8.6AI score0.00819EPSS

Exploits0References1

CVE•added 2020/03/12 3:48 p.m.•84 views

CVE-2020-0763

CVE-2020-0763 is a Windows Defender Security Center elevation-of-privilege vulnerability. According to CNVD-2020-18167/18165, an attacker who can log on could exploit Defender Security Center by manipulating in-memory objects to elevate privileges. The initial description aligns with a memory-obj...

7.8CVSS8.5AI score0.00819EPSS

Exploits0References1Affected Software3

Cvelist•added 2020/03/12 3:48 p.m.•22 views

CVE-2020-0762

8.6AI score0.00819EPSS

Exploits0References1

CVE•added 2020/03/12 3:48 p.m.•98 views

CVE-2020-0762

CVE-2020-0762 is an elevation of privilege vulnerability in Windows Defender Security Center. According to the NVD entry and CNVD summaries, it arises when Defender Security Center handles certain objects in memory, enabling an attacker who can log on locally to elevate privileges. The vulnerabil...

7.8CVSS8.5AI score0.00819EPSS

Exploits0References1Affected Software2

ThreatPost•added 2020/03/10 1:0 p.m.•14 views

Variant of Paradise Ransomware Targets Office IQY Files

A new variant of the Paradise ransomware attacks rarely-targeted Microsoft Office Excel IQY files, providing a new and relatively inobtrusive way to infiltrate and hijack an organization’s network, researchers have found. Lastline Labs’ James Haughom discovered the variant in December in a spam...

0.5AI score

Exploits0References6

ThreatPost•added 2020/03/10 1:0 p.m.•126 views

Variant of Paradise Ransomware Targets Office IQY Files

0.5AI score

Exploits0References6

Microsoft CVE•added 2020/03/10 7:0 a.m.•31 views

Windows Defender Security Center Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when Windows Defender Security Center handles certain objects in memory. To exploit the vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted command that could exploit the vulnerability t...

7.8CVSS3.6AI score0.00819EPSS

Exploits0

Microsoft CVE•added 2020/03/10 7:0 a.m.•25 views

Windows Defender Security Center Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when Windows Defender Security Center handles certain objects in memory. To exploit the vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted command that could exploit the vulnerability t...

7.8CVSS3.6AI score0.00819EPSS

Exploits0

VulnCheck KEV•added 2020/02/25 12:0 a.m.•5 views

VulnCheck KEV: CVE-2018-0986

A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption, aka "Microsoft Malware Protection Engine Remote Code Execution Vulnerability." This affects Windows Defender, Windows Intune...

9.3CVSS7.9AI score0.61482EPSS

Exploits2References1

Microsoft Secure•added 2020/02/24 5:0 p.m.•37 views

MISA expands with new members and new product additions

Another RSA Conference RSAC and another big year for the Microsoft Intelligent Security Association MISA. MISA was launched at RSAC 2018 with 26 members and a year later we had doubled in size to 53 members. Today, I am excited to share that the association has again doubled in size to 102 member...

0.7AI score

Exploits0

The Hacker News•added 2020/02/21 4:36 p.m.•4 views

Microsoft Brings Defender Antivirus for Linux, Coming Soon for Android and iOS

Almost within a year after releasing Microsoft Defender Advanced Threat Protection ATP for macOS computers, Microsoft today announced a public preview of its antivirus software for various Linux distributions, including Ubuntu, RHEL, CentOS and Debian. If this news hasn't gotten you excited yet...

5.9AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by