Lucene search
K

604 matches found

Kaspersky
Kaspersky
added 2023/03/14 12:0 a.m.301 views

KLA48553 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information, spoof user interface, cause denial of service, bypass security restrictions. Below is a complete list of...

9.8CVSS9.9AI score0.78152EPSS
Exploits1References72
Mageia
Mageia
added 2023/02/27 8:27 p.m.51 views

Updated postgresql packages fix security vulnerability

Client memory disclosure when connecting, with Kerberos, to modified server. CVE-2022-41862...

3.7CVSS2.2AI score0.00616EPSS
Exploits0References2
Prion
Prion
added 2023/02/24 4:15 p.m.17 views

Memory corruption

An issue was discovered in lib60870 v2.3.2. There is a memory leak in lib60870/lib60870-C/examples/multiclientserver/multiclientserver.c...

1.7CVSS5.5AI score0.00241EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/02/24 12:0 a.m.5 views

CVE-2023-23205

An issue was discovered in lib60870 v2.3.2. There is a memory leak in lib60870/lib60870-C/examples/multiclientserver/multiclientserver.c...

5.5AI score0.00241EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:33 a.m.6 views

SUSE CVE-2018-2942

Vulnerability in the Java SE component of Oracle Java SE subcomponent: Windows DLL. Supported versions that are affected are Java SE: 7u181 and 8u172. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful...

8.3CVSS9.5AI score0.01835EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:7 a.m.4 views

SUSE CVE-2019-17596

Go before 1.12.11 and 1.3.x before 1.13.2 can panic upon an attempt to process network traffic containing an invalid DSA public key. There are several attack scenarios, such as traffic from a client to a server that verifies client certificates...

6.5CVSS8.7AI score0.04693EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:5 a.m.2 views

SUSE CVE-2019-20797

An issue was discovered in e6y prboom-plus 2.5.1.5. There is a buffer overflow in client and server code responsible for handling received UDP packets, as demonstrated by ISendPacket or ISendPacketTo in inetwork.c...

7.5CVSS7.9AI score0.02692EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:3 a.m.2 views

SUSE CVE-2020-2781

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to...

5.3CVSS6AI score0.04948EPSS
Exploits0References19
SUSE CVE
SUSE CVE
added 2023/02/15 3:57 a.m.3 views

SUSE CVE-2020-14577

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via TLS to...

3.7CVSS5.3AI score0.03284EPSS
Exploits0References19
CNNVD
CNNVD
added 2023/01/05 12:0 a.m.7 views

Hitachi FOXMAN-UN 安全漏洞

Hitachi FOXMAN-UN is a powerful toolset for a comprehensive NMS suite from Hitachi, Japan. A security vulnerability exists in Hitachi FOXMAN-UN that stems from the fact that the communication between its client FOXMAN-UN User Interface and server application FOXMAN-UN Core partially uses CORBA...

9.8CVSS8.3AI score0.00389EPSS
Exploits0References4
Kitploit
Kitploit
added 2022/12/22 11:30 a.m.24 views

NetLlix - A Project Created With An Aim To Emulate And Test Exfiltration Of Data Over Different Network Protocols

A project created with an aim to emulate and test exfiltration of data over different network protocols. The emulation is performed w/o the usage of native API's. This will help blue teams write correlation rules to detect any type of C2 communication or data exfiltration. Currently, this project...

7.3AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/12/16 12:0 a.m.6 views

The vulnerability of the Client Server Run-Time Subsystem (CSRSS) in Windows operating systems, which allows attackers to enhance their privileges

The vulnerability of the Client Server Run-Time Subsystem CSRSS in Windows operating systems is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges...

7CVSS7.3AI score0.05245EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/12/14 12:0 a.m.30 views

Microsoft Windows Multiple Vulnerabilities (KB5021235)

This host is missing an important security update according to Microsoft KB5021235 SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

8.5CVSS7.6AI score0.76106EPSS
Exploits6References3
ATTACKERKB
ATTACKERKB
added 2022/12/13 7:15 p.m.3 views

CVE-2022-44673

Windows Client Server Run-time Subsystem CSRSS Elevation of Privilege Vulnerability...

7CVSS7.2AI score0.05245EPSS
Exploits0References3Affected Software11
Microsoft CVE
Microsoft CVE
added 2022/12/13 8:0 a.m.32 views

Windows Client Server Run-time Subsystem (CSRSS) Elevation of Privilege Vulnerability

...

7CVSS7.7AI score0.05245EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2022/12/13 12:0 a.m.4 views

PT-2022-5872 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to insufficient access control in the Client Server Run-Time Subsystem CSRSS of Windows operating systems. It allows an attacker to elevate their privileges...

7CVSS7.3AI score0.05245EPSS
Exploits0References6
CNNVD
CNNVD
added 2022/12/13 12:0 a.m.7 views

Microsoft Client Server Run-time Subsystem 安全漏洞

The Microsoft Client Server Run-time Subsystem is a client/server run-time subsystem from Microsoft Corporation in the United States that manifests itself as the csrss.exe process. It is a component of the Windows NT family of operating systems, appearing in Windows NT 3.1 and subsequent systems,...

7CVSS7.5AI score0.05245EPSS
Exploits0References5
Fedora
Fedora
added 2022/11/30 1:38 a.m.39 views

[SECURITY] Fedora 35 Update: mariadb-10.5.18-1.fc35

MariaDB is a community developed fork from MySQL - a multi-user, multi-thread ed SQL database server. It is a client/server implementation consisting of a server daemon mariadbd and many different client programs and libraries. The base package contains the standard MariaDB/MySQL client programs...

7.5CVSS7.4AI score0.02082EPSS
Exploits4
CNVD
CNVD
added 2022/11/25 12:0 a.m.28 views

GE CIMPLICITY HMI/SCADA Software Buffer Overflow Vulnerability

GE CIMPLICITY HMI/SCADA Software is an automated industrial platform from General Electric GE. It provides true client-server visualization and control from a single machine to plant locations around the world, helping to manage operations and improve decision making. A buffer overflow...

7.8CVSS7.8AI score0.00236EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/11/10 12:0 a.m.3 views

Powercom UPSMON PRO 安全漏洞

Powercom UPSMON PRO is a multi-platform client-server software from Powercom that allows remote monitoring and control of a UPS via SNMP, HTTP and UDP. A security vulnerability exists in Powercom UPSMON PRO, which arises from the explicit transmission of sensitive data over the HTTP protocol that...

7.5CVSS7.4AI score0.00507EPSS
Exploits0References3
Rows per page
Query Builder