Lucene search
+L

474 matches found

Zero Day Initiative
Zero Day Initiative
added 2025/08/06 12:0 a.m.10 views

(0Day) Microsoft Windows Internet Explorer Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the registration...

7.5CVSS7.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 3:34 a.m.11 views

CVE-2023-42757

Process Explorer before 17.04 allows attackers to make it functionally unavailable a denial of service for analysis by renaming an executable file to a new extensionless 255-character name and launching it with NtCreateUserProcess. This can occur through an issue in wcscats error handling...

4.2CVSS6.9AI score0.00271EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 4:15 p.m.9 views

CVE-2020-1315

An information disclosure vulnerability exists when Internet Explorer improperly handles objects in memory, aka 'Internet Explorer Information Disclosure Vulnerability'...

5.3CVSS6.2AI score0.0377EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 4:7 p.m.6 views

CVE-2020-1062

A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka 'Internet Explorer Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-1092...

7.6CVSS7.3AI score0.1425EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:10 p.m.7 views

CVE-2020-1092

A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka 'Internet Explorer Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2020-1062...

7.6CVSS7.7AI score0.1425EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:25 a.m.6 views

CVE-2019-1063

A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka 'Internet Explorer Memory Corruption Vulnerability'...

7.6CVSS7.7AI score0.07173EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:20 a.m.5 views

CVE-2019-0921

An spoofing vulnerability exists when Internet Explorer improperly handles URLs, aka 'Internet Explorer Spoofing Vulnerability'...

6.5CVSS6.7AI score0.03309EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:9 a.m.2 views

CVE-2019-0930

An information disclosure vulnerability exists when Internet Explorer improperly handles objects in memory, aka 'Internet Explorer Information Disclosure Vulnerability'...

6.5CVSS6.2AI score0.06553EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:7 a.m.12 views

CVE-2019-1429

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1426, CVE-2019-1427, CVE-2019-1428...

7.6CVSS7AI score0.72626EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:58 a.m.6 views

CVE-2019-0929

A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka 'Internet Explorer Memory Corruption Vulnerability'...

7.6CVSS7.7AI score0.08096EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:39 a.m.11 views

CVE-2019-0862

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0739, CVE-2019-0752, CVE-2019-0753...

7.6CVSS7.1AI score0.81551EPSS
Exploits6References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:23 a.m.11 views

CVE-2012-6502

Microsoft Internet Explorer before 10 allows remote attackers to obtain sensitive information about the existence of files, and read certain data from files, via a UNC share pathname in the SRC attribute of a SCRIPT element, as demonstrated by reading a name-value pair from a local file via a...

2.6CVSS6.1AI score0.10092EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:15 a.m.6 views

CVE-2010-1127

Microsoft Internet Explorer 6 and 7 does not initialize certain data structures during execution of the createElement method, which allows remote attackers to cause a denial of service NULL pointer dereference and application crash via crafted JavaScript code, as demonstrated by setting the 1...

5CVSS7AI score0.1827EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 12:15 a.m.7 views

CVE-2005-2274

Microsoft Internet Explorer 6.0 does not clearly associate a Javascript dialog box with the web page that generated it, which allows remote attackers to spoof a dialog box from a trusted site and facilitates phishing attacks, aka the "Dialog Origin Spoofing Vulnerability."...

2.6CVSS6.8AI score0.09582EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/21 11:50 p.m.13 views

CVE-2003-1283

KaZaA Media Desktop KMD 2.0 launches advertisements in the Internet Explorer IE local security zone, which could allow remote attackers to view local files and possibly execute arbitrary code...

7.5CVSS7.7AI score0.03516EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:30 p.m.9 views

CVE-2002-2031

Internet Explorer 5.0, 5.0.1 and 5.5 with JavaScript execution enabled allows remote attackers to determine the existence of arbitrary files via a script tag with a src parameter that references a non-JavaScript file, then using the onError event handler to monitor the results...

5CVSS7.2AI score0.20513EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/21 6:24 p.m.10 views

CVE-1999-0354

Internet Explorer 4.x or 5.x with Word 97 allows arbitrary execution of Visual Basic programs to the IE client through the Word 97 template, which doesn't warn the user that the template contains executable content. Also applies to Outlook when the client views a malicious email message...

7.5CVSS7.1AI score0.05111EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 6:15 p.m.11 views

CVE-1999-0793

Internet Explorer allows remote attackers to read files by redirecting data to a Javascript applet...

2.6CVSS6.9AI score0.13291EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/16 12:36 p.m.9 views

CVE-2025-1983 Stored Cross-Site Scripting in Ready_

A cross-site scripting XSS vulnerability in Ready's File Explorer upload functionality allows injection of arbitrary JavaScript code in filename. Injected content is stored on server and is executed every time a user interacts with the uploaded file...

5.1CVSS6.1AI score0.00569EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/04/16 12:36 p.m.21 views

CVE-2025-1983 Stored Cross-Site Scripting in Ready_

A cross-site scripting XSS vulnerability in Ready's File Explorer upload functionality allows injection of arbitrary JavaScript code in filename. Injected content is stored on server and is executed every time a user interacts with the uploaded file...

5.1CVSS0.00569EPSS
Exploits0References3
Rows per page
Query Builder