Lucene search
K

126 matches found

Prion
Prion
added 2020/07/14 11:15 p.m.18 views

Privilege escalation

An elevation of privilege vulnerability exists when the Windows Event Logging Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Event Logging Service Elevation of Privilege Vulnerability'. This CVE ID...

4.6CVSS7.8AI score0.00792EPSS
Exploits0References1Affected Software5
Prion
Prion
added 2020/07/14 11:15 p.m.22 views

Privilege escalation

An elevation of privilege vulnerability exists when the Windows Event Logging Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Event Logging Service Elevation of Privilege Vulnerability'. This CVE ID...

4.6CVSS7.8AI score0.00792EPSS
Exploits0References1Affected Software5
CVE
CVE
added 2020/07/14 10:54 p.m.106 views

CVE-2020-1371

Technical details about CVE-2020-1371 are not publicly provided in the connected documents. Please monitor for updates from official sources for affected products, impact, and remediation.

7.8CVSS8.6AI score0.00736EPSS
Exploits0References1Affected Software8
Cvelist
Cvelist
added 2020/07/14 10:54 p.m.31 views

CVE-2020-1371

An elevation of privilege vulnerability exists when the Windows Event Logging Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Event Logging Service Elevation of Privilege Vulnerability'. This CVE ID...

8.3AI score0.00736EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/07/14 10:54 p.m.31 views

CVE-2020-1365

An elevation of privilege vulnerability exists when the Windows Event Logging Service improperly handles memory.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Event Logging Service Elevation of Privilege Vulnerability'. This CVE ID...

8.3AI score0.00792EPSS
Exploits0References1
CVE
CVE
added 2020/07/14 10:54 p.m.101 views

CVE-2020-1365

Technical details about CVE-2020-1365 are not publicly provided in the connected documents. The Windows Event Logging Service elevation-of-privilege vulnerability lacks product/version/impact/fix specifics here. Monitor sources for updates and confirmed technical details.

7.8CVSS8.6AI score0.00792EPSS
Exploits0References1Affected Software8
Microsoft CVE
Microsoft CVE
added 2020/07/14 7:0 a.m.30 views

Windows Event Logging Service Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when the Windows Event Logging Service improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges. Th...

7.8CVSS4.2AI score0.00736EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/07/14 7:0 a.m.32 views

Windows Event Logging Service Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when the Windows Event Logging Service improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges. Th...

7.8CVSS4.2AI score0.00792EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/07/14 12:0 a.m.286 views

KB4565539: Windows 7 and Windows Server 2008 R2 July 2020 Security Update

The remote Windows host is missing security update 4565539 or cumulative update 4565524. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory. An attacker who successfully exploited this...

9.3CVSS7.8AI score0.94243EPSS
Exploits10References40
Kitploit
Kitploit
added 2020/07/12 1:0 p.m.154 views

Santa - A Binary Whitelisting/Blacklisting System For macOS

Santa is a binary whitelisting/blacklisting system for macOS. It consists of a kernel extension or a system extension on macOS 10.15+ that monitors for executions, a userland daemon that makes execution decisions based on the contents of a SQLite database, a GUI agent that notifies the user in ca...

7AI score
Exploits0References10
Microsoft KB
Microsoft KB
added 2020/04/10 12:0 a.m.7 views

Improvements for the System Update Readiness Tool in Windows 7 and Windows Server 2008 R2

Improvements for the System Update Readiness Tool in Windows 7 and Windows Server 2008 R2 About the System Update Readiness Tool The System Update Readiness Tool can help fix problems that might prevent Windows updates and service packs from installing. For more information and how to download th...

6.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2020/03/31 8:15 p.m.9 views

ImageMagick: NULL pointer dereference in CheckEventLogging function in MagickCore/log.c

In ImageMagick before 7.0.8-8, a NULL pointer dereference exists in the CheckEventLogging function in MagickCore/log.c...

9.8CVSS5.8AI score0.02032EPSS
Exploits0References4
OSV
OSV
added 2020/03/16 9:15 p.m.12 views

CVE-2019-19852

An XSS Injection vulnerability exists in Sangoma FreePBX and PBXact 13, 14, and 15 within the Call Event Logging report screen in the cel module at the admin/config.php?display=cel URI via date fields. This affects cel through 13.0.26.9, 14.x through 14.0.2.14, and 15.x through 15.0.15.4...

4.8CVSS6.3AI score0.00557EPSS
Exploits0References2
Prion
Prion
added 2020/03/16 9:15 p.m.11 views

Cross site scripting

An XSS Injection vulnerability exists in Sangoma FreePBX and PBXact 13, 14, and 15 within the Call Event Logging report screen in the cel module at the admin/config.php?display=cel URI via date fields. This affects cel through 13.0.26.9, 14.x through 14.0.2.14, and 15.x through 15.0.15.4...

3.5CVSS5.1AI score0.00557EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/03/16 8:36 p.m.23 views

CVE-2019-19852

An XSS Injection vulnerability exists in Sangoma FreePBX and PBXact 13, 14, and 15 within the Call Event Logging report screen in the cel module at the admin/config.php?display=cel URI via date fields. This affects cel through 13.0.26.9, 14.x through 14.0.2.14, and 15.x through 15.0.15.4...

5.2AI score0.00557EPSS
Exploits0References2
CVE
CVE
added 2020/03/16 8:36 p.m.58 views

CVE-2019-19852

An XSS injection vulnerability exists in Sangoma FreePBX and PBXact (13–15) within the Call Event Logging (cel) module, exploitable via the admin/config.php?display=cel page using date fields. Affected versions include cel up to 13.0.26.9, 14.x up to 14.0.2.14, and 15.x up to 15.0.15.4. The root ...

4.8CVSS5AI score0.00557EPSS
Exploits0References2Affected Software1
Carbon Black Blog
Carbon Black Blog
added 2020/03/10 3:0 p.m.45 views

2019: Looking Back at Malware

In 2019, attacker behavior evolved, becoming more evasive. The most common behaviors seen across all attack data—mapped to the MITRE ATT&CK™ Framework—were: Software Packing for Defense Evasion, Hidden Windows for Defense Evasion, Standard Application Layer Protocol for Command and Control C2,...

0.8AI score
Exploits0
Oracle linux
Oracle linux
added 2019/10/11 12:0 a.m.142 views

Unbreakable Enterprise kernel security update

4.14.35-1902.6.6 - RDMA/restrack: Protect from reentry to resource return path Leon Romanovsky Orabug: 30388717 4.14.35-1902.6.5 - hvnetvsc: fix vf serial matching with pci slot info Haiyang Zhang Orabug: 30373111 - rds: Use correct conn when dropping connections due to cancel Hakon Bugge Orabug:...

8.8CVSS7.6AI score0.0173EPSS
Exploits3
OSV
OSV
added 2019/03/25 7:29 p.m.2 views

CVE-2019-7613

Winlogbeat versions before 5.6.16 and 6.6.2 had an insufficient logging flaw. An attacker able to inject certain characters into a log entry could prevent Winlogbeat from recording the event...

7.5CVSS7.1AI score0.01324EPSS
Exploits0References2
Microsoft KB
Microsoft KB
added 2018/09/27 12:0 a.m.7 views

August 2, 2016 — KB3176929 (OS Build 14393.10)

August 2, 2016 — KB3176929 OS Build 14393.10 This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Improved reliability of background tasks and extensions for Microsoft Edge. Addressed licensing issue that prevents ap...

7AI score
Exploits0
Rows per page
Query Builder