127 matches found
CVE-2021-36295
Dell VNX2 OE for File versions 8.1.21.266 and earlier, contain an authenticated remote code execution vulnerability. A remote malicious user with privileges may exploit this vulnerability to execute commands on the system...
Download Monitor < 4.4.7 - Admin+ Stored Cross-Site Scripting
The plugin does not sanitise and escape the postid and downloadablefileversion parameters, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks...
KB5003364: Servicing stack update for Windows 10, version 1803: May 11, 2021
KB5003364: Servicing stack update for Windows 10, version 1803: May 11, 2021 This update applies to the following: Windows 10, version 1803 for 32-bit systems Windows 10, version 1803 for ARM64-based systems Windows 10, version 1803 for x64-based systems Windows Server, version 1803 Server Core...
Description of the security update for Office 2010: March 9, 2021 (KB4493214)
Description of the security update for Office 2010: March 9, 2021 KB4493214 Summary This security update resolves a Microsoft Excel Remote Code Execution Vulnerability. To learn more about the vulnerability, see the following security advisories: Microsoft Common Vulnerabilities and Exposures...
KB5001402: Servicing stack update for Windows 10, version 1607: April 13, 2021
KB5001402: Servicing stack update for Windows 10, version 1607: April 13, 2021 This update applies to the following: Windows 10, version 1607 for x86-based systems Windows 10, version 1607 for x64-based systems Windows Server 2016 Windows Server 2016 Server Core installation Summary This update...
CVE-2020-36252
CVE-2020-36252 affects OwnCloud Server 10.x prior to 10.3.1. An attacker who has one outgoing share from a victim can access any version of any file by requesting a predictable ID number, exploiting a privilege/access-control flaw. The vulnerability impacts confidentiality (high) and is classifie...
Owncloud 权限许可和访问控制问题漏洞
OwnCloud OwnCloud is a personal cloud storage solution from OwnCloud Owncloud, an American company. A privilege permission and access control issue vulnerability exists in OwnCloud Server, which can be exploited by an attacker to access any version of any file by sending a request with a...
Microsoft Windows DrawIconEx Local Privilege Escalation Exploit
This Metasploit module exploits CVE-2020-1054, an out of bounds write reachable from DrawIconEx within win32k. The out of bounds write can be used to overwrite the pvbits of a SURFOBJ. By utilizing this vulnerability to execute controlled writes to kernel memory, an attacker can gain arbitrary co...
Description of the security update for Microsoft Visual Studio 2013 Update 5: September 8, 2020
Description of the security update for Microsoft Visual Studio 2013 Update 5: September 8, 2020 Note This security update applies to Visual Studio 2013 Update 5 except for Visual Studio Isolated and Integrated Shells, Build Tools, Remote Tools, and Express for Web. Summary A remote code execution...
Description of the security update for Office 2016: September 8, 2020
Description of the security update for Office 2016: September 8, 2020 Summary This security update resolves a remote code execution vulnerability that exists in Microsoft Excel if the software does not correctly handle objects in memory. To learn more about the vulnerability, see Microsoft Common...
Servicing stack update for Windows 10, version 2004: September 8, 2020
Servicing stack update for Windows 10, version 2004: September 8, 2020 Applies to Windows 10, version 2004 for 32-bit Systems Windows 10, version 2004 for ARM64-based Systems Windows 10, version 2004 for x64-based Systems Windows Server, version 2004 Server Core installation Summary This update...
Servicing stack update for Windows 10, version 1809: July 14, 2020
Servicing stack update for Windows 10, version 1809: July 14, 2020 Applies to Windows 10, version 1809 for 32-bit Systems Windows 10, version 1809 for ARM64-based Systems Windows 10, version 1809 for x64-based Systems Windows Server 2019 Windows Server 2019 Server Core installation Summary This...
Servicing stack update for Windows 10: June 9, 2020
Servicing stack update for Windows 10: June 9, 2020 Applies to Windows 10 for 32-bit Systems Windows 10 for x64-based Systems SummaryThis update makes quality improvements to the servicing stack, which is the component that installs Windows updates. Servicing stack updates SSU makes sure that you...
Servicing stack update for Windows 10, version 1709: June 9, 2020
Servicing stack update for Windows 10, version 1709: June 9, 2020 Applies to Windows 10 Version 1709 for 32-bit Systems Windows 10 Version 1709 for ARM64-based Systems Windows 10 Version 1709 for x64-based Systems Windows Server, version 1709 Server Core Installation SummaryThis update makes...
Description of the security update for SharePoint Server 2010 Office Web Apps: April 14, 2020
Description of the security update for SharePoint Server 2010 Office Web Apps: April 14, 2020 Summary This security update resolves a remote code execution vulnerability that exists in Microsoft Word software if it does not correctly handle objects in memory. To learn more about the vulnerability...
Description of the security update for Office 2010: April 14, 2020
Description of the security update for Office 2010: April 14, 2020 Summary This security update resolves a remote code execution vulnerability that exists in Microsoft Word software if it does not correctly handle objects in memory. To learn more about the vulnerability, see Microsoft Common...
Description of the security update for Office 2010: April 14, 2020
Description of the security update for Office 2010: April 14, 2020 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft Common...
Servicing stack update for Windows 10, version 1809: April 14, 2020
Servicing stack update for Windows 10, version 1809: April 14, 2020 Applies to Windows 10 Version 1809 for 32-bit Systems Windows 10 Version 1809 for ARM64-based Systems Windows 10 Version 1809 for x64-based Systems Windows Server 2019 Windows Server 2019 Server Core installation Summary This...
Description of the security update for Word 2010: March 10, 2020
Description of the security update for Word 2010: March 10, 2020 Summary This security update resolves a remote code execution vulnerability that exists in Microsoft Word software if the program does not correctly handle objects in memory. To learn more about the vulnerability, see Microsoft Comm...
Servicing stack update for Windows 7 SP1 and Server 2008 R2 SP1: November 12, 2019
Servicing stack update for Windows 7 SP1 and Server 2008 R2 SP1: November 12, 2019 Summary This update makes quality improvements to the servicing stack, which is the component that installs Windows updates.We strongly recommend you install the latest servicing stack update SSU for your operating...