Lucene search
K

493 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:50 a.m.5 views

SUSE CVE-2011-3389

The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Opera, and other products, encrypts data by using CBC mode with chained initialization vectors, which allows man-in-the-middle attackers to obtain plaintext HT...

3.7CVSS8.5AI score0.73327EPSS
Exploits4References51
BDU FSTEC
BDU FSTEC
added 2022/12/19 12:0 a.m.9 views

The vulnerability in the programming interface of DirectWrite on the Microsoft .NET Framework software platform, as well as in Microsoft Office applications, the Live Meeting web conference software, Microsoft Lync instant messaging software, and the Microsoft Silverlight software platform, arises due to errors in syntax analysis of TrueType fonts. This vulnerability allows an attacker to execute arbitrary code.

The vulnerability of the DirectWrite programming interface on the Microsoft .NET Framework, Microsoft Office applications, the web conferencing software Live Meeting, the instant messaging software Lync, and the Microsoft Silverlight platform is related to errors in syntax analysis of TrueType...

10CVSS6AI score0.54628EPSS
Exploits0References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2022/06/17 12:0 a.m.8 views

The vulnerability of the Microsoft Silverlight software platform, related to insufficient checking of pointers for access to elements, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Microsoft Silverlight software platform lies in the insufficient checking of pointers used to access elements in memory when processing objects. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information by opening a specially...

5.3CVSS7.4AI score0.6961EPSS
Exploits5References11Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/06/09 12:0 a.m.9 views

The vulnerability of the Microsoft Silverlight software platform, related to insufficient checking of pointers, allows a perpetrator to execute arbitrary code or gain access to read, modify, or delete data.

The vulnerability of the Microsoft Silverlight software platform lies in the insufficient checking of pointers used to access elements when processing HTML objects. Exploiting this vulnerability allows an attacker to execute arbitrary code or gain access to read, modify, or delete data by running...

9.3CVSS8.1AI score0.81868EPSS
Exploits8References6Affected Software1
CISA KEV Catalog
CISA KEV Catalog
added 2022/05/25 12:0 a.m.36 views

Microsoft Windows Remote Code Execution Vulnerability

A remote code execution vulnerability exists when components of Windows, .NET Framework, Office, Lync, and Silverlight fail to properly handle TrueType fonts...

9.3CVSS7.3AI score0.54628EPSS
In wildExploits0
CISA KEV Catalog
CISA KEV Catalog
added 2022/05/25 12:0 a.m.21 views

Microsoft Silverlight Information Disclosure Vulnerability

Microsoft Silverlight does not properly validate pointers during access to Silverlight elements, which allows remote attackers to obtain sensitive information via a crafted Silverlight application...

5.5CVSS4.5AI score0.6961EPSS
In wildExploits5
CISA KEV Catalog
CISA KEV Catalog
added 2022/05/25 12:0 a.m.36 views

Microsoft Silverlight Double Dereference Vulnerability

Microsoft Silverlight does not properly validate pointers during HTML object rendering, which allows remote attackers to execute code via a crafted Silverlight application...

9.3CVSS6AI score0.81868EPSS
In wildExploits8
CISA KEV Catalog
CISA KEV Catalog
added 2022/05/25 12:0 a.m.50 views

Microsoft Silverlight Runtime Remote Code Execution Vulnerability

Microsoft Silverlight mishandles negative offsets during decoding, which allows attackers to execute remote code or cause a denial-of-service DoS...

9.3CVSS8.8AI score0.69709EPSS
In wildExploits1
Trend Micro Simply Security
Trend Micro Simply Security
added 2021/07/09 12:0 a.m.14 views

BIOPASS RAT: New Malware Sniffs Victims via Live Streaming

We discovered a new malware that targets online gambling companies in China via a watering hole attack, in which visitors are tricked into downloading a malware loader disguised as a legitimate installer for well-known apps such as Adobe Flash Player or Microsoft Silverlight...

4.2AI score
Exploits0
VulnCheck KEV
VulnCheck KEV
added 2021/02/11 12:0 a.m.2 views

VulnCheck KEV: CVE-2013-3896

Microsoft Silverlight does not properly validate pointers during access to Silverlight elements, which allows remote attackers to obtain sensitive information via a crafted Silverlight application...

5.5CVSS7.3AI score0.6961EPSS
Exploits5References1
VulnCheck KEV
VulnCheck KEV
added 2021/02/11 12:0 a.m.1 views

VulnCheck KEV: CVE-2015-1671

A remote code execution vulnerability exists when components of Windows, .NET Framework, Office, Lync, and Silverlight fail to properly handle TrueType fonts...

9.3CVSS6.4AI score0.54628EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2020/05/21 4:14 a.m.155 views

MS15-049: Vulnerability in Silverlight could allow elevation of privilege: May 12, 2015

Resolves a vulnerability in Microsoft Silverlight that could allow elevation of privilege if a specially crafted Silverlight application is run on an affected system.SummaryThis security update resolves a vulnerability in Microsoft Silverlight. The vulnerability could allow elevation of privilege...

9.3CVSS6AI score0.13337EPSS
Exploits0
CNVD
CNVD
added 2020/04/30 12:0 a.m.9 views

Mono MonoX CMS Code Issue Vulnerability

MonoX CMS is an ASP.NET-based content management system CMS and social networking platform from Mono Croatia. A security vulnerability exists in Mono MonoX CMS 5.1.40.5152 and earlier versions, which stems from an insecure behavior in the ModuleGallery.HTML5Upload,...

9.8CVSS7.1AI score0.02764EPSS
Exploits1
CNVD
CNVD
added 2020/04/01 12:0 a.m.6 views

Telerik UI for Silverlight Path Traversal Vulnerability

Telerik UI for Silverlight is a suite of UI User Interface controls for application development from Telerik Bulgaria. A security vulnerability exists in Telerik UI for Silverlight versions prior to 2020.1.330. The vulnerability can be exploited by an attacker to upload a file to an arbitrary...

7.5CVSS7AI score0.01042EPSS
Exploits0
OSV
OSV
added 2020/03/31 1:15 p.m.4 views

CVE-2020-11414

An issue was discovered in Progress Telerik UI for Silverlight before 2020.1.330. The RadUploadHandler class in RadUpload for Silverlight expects a web request that provides the file location of the uploading file along with a few other parameters. The uploading file location should be inside the...

7.5CVSS7.2AI score0.01042EPSS
Exploits0References1
NVD
NVD
added 2020/03/31 1:15 p.m.33 views

CVE-2020-11414

An issue was discovered in Progress Telerik UI for Silverlight before 2020.1.330. The RadUploadHandler class in RadUpload for Silverlight expects a web request that provides the file location of the uploading file along with a few other parameters. The uploading file location should be inside the...

7.5CVSS7.6AI score0.01042EPSS
Exploits0References1
Prion
Prion
added 2020/03/31 1:15 p.m.15 views

Directory traversal

An issue was discovered in Progress Telerik UI for Silverlight before 2020.1.330. The RadUploadHandler class in RadUpload for Silverlight expects a web request that provides the file location of the uploading file along with a few other parameters. The uploading file location should be inside the...

5CVSS7.5AI score0.01042EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/03/31 12:15 p.m.50 views

CVE-2020-11414

CVE-2020-11414 affects Progress Telerik UI for Silverlight prior to 2020.1.330. The RadUploadHandler in RadUpload for Silverlight accepts a web request containing the file location and several parameters, but the location must be inside the directory where the upload handler is defined. Before 20...

7.5CVSS7.5AI score0.01042EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/03/31 12:15 p.m.18 views

CVE-2020-11414

An issue was discovered in Progress Telerik UI for Silverlight before 2020.1.330. The RadUploadHandler class in RadUpload for Silverlight expects a web request that provides the file location of the uploading file along with a few other parameters. The uploading file location should be inside the...

7.6AI score0.01042EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2019/10/23 12:0 a.m.103 views

July 2014 update for Microsoft Silverlight 5

July 2014 update for Microsoft Silverlight 5 Should I install this update This update is released on July 23, 2014 and offers a new build version 5.1.30514.0 of Microsoft Silverlight. For more information about Silverlight, see the What is Silverlight section. If you have Silverlight installed, o...

6.7AI score
Exploits0
Rows per page
Query Builder