Lucene search
K

105 matches found

CVE
CVE
added 2019/04/09 8:15 p.m.148 views

CVE-2019-0793

Technical details about CVE-2019-0793 are not publicly available in the provided connected documents; monitor for updates.

9.3CVSS8.8AI score0.17217EPSS
Exploits0References2Affected Software8
CVE
CVE
added 2019/04/09 8:15 p.m.152 views

CVE-2019-0791

CVE-2019-0791 is a remote code execution vulnerability in the Microsoft XML Core Services (MSXML) parser when it processes user input. The issue enables network-based exploitation with user interaction required, and is rated HIGH (CVSS v3.0: 8.8). The initial document does not specify a fixed pat...

9.3CVSS8.8AI score0.17217EPSS
Exploits0References2Affected Software8
CVE
CVE
added 2019/04/09 8:15 p.m.158 views

CVE-2019-0795

Technical details for CVE-2019-0795 are not provided in the supplied documents; no affected products, root cause, impact, or remediation are stated. Monitor for updates from connected sources.

9.3CVSS8.8AI score0.21322EPSS
Exploits0References2Affected Software8
CVE
CVE
added 2019/04/09 8:15 p.m.147 views

CVE-2019-0790

Technical details for CVE-2019-0790 are not provided in the supplied documents; no affected products, versions, root cause, or mitigations are listed. Monitor for updates.

9.3CVSS8.8AI score0.21322EPSS
Exploits0References2Affected Software7
Microsoft CVE
Microsoft CVE
added 2019/04/09 7:0 a.m.26 views

MS XML Remote Code Execution Vulnerability

A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input. An attacker who successfully exploited the vulnerability could run malicious code remotely to take control of the user’s system. To exploit the vulnerability, an attacker could hos...

9.3CVSS4.1AI score0.21322EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2019/04/09 7:0 a.m.67 views

April 9, 2019—KB4493458 (Security-only update)

April 9, 2019—KB4493458 Security-only update Improvements and fixes This security update includes quality improvements. Key changes include: Addresses an issue in which netdom.exe fails to run, and the error, “The command failed to complete successfully” appears. Addresses an issue that may cause...

9.3CVSS7.8AI score0.4523EPSS
Exploits42
Microsoft KB
Microsoft KB
added 2019/04/09 7:0 a.m.263 views

April 9, 2019—KB4493448 (Security-only update)

April 9, 2019—KB4493448 Security-only update Improvements and fixes This security update includes quality improvements. Key changes include: Provides protections against Spectre Variant 2 CVE-2017-5715 and Meltdown CVE-2017-5754 for VIA-based computers. These protections are enabled by default fo...

9.3CVSS8.8AI score0.84172EPSS
Exploits52
Prion
Prion
added 2019/04/09 2:29 a.m.17 views

Remote code execution

A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka 'MS XML Remote Code Execution Vulnerability'...

9.3CVSS8.9AI score0.12499EPSS
Exploits0References1Affected Software5
CVE
CVE
added 2019/04/09 1:52 a.m.140 views

CVE-2019-0756

Affected component: Microsoft XML Core Services MSXML parser. Description from CVE-2019-0756 indicates a remote code execution vulnerability when the MSXML parser processes user input. Severity is high (CVSS v3 base 8.8; v2 base 9.3). The connected PRION/NVD entries reiterate the same advisory wi...

9.3CVSS8.8AI score0.12499EPSS
Exploits0References1Affected Software8
OpenVAS
OpenVAS
added 2019/03/13 12:0 a.m.107 views

Microsoft Windows Multiple Vulnerabilities (KB4489899)

This host is missing a critical security update according to Microsoft KB4489899 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...

9.8CVSS7.2AI score0.6285EPSS
Exploits8References3
Microsoft KB
Microsoft KB
added 2019/03/12 7:0 a.m.186 views

March 12, 2019—KB4489878 (Monthly Rollup)

March 12, 2019—KB4489878 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4486565 released February 19, 2019 and addresses the following issues: Addresses an issue that may prevent the Event Viewer from showing some event...

9.3CVSS8.5AI score0.53298EPSS
Exploits11
0day.today
0day.today
added 2019/01/17 12:0 a.m.83 views

Microsoft Windows 10 - XmlDocument Insecure Sharing Privilege Escalation Exploit

Exploit for windows platform in category local exploits Windows: XmlDocument Insecure Sharing Elevation of Privilege Platform: Windows 10 1809 almost certainly earlier versions as well. Class: Elevation of Privilege Security Boundary per Windows Security Service Criteria: AppContainer Sandbox...

4.4CVSS8.1AI score0.0243EPSS
Exploits2
exploitpack
exploitpack
added 2019/01/16 12:0 a.m.24 views

Microsoft Windows 10 - XmlDocument Insecure Sharing Privilege Escalation

Microsoft Windows 10 - XmlDocument Insecure Sharing Privilege Escalation Windows: XmlDocument Insecure Sharing Elevation of Privilege Platform: Windows 10 1809 almost certainly earlier versions as well. Class: Elevation of Privilege Security Boundary per Windows Security Service Criteria:...

0.6AI score
Exploits0
Microsoft KB
Microsoft KB
added 2019/01/08 8:0 a.m.93 views

January 8, 2019—KB4480972 (Security-only update)

January 8, 2019—KB4480972 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Provides protections against an additional subclass of speculative execution...

9.3CVSS7.5AI score0.60631EPSS
Exploits10
Microsoft KB
Microsoft KB
added 2019/01/08 8:0 a.m.55 views

January 8, 2019—KB4480973 (OS Build 15063.1563)

January 8, 2019—KB4480973 OS Build 15063.1563 Windows 10, version 1703, reached end of service on October 8, 2018 . Devices running Windows 10 Home, Pro, Pro for Workstation, and IoT Core editions will no longer receive monthly security and quality updates that contain protection from the latest...

9.3CVSS7.3AI score0.82902EPSS
Exploits34
Microsoft KB
Microsoft KB
added 2019/01/08 8:0 a.m.236 views

January 8, 2019—KB4480963 (Monthly Rollup)

January 8, 2019—KB4480963 Monthly Rollup Improvements and fixes This security update addresses the following issues: Provides protections against an additional subclass of speculative execution side-channel vulnerability known as Speculative Store Bypass CVE-2018-3639 for AMD-based computers. The...

9.3CVSS7.5AI score0.60631EPSS
Exploits16
Microsoft KB
Microsoft KB
added 2019/01/08 8:0 a.m.61 views

January 8, 2019—KB4480966 (OS Build 17134.523)

January 8, 2019—KB4480966 OS Build 17134.523 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addresses an issue that affects PowerShell remoting loop back using non-administrator accounts...

9.8CVSS7.2AI score0.82902EPSS
Exploits37
Microsoft KB
Microsoft KB
added 2019/01/08 8:0 a.m.159 views

January 8, 2019—KB4480975 (Monthly Rollup)

January 8, 2019—KB4480975 Monthly Rollup Improvements and fixes This security update addresses the following issues: Provides protections against an additional subclass of speculative execution side-channel vulnerability known as Speculative Store Bypass CVE-2018-3639 for AMD-based computers. The...

9.3CVSS7AI score0.60631EPSS
Exploits14
0day.today
0day.today
added 2018/12/22 12:0 a.m.104 views

VBScript - MSXML Execution Policy Bypass Exploit

According to https://blogs.windows.com/msedgedev/2017/07/07/update-disabling-vbscript-internet-explorer-11/, Starting from Windows 10 Fall Creators Update, VBScript execution in IE 11 should be disabled for websites in the Internet Zone and the Restricted Sites Zone by default. However, the...

7.6CVSS0.45762EPSS
Exploits2
exploitpack
exploitpack
added 2018/12/20 12:0 a.m.20 views

VBScript - MSXML Execution Policy Bypass

VBScript - MSXML Execution Policy Bypass According to https://blogs.windows.com/msedgedev/2017/07/07/update-disabling-vbscript-internet-explorer-11/, Starting from Windows 10 Fall Creators Update, VBScript execution in IE 11 should be disabled for websites in the Internet Zone and the Restricted...

0.1AI score
Exploits0
Rows per page
Query Builder