Lucene search
K

144 matches found

Debian CVE
Debian CVE
added 2018/06/11 9:0 p.m.22 views

CVE-2017-7752

A use-after-free vulnerability during specific user interactions with the input method editor IME in some languages due to how events are handled. This results in a potentially exploitable crash but would require specific user interaction to trigger. This vulnerability affects Firefox 54, Firefox...

8.8CVSS9.2AI score0.02026EPSS
Exploits0
OpenVAS
OpenVAS
added 2017/08/09 12:0 a.m.44 views

Microsoft Windows Multiple Vulnerabilities (KB4034668)

This host is missing a critical security update according to Microsoft KB4034668 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.6AI score0.72116EPSS
Exploits28References22
OpenVAS
OpenVAS
added 2017/08/09 12:0 a.m.75 views

Microsoft Windows Multiple Vulnerabilities (KB4034672)

This host is missing a critical security update according to Microsoft KB4034672 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.9AI score0.55415EPSS
Exploits0References12
OSV
OSV
added 2017/08/08 9:29 p.m.2 views

CVE-2017-8591

Windows Input Method Editor IME in Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an remote code execution vulnerability when it fails to properly handle objects in memory, aka "Windows IME Remote Code Execution...

7.8CVSS6.4AI score0.0397EPSS
Exploits0References3
Cvelist
Cvelist
added 2017/08/08 9:0 p.m.27 views

CVE-2017-8591

Windows Input Method Editor IME in Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an remote code execution vulnerability when it fails to properly handle objects in memory, aka "Windows IME Remote Code Execution...

8.5AI score0.0397EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2017/08/08 12:0 a.m.130 views

Windows 8.1 and Windows Server 2012 R2 August 2017 Security Updates

The remote Windows host is missing security update 4034672 or cumulative update 4034681. It is, therefore, affected by multiple vulnerabilities : - A denial of service vulnerability exists when Microsoft Windows improperly handles NetBIOS packets. An attacker who successfully exploited this...

9.3CVSS8.4AI score0.72116EPSS
Exploits15References18
Tenable Nessus
Tenable Nessus
added 2017/08/08 12:0 a.m.137 views

KB4034660: Windows 10 Version 1511 August 2017 Cumulative Update

The remote Windows host is missing security update 4034660. It is, therefore, affected by multiple vulnerabilities : - A denial of service vulnerability exists when Microsoft Windows improperly handles NetBIOS packets. An attacker who successfully exploited this vulnerability could cause a target...

9.3CVSS7.8AI score0.72116EPSS
Exploits38References27
Tenable Nessus
Tenable Nessus
added 2017/08/08 12:0 a.m.152 views

Windows Server 2012 August 2017 Security Updates

The remote Windows host is missing security update 4034666 or cumulative update 4034665. It is, therefore, affected by multiple vulnerabilities : - A denial of service vulnerability exists when Microsoft Windows improperly handles NetBIOS packets. An attacker who successfully exploited this...

9.3CVSS8.4AI score0.72116EPSS
Exploits15References18
Tenable Nessus
Tenable Nessus
added 2017/08/08 12:0 a.m.155 views

KB4034658: Windows 10 Version 1607 and Windows Server 2016 August 2017 Cumulative Update

The remote Windows host is missing security update 4034658. It is, therefore, affected by multiple vulnerabilities : - A denial of service vulnerability exists when Microsoft Windows improperly handles NetBIOS packets. An attacker who successfully exploited this vulnerability could cause a target...

9.3CVSS7.7AI score0.72116EPSS
Exploits45References32
OSV
OSV
added 2017/07/11 9:29 p.m.3 views

CVE-2017-8566

Microsoft Windows 1607, 1703, and Windows Server 2016 allows an elevation of privilege vulnerability due to Windows Input Method Editor IME improperly handling parameters in a method of a DCOM class, aka "Windows IME Elevation of Privilege Vulnerability"...

7CVSS5.8AI score0.01002EPSS
Exploits0References3
Prion
Prion
added 2017/07/11 9:29 p.m.14 views

Privilege escalation

Microsoft Windows 1607, 1703, and Windows Server 2016 allows an elevation of privilege vulnerability due to Windows Input Method Editor IME improperly handling parameters in a method of a DCOM class, aka "Windows IME Elevation of Privilege Vulnerability"...

4.4CVSS6.9AI score0.01002EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2017/06/21 4:36 a.m.9 views

Mozilla: Use-after-free with IME input (MFSA 2017-16)

A use-after-free vulnerability during specific user interactions with the input method editor IME in some languages due to how events are handled. This results in a potentially exploitable crash but would require specific user interaction to trigger. This vulnerability affects Firefox 54, Firefox...

8.8CVSS7.3AI score0.02026EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2017/06/14 7:51 a.m.7 views

Mozilla: Use-after-free with IME input (MFSA 2017-16)

A use-after-free vulnerability during specific user interactions with the input method editor IME in some languages due to how events are handled. This results in a potentially exploitable crash but would require specific user interaction to trigger. This vulnerability affects Firefox 54, Firefox...

8.8CVSS7.3AI score0.02026EPSS
Exploits0References5
OSV
OSV
added 2017/06/14 12:0 a.m.4 views

UBUNTU-CVE-2017-7752

A use-after-free vulnerability during specific user interactions with the input method editor IME in some languages due to how events are handled. This results in a potentially exploitable crash but would require specific user interaction to trigger. This vulnerability affects Firefox 54, Firefox...

8.8CVSS6.9AI score0.02026EPSS
Exploits0References5
Microsoft KB
Microsoft KB
added 2017/03/14 7:0 a.m.191 views

March 14, 2017—KB4013429 (OS Build 14393.953)

March 14, 2017—KB4013429 OS Build 14393.953 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed known issue called out in KB3213986. Users may experience delays while running 3D...

9.3CVSS7.6AI score0.99693EPSS
Exploits130
BDU FSTEC
BDU FSTEC
added 2017/01/13 12:0 a.m.8 views

The vulnerability of the Windows operating system, which allows a hacker to increase their privileges

The vulnerability of the Input Method Editor component in the Windows operating system is related to errors during DLL loading. Exploiting this vulnerability can allow an attacker to increase their privileges locally...

7.2CVSS7.2AI score0.02181EPSS
Exploits0References3
Check Point Advisories
Check Point Advisories
added 2016/12/27 12:0 a.m.14 views

Microsoft Windows IME Elevation of Privilege (MS16-130: CVE-2016-7221)

An elevation of privilege vulnerability exists in Windows Input Method Editor IME. The vulnerability is due to the way Input Method Editor improperly handles DLL loading. A locally authenticated attacker can exploit this vulnerability by running a specially crafted application...

7.2CVSS4.2AI score0.02181EPSS
Exploits0
NVD
NVD
added 2016/11/10 6:59 a.m.23 views

CVE-2016-7221

Input Method Editor IME in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 mishandles DLL loading, which allows local users to gain privileges via...

7.8CVSS7.7AI score0.02181EPSS
Exploits0References3
OSV
OSV
added 2016/11/10 6:59 a.m.3 views

CVE-2016-7221

Input Method Editor IME in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 mishandles DLL loading, which allows local users to gain privileges via...

7.8CVSS5.8AI score0.02181EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2016/11/09 12:0 a.m.30 views

Microsoft Windows Multiple Vulnerabilities (3199172)

This host is missing a critical security update according to Microsoft Bulletin MS16-130. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS7.4AI score0.69829EPSS
Exploits0References6
Rows per page
Query Builder