Lucene search
K

444 matches found

CNNVD
CNNVD
added 2024/08/13 12:0 a.m.5 views

Microsoft Windows Network Virtualization 安全漏洞

Microsoft Windows Network Virtualization is a Microsoft technology that allows multiple virtual networks to run on the same physical network while maintaining logical independence. A security vulnerability exists in Microsoft Windows Network Virtualization. An attacker could exploit the...

9.1CVSS6.2AI score0.02173EPSS
Exploits0References2
NVD
NVD
added 2024/08/02 11:16 a.m.36 views

CVE-2024-40723

The specific API in HWATAIServiSign Windows Version from CHANGING Information Technology does not properly validate the length of server-side inputs. When a user visits a spoofed website, unauthenticated remote attackers can cause a stack-based buffer overflow in the HWATAIServiSign, temporarily...

4.3CVSS0.00481EPSS
Exploits0References2
NVD
NVD
added 2024/08/02 11:16 a.m.42 views

CVE-2024-40721

The specific API in TCBServiSign Windows Version from CHANGING Information Technology does not properly validate server-side input. When a user visits a spoofed website, unauthenticated remote attackers can cause the TCBServiSign to load a DLL from an arbitrary path...

8.8CVSS0.00564EPSS
Exploits0References2
OSV
OSV
added 2024/08/02 11:16 a.m.4 views

CVE-2024-40722

The specific API in TCBServiSign Windows Version from CHANGING Information Technology does does not properly validate the length of server-side input. When a user visits a spoofed website, unauthenticated remote attackers can cause a stack-based buffer overflow in the TCBServiSign, temporarily...

4.3CVSS6.2AI score0.00481EPSS
Exploits0References2
CVE
CVE
added 2024/08/02 10:27 a.m.41 views

CVE-2024-40723

CVE-2024-40723 concerns HWATAIServiSign Windows Version from CHANGING Information Technology. The vulnerability is a stack-based buffer overflow caused by improper validation of the length of server-side inputs in a specific API. It can be triggered when an unauthenticated remote user visits a sp...

4.3CVSS5.1AI score0.00481EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/08/02 10:27 a.m.27 views

CVE-2024-40723 CHANGING Information Technology HWATAIServiSign Windows Version - Stack-based Buffer Overflow

The specific API in HWATAIServiSign Windows Version from CHANGING Information Technology does not properly validate the length of server-side inputs. When a user visits a spoofed website, unauthenticated remote attackers can cause a stack-based buffer overflow in the HWATAIServiSign, temporarily...

4.3CVSS0.00481EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/08/02 10:18 a.m.21 views

CVE-2024-40722 CHANGING Information Technology TCBServiSign Windows Version - Stack-based Buffer Overflow

The specific API in TCBServiSign Windows Version from CHANGING Information Technology does does not properly validate the length of server-side input. When a user visits a spoofed website, unauthenticated remote attackers can cause a stack-based buffer overflow in the TCBServiSign, temporarily...

4.3CVSS7.6AI score0.00481EPSS
Exploits0References2
CVE
CVE
added 2024/08/02 10:18 a.m.49 views

CVE-2024-40722

CVE-2024-40722 affects the TCBServiSign Windows Version from CHANGING Information Technology. The vulnerability is caused by an API that does not properly validate the length of server-side input, enabling unauthenticated remote attackers to trigger a stack-based buffer overflow when a user visit...

4.3CVSS5.1AI score0.00481EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/08/02 10:18 a.m.32 views

CVE-2024-40722 CHANGING Information Technology TCBServiSign Windows Version - Stack-based Buffer Overflow

The specific API in TCBServiSign Windows Version from CHANGING Information Technology does does not properly validate the length of server-side input. When a user visits a spoofed website, unauthenticated remote attackers can cause a stack-based buffer overflow in the TCBServiSign, temporarily...

4.3CVSS0.00481EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/08/02 10:14 a.m.33 views

CVE-2024-40721 CHANGING Information Technology TCBServiSign Windows Version - Improper Input Validation

The specific API in TCBServiSign Windows Version from CHANGING Information Technology does not properly validate server-side input. When a user visits a spoofed website, unauthenticated remote attackers can cause the TCBServiSign to load a DLL from an arbitrary path...

8.8CVSS7.1AI score0.00564EPSS
Exploits0References2
CVE
CVE
added 2024/08/02 10:14 a.m.109 views

CVE-2024-40721

The CVE-2024-40721 entry concerns an improper server-side input validation in the API of the TCBServiSign Windows Version from CHANGING Information Technology . The flaw allows unauthenticated remote attackers to trigger loading a DLL from an arbitrary path when a user visits a spoofed website, i...

8.8CVSS8.7AI score0.00564EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/08/02 10:14 a.m.51 views

CVE-2024-40721 CHANGING Information Technology TCBServiSign Windows Version - Improper Input Validation

The specific API in TCBServiSign Windows Version from CHANGING Information Technology does not properly validate server-side input. When a user visits a spoofed website, unauthenticated remote attackers can cause the TCBServiSign to load a DLL from an arbitrary path...

8.8CVSS0.00564EPSS
Exploits0References2
CVE
CVE
added 2024/08/02 10:10 a.m.78 views

CVE-2024-40720

The CVE-2024-40720 entry concerns CHANGING Information Technology’s TCBServiSign Windows Version. A specific API fails to properly validate server-side input, enabling unauthenticated, remote attackers to modify the HKEY_CURRENT_USER registry when a user visits a spoofed website and execute arbit...

8.8CVSS9AI score0.00593EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/08/02 10:5 a.m.35 views

CVE-2024-40719 CHANGING Information Technology TCBServiSign Windows Version - Inadequate Encryption Strength

The encryption strength of the authorization keys in CHANGING Information Technology TCBServiSign Windows Version is insufficient. When a remote attacker tricks a victim into visiting a malicious website, TCBServiSign will treat that website as a legitimate server and interact with it...

6.5CVSS0.00185EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/08/02 12:0 a.m.9 views

PT-2024-29000 · Changing Information Technology · Tcbservisign

Name of the Vulnerable Software and Affected Versions: TCBServiSign Windows Version from CHANGING Information Technology affected versions not specified Description: The issue concerns improper validation of server-side input in a specific API. This allows unauthenticated remote attackers to caus...

8.8CVSS7.3AI score0.00564EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/07/28 12:0 a.m.16 views

PT-2024-29710 · Splashtop · Splashtop Streamer

Name of the Vulnerable Software and Affected Versions: Splashtop Streamer for Windows versions prior to 3.7.0.0 Description: The MSI installer for Splashtop Streamer for Windows uses a temporary folder with weak permissions during installation. A local user can exploit this to escalate privileges...

7CVSS7.3AI score0.0014EPSS
Exploits0References5
Microsoft KB
Microsoft KB
added 2024/07/23 12:0 a.m.5 views

July 23, 2024—KB5040525 (OS Build 19045.4717) Preview

None None...

6.1AI score
Exploits0
CNNVD
CNNVD
added 2024/07/09 12:0 a.m.6 views

Microsoft Windows Security Vulnerabilities

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. A security vulnerability exists in Microsoft Windows CoreMessaging. An attacker could exploit the vulnerability to elevate privileges. The following products and versions are...

8.8CVSS6.6AI score0.00367EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/07/09 12:0 a.m.6 views

Microsoft XBox Security Breach

Microsoft XBox is a gaming application from Microsoft, an American company. A security vulnerability exists in Microsoft XBox. An attacker can exploit the vulnerability to remotely execute code. The following products and versions are affected:Windows 11 version 21H2 for x64-based Systems,Windows...

7.1CVSS6.8AI score0.01001EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/06/11 12:0 a.m.4 views

Microsoft Windows Kernel Buffer Error Vulnerability

Microsoft Windows Kernel is the kernel of the Windows operating system from Microsoft Corporation USA. A buffer error vulnerability exists in Microsoft Windows Kernel. An attacker can exploit the vulnerability to elevate privileges. The following products and versions are affected:Windows 10...

8.8CVSS6.8AI score0.0078EPSS
Exploits0References4
Rows per page
Query Builder