The vulnerability of the WDAC OLE DB driver for SQL Server on Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the WDAC OLE DB driver for SQL Server on Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the ODBC driver for Microsoft Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the ODBC driver for Microsoft Windows operating systems is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the Distributed File System component of the Windows operating system, which allows a hacker to execute arbitrary code.

The vulnerability of the Distributed File System component of the Windows operating system arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the installed Windows operating system on HP laptops allows attackers to gain elevated privileges.

The vulnerability of the installed Windows operating system on HP laptops relates to incorrect path name restrictions for the restricted access directory. Exploiting this vulnerability can allow attackers to gain increased privileges...

The vulnerability of the Internet Storage Name Service (iSNS) for Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Internet Storage Name Service iSNS on Windows operating systems is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Protected Extensible Authentication Protocol (PEAP) implementation in Windows operating systems allows a perpetrator to induce a service failure.

The vulnerability of the Protected Extensible Authentication Protocol PEAP implementation in Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures...

Microsoft Office Information Disclosure Vulnerability (CNVD-2023-18285)

Microsoft Office is a suite of office software developed by Microsoft Corporation based on the Windows operating system.Microsoft Office suffers from an information disclosure vulnerability. An attacker can exploit the vulnerability to execute arbitrary code by combining it with other...

SUSE CVE-2008-4324

The user interface event dispatcher in Mozilla Firefox 3.0.3 on Windows XP SP2 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a series of keypress, click, onkeydown, onkeyup, onmousedown, and onmouseup events. NOTE: it was later reported th...

SUSE CVE-2016-0980

Adobe Flash Player before 18.0.0.329 and 19.x and 20.x before 20.0.0.306 on Windows and OS X and before 11.2.202.569 on Linux, Adobe AIR before 20.0.0.260, Adobe AIR SDK before 20.0.0.260, and Adobe AIR SDK & Compiler before 20.0.0.260 allow attackers to execute arbitrary code or cause a denial o...

SUSE CVE-2018-12368

Windows 10 does not warn users before opening executable files with the SettingContent-ms extension even when they have been downloaded from the internet and have the "Mark of the Web." Without the warning, unsuspecting users unfamiliar with this new file type might run an unwanted executable. Th...

SUSE CVE-2018-1000201

ruby-ffi version 1.9.23 and earlier has a DLL loading issue which can be hijacked on Windows OS, when a Symbol is used as DLL name instead of a String This vulnerability appears to have been fixed in v1.9.24 and later...

SUSE CVE-2021-0066

Improper input validation in firmware for IntelR PROSet/Wireless Wi-Fi in multiple operating systems and KillerTM Wi-Fi in Windows 10 and 11 may allow an unauthenticated user to potentially enable escalation of privilege via local access...

The vulnerability of the command-line interface of the network traffic analysis and detection tool, Cortex XDR Agent, for operating systems based on Windows, allows a perpetrator to execute arbitrary commands.

The vulnerability of the command-line interface of the network traffic analysis, network detection, and response tool Cortex XDR Agent for Windows operating systems is related to a breach of the data protection mechanism. Exploiting this vulnerability allows an attacker to execute arbitrary...

CVE-2023-21820

Windows Distributed File System DFS Remote Code Execution Vulnerability...

Windows iSCSI Service Denial of Service Vulnerability

...

PT-2023-1461 · Microsoft · Http.Sys +1

Name of the Vulnerable Software and Affected Versions: Windows HTTP.sys affected versions not specified Description: The issue is related to an information disclosure vulnerability in the HTTP.sys driver of Windows operating systems. This vulnerability can allow an attacker to gain unauthorized...

PT-2023-1444 · Microsoft · Peap +1

Name of the Vulnerable Software and Affected Versions: Microsoft Protected Extensible Authentication Protocol PEAP affected versions not specified Description: The issue is related to insufficient input validation in the implementation of the Protected Extensible Authentication Protocol PEAP in...

PT-2023-1522 · Microsoft · Windows Active Directory Domain Services +1

Name of the Vulnerable Software and Affected Versions: Windows Active Directory Domain Services affected versions not specified Description: The issue exists due to insufficient input validation in the implementation of the Active Directory Domain Services API in the Windows operating system. Thi...

Siemens COMOS

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please seeSiemens' ProductCERT Security Advisories CERT Services | Services |...

The vulnerability of the WDAC OLE DB component for SQL Server on Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the WDAC OLE DB component for SQL Server on Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...