Lucene search
K

352 matches found

Cvelist
Cvelist
added 2020/03/12 3:48 p.m.28 views

CVE-2020-0822

An elevation of privilege vulnerability exists when the Windows Language Pack Installer improperly handles file operations, aka 'Windows Language Pack Installer Elevation of Privilege Vulnerability'...

8.6AI score0.00731EPSS
Exploits0References1
CVE
CVE
added 2020/03/12 3:48 p.m.126 views

CVE-2020-0822

CVE-2020-0822 is an Elevation of Privilege vulnerability in the Windows Language Pack Installer caused by improper handling of file operations. Evidence from security feeds (e.g., Tenable plugin for KB4541506/KB4541504) confirms the issue is addressed by Microsoft security updates that fix how th...

7.8CVSS8.5AI score0.00731EPSS
Exploits0References1Affected Software8
Microsoft CVE
Microsoft CVE
added 2020/03/10 7:0 a.m.24 views

Windows Language Pack Installer Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists when the Windows Language Pack Installer improperly handles file operations. An attacker who successfully exploited this vulnerability could run processes in an elevated context. An attacker could exploit this vulnerability by running a specially...

7.8CVSS3.7AI score0.00731EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/11/13 12:0 a.m.38 views

openSUSE Security Update : MozillaThunderbird (openSUSE-2019-2452)

This update for MozillaThunderbird to version 68.2.1 provides the following fixes : - Security issues fixed bsc1154738 : - CVE-2019-15903: Fixed a heap overflow in the expat library bsc1149429. - CVE-2019-11757: Fixed a use-after-free when creating index updates in IndexedDB bsc1154738. -...

8.8CVSS7.5AI score0.06643EPSS
Exploits3References15
OPENSUSE Linux
OPENSUSE Linux
added 2019/11/09 12:0 a.m.233 views

Recommended update for MozillaThunderbird (important)

openSUSE Security Update: Recommended update for MozillaThunderbird Announcement ID: openSUSE-SU-2019:2452-1 Rating: important References: 1149126 1149429 1151186 1152778 1153879 1154738 Cross-References: CVE-2019-11757 CVE-2019-11758 CVE-2019-11759 CVE-2019-11760 CVE-2019-11761 CVE-2019-11762...

8.8CVSS9.6AI score0.06643EPSS
Exploits3References6
Microsoft KB
Microsoft KB
added 2019/11/08 12:0 a.m.37 views

Description of Office 2010 Language Pack SP2

Description of Office 2010 Language Pack SP2 Introduction Microsoft Office 2010 Language Pack Service Pack 2 SP2 provides the latest updates for Office 2010 Language Pack. Additionally, this service pack includes two kinds of fixes: Previously unreleased fixes that were created specifically for...

6.6AI score
Exploits0
Microsoft KB
Microsoft KB
added 2019/10/08 12:0 a.m.8 views

Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 (KB4524103)

Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 KB4524103 Applies to: Microsoft .NET Framework 3.5 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.6 Microsoft .NET Framework 4.6.1 Microsoft .NET Framework 4.6.2...

6.6AI score
Exploits0
Microsoft KB
Microsoft KB
added 2019/09/27 12:0 a.m.48 views

Security and Quality Rollup updates for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1 and 4.7.2 for Windows 8.1, RT 8.1, and Server 2012 R2 (KB 4340558)

Security and Quality Rollup updates for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1 and 4.7.2 for Windows 8.1, RT 8.1, and Server 2012 R2 KB 4340558 This article also applies to the following: Microsoft .NET Framework 3.5 Summary This security update resolves the following...

9.3CVSS7.4AI score0.4287EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2019/09/10 7:0 a.m.126 views

Security Only Update for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 (KB4514598)

Security Only Update for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 KB4514598 Applies to: Microsoft .NET Framework 3.5 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.6 Microsoft .NET Framework 4.6.1 Microsoft .NET Framework 4.6.2...

5.5CVSS5.9AI score0.01039EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2019/08/26 12:0 a.m.73 views

Servicing stack update for Windows 10 version 1903: August 27, 2019

Servicing stack update for Windows 10 version 1903: August 27, 2019 Summary This update makes quality improvements to the servicing stack, which is the component that installs Windows updates. Key changes include: Addresses an uninstall issue with automated maintenance. If the Features on Demand...

6.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/07/26 12:0 a.m.53 views

Ubuntu 16.04 LTS / 18.04 LTS : Firefox regressions (USN-4054-2)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4054-2 advisory. USN-4054-1 fixed vulnerabilities in Firefox. The update introduced various minor regressions. This update fixes the problems. We apologize for the...

5.6AI score
Exploits0References1
OSV
OSV
added 2019/07/25 8:3 p.m.4 views

USN-4054-2 firefox regressions

USN-4054-1 fixed vulnerabilities in Firefox. The update introduced various minor regressions. This update fixes the problems. We apologize for the inconvenience. Original advisory details: A sandbox escape was discovered in Firefox. If a user were tricked in to installing a malicious language pac...

5.9AI score
Exploits0References2
OSV
OSV
added 2019/07/23 2:15 p.m.7 views

CVE-2019-9811

As part of a winning Pwn2Own entry, a researcher demonstrated a sandbox escape by installing a malicious language pack and then opening a browser feature that used the compromised translation. This vulnerability affects Firefox ESR 60.8, Firefox 68, and Thunderbird 60.8...

8.3CVSS8.9AI score
Exploits0References15
OSV
OSV
added 2019/07/23 2:15 p.m.1 views

DEBIAN-CVE-2019-9811

As part of a winning Pwn2Own entry, a researcher demonstrated a sandbox escape by installing a malicious language pack and then opening a browser feature that used the compromised translation. This vulnerability affects Firefox ESR 60.8, Firefox 68, and Thunderbird 60.8...

8.3CVSS7.2AI score0.02574EPSS
Exploits1References1
Prion
Prion
added 2019/07/23 2:15 p.m.17 views

Design/Logic Flaw

As part of a winning Pwn2Own entry, a researcher demonstrated a sandbox escape by installing a malicious language pack and then opening a browser feature that used the compromised translation. This vulnerability affects Firefox ESR 60.8, Firefox 68, and Thunderbird 60.8...

5.1CVSS8.2AI score0.02574EPSS
Exploits1References15Affected Software6
Cvelist
Cvelist
added 2019/07/23 1:26 p.m.22 views

CVE-2019-9811

As part of a winning Pwn2Own entry, a researcher demonstrated a sandbox escape by installing a malicious language pack and then opening a browser feature that used the compromised translation. This vulnerability affects Firefox ESR 60.8, Firefox 68, and Thunderbird 60.8...

8.7AI score0.02574EPSS
Exploits1References15
AlpineLinux
AlpineLinux
added 2019/07/23 1:26 p.m.37 views

CVE-2019-9811

As part of a winning Pwn2Own entry, a researcher demonstrated a sandbox escape by installing a malicious language pack and then opening a browser feature that used the compromised translation. This vulnerability affects Firefox ESR 60.8, Firefox 68, and Thunderbird 60.8...

8.3CVSS8.8AI score0.02574EPSS
Exploits1
Debian CVE
Debian CVE
added 2019/07/23 1:26 p.m.36 views

CVE-2019-9811

As part of a winning Pwn2Own entry, a researcher demonstrated a sandbox escape by installing a malicious language pack and then opening a browser feature that used the compromised translation. This vulnerability affects Firefox ESR 60.8, Firefox 68, and Thunderbird 60.8...

8.3CVSS9AI score0.02574EPSS
Exploits1
OSV
OSV
added 2019/07/21 6:17 p.m.9 views

MGASA-2019-0211 Updated firefox packages fix security vulnerability

Sandbox escape via installation of malicious language pack. CVE-2019-9811 Script injection within domain through inner window reuse. CVE-2019-11711 Cross-origin POST requests can be made with NPAPI plugins by following 308 redirects. CVE-2019-11712 Use-after-free with HTTP/2 cached stream...

9.8CVSS8AI score0.20271EPSS
Exploits2References4
OSV
OSV
added 2019/07/17 10:22 p.m.8 views

USN-4064-1 thunderbird vulnerabilities

A sandbox escape was discovered in Thunderbird. If a user were tricked in to installing a malicious language pack, an attacker could exploit this to gain additional privileges. CVE-2019-9811 Multiple security issues were discovered in Thunderbird. If a user were tricked in to opening a specially...

9.8CVSS7AI score0.20271EPSS
Exploits2References11
Rows per page
Query Builder