Lucene search
K

7 matches found

Veracode
Veracode
added 2018/12/04 1:59 p.m.28 views

Remote Code Execution (RCE)

Microsoft ChakraCore is vulnerable to remote code execution. This is due to a lack of checks before invocation of JavascriptPromise::AsyncSpawnStep which could allow a remote attacker to execute arbitrary code in the context of the authenticated user. This CVE ID is different from CVE-2017-0228,...

7.5CVSS7.9AI score0.38115EPSS
Exploits2References1Affected Software2
Tenable Nessus
Tenable Nessus
added 2017/11/30 12:0 a.m.63 views

Security Updates for Internet Explorer (August 2017)

The Internet Explorer installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists in the way JavaScript engines render when handling objects in memory in Microsoft browsers. The vulnerability...

7.6CVSS8.6AI score0.72116EPSS
Exploits15References11
rapid7community
rapid7community
added 2017/08/08 8:3 p.m.172 views

Patch Tuesday - August 2017

It was a busy month this month with a total of 48 security issues fixed. All of these have a severity of Critical or Important with Remote Code Execution vulnerabilities again figuring highly, particularly for Microsoft Edge. There were also a few publicly disclosed vulnerabilities that were fixe...

8.5CVSS7.8AI score0.31893EPSS
Exploits4
CVE
CVE
added 2017/05/12 2:0 p.m.353 views

CVE-2017-0228

Connected documents describe a remote code execution vulnerability in the JavaScript engine/memory handling path used by Microsoft Edge and the ChakraCore engine (Scripting Engine Memory Corruption). The advisories identify exploitation via memory corruption in object handling, affecting Edge/Cha...

7.6CVSS7.8AI score0.16992EPSS
Exploits0References4Affected Software2
OpenVAS
OpenVAS
added 2017/05/10 12:0 a.m.61 views

Microsoft Windows Multiple Vulnerabilities (KB4019472)

This host is missing a critical/important security update according to Microsoft KB4019472. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS6.7AI score0.84138EPSS
Exploits22References44
OpenVAS
OpenVAS
added 2017/05/10 12:0 a.m.45 views

Microsoft Internet Explorer Multiple Vulnerabilities (KB4018271)

This host is missing a critical security update according to Microsoft security updates KB4018271. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

8.8CVSS6.8AI score0.29645EPSS
Exploits1References15
Tenable Nessus
Tenable Nessus
added 2017/05/09 12:0 a.m.102 views

KB4016871: Windows 10 Version 1703 May 2017 Cumulative Update

The remote Windows 10 version 1703 host is missing security update KB4016871. It is, therefore, affected by multiple vulnerabilities : - A security bypass vulnerability exists in Internet Explorer due to an unspecified flaw. An unauthenticated, remote attacker can exploit this, by convincing a us...

9.8CVSS7.7AI score0.84138EPSS
Exploits22References42
Rows per page
Query Builder