Microsoft Windows 资源管理错误漏洞

Microsoft Windows is a suite of operating systems used by Microsoft Corporation USA for personal devices. A resource management error vulnerability exists in Microsoft Windows Broadcast DVR User Service. An attacker could exploit the vulnerability to elevate privileges. The following products and...

Microsoft Windows Routing and Remote Access Service 安全漏洞

Microsoft Windows Routing and Remote Access Service is a network service from Microsoft Corporation USA that is used to implement features such as network routing, virtual private networks VPNs, and dial-up connections. A security vulnerability exists in Microsoft Windows Routing and Remote Acces...

Microsoft HTTP.sys 资源管理错误漏洞

Microsoft HTTP.sys is an application protocol from Microsoft Corporation USA.HTTP application protocol. A resource management error vulnerability exists in Microsoft HTTP.sys. An attacker could exploit this vulnerability to cause a denial of service on the system. The following products and...

Microsoft Windows Telephony Server 安全漏洞

Microsoft Windows Telephony Server is a component of Microsoft Corporation USA that supports the Telephony Application Programming Interface TAPI, which allows computer programs to communicate with shared telephony services. A security vulnerability exists in Microsoft Windows Telephony Server. A...

Microsoft SQL Server 安全漏洞

Microsoft SQL Server is a large commercial database system from Microsoft Corporation USA that is used under Microsoft Windows. A security vulnerability exists in Microsoft SQL Server. An attacker exploiting this vulnerability could remotely execute code. The following products and editions are...

Microsoft SQL Server 安全漏洞

Microsoft SQL Server is a large commercial database system from Microsoft Corporation USA that is used under Microsoft Windows. A security vulnerability exists in Microsoft SQL Server. An attacker exploiting this vulnerability could remotely execute code. The following products and editions are...

Microsoft Outlook 安全漏洞

Microsoft Outlook is a suite of e-mail applications from Microsoft Corporation USA. A security vulnerability exists in Microsoft Office Outlook. An attacker exploiting this vulnerability could remotely execute code. The following products and editions are affected:Microsoft Office 2019 for 32-bit...

Microsoft SQL Server Security Vulnerability

Microsoft SQL Server is a large commercial database system from Microsoft Corporation USA that is used under Microsoft Windows. A security vulnerability exists in Microsoft SQL Server. An attacker exploiting this vulnerability could remotely execute code. The following products and editions are...

Microsoft SQL Server Security Vulnerability

Microsoft SQL Server is a large commercial database system from Microsoft Corporation USA that is used under Microsoft Windows. A security vulnerability exists in Microsoft SQL Server. An attacker exploiting this vulnerability could remotely execute code. The following products and editions are...

Microsoft Windows Mobile Broadband 输入验证错误漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from Microsoft Corporation USA. An input validation error vulnerability exists in Microsoft Windows Mobile Broadband. The following products and editions are affected:Windows 10 Version 1809 for 32-bit Systems,Windows 1...

Microsoft Windows Remote Procedure Call Runtime 安全漏洞

Microsoft Windows Remote Procedure Call Runtime is a powerful technology for creating distributed client/server programs from Microsoft Corporation USA. A security vulnerability exists in Microsoft Windows Remote Procedure Call Runtime. An attacker could exploit the vulnerability to remotely...

Microsoft Windows DNS Security Vulnerability

Microsoft Windows DNS is a domain name resolution service from Microsoft. The Domain Name System DNS is one of the industry-standard suite of protocols that encompasses TCP/IP, and DNS clients and DNS servers work together to provide computers and users with name resolution services that map...

CVE-2023-38998

An open redirect in the Login page of OPNsense Community Edition before 23.7 and Business Edition before 23.4.2 allows attackers to redirect a victim user to an arbitrary web site via a crafted URL...

CVE-2023-35810

An issue was discovered in SugarCRM Enterprise before 11.0.6 and 12.x before 12.0.3. A Second-Order PHP Object Injection vulnerability has been identified in the DocuSign module. By using crafted requests, custom PHP code can be injected and executed through the DocuSign module because of missing...

Microsoft Windows Win32K 竞争条件问题漏洞

Microsoft Windows Win32k is a system file for Windows multi-user administration from Microsoft USA. A security vulnerability exists in Microsoft Windows Win32K. The following products and editions are affected:Windows 10 Version 1809 for 32-bit Systems,Windows 10 Version 1809 for x64-based...

TIBCO Software FTL 安全漏洞

TIBCO Software FTL is an application-to-application messaging system from TIBCO Software, USA. It is designed for low latency and high performance. A security vulnerability exists in TIBCO Software FTL that could allow a low-privileged attacker with network access privileges to perform elevation ...

TIBCO Software FTL 安全漏洞

TIBCO Software FTL is an application-to-application messaging system from TIBCO Software, USA. It is designed for low latency and high performance. A security vulnerability exists in TIBCO Software FTL that could allow a low-privileged attacker with network access privileges to execute an elevati...

Microsoft Windows Point-to-Point Tunneling Protocol 竞争条件问题漏洞

Microsoft Windows Point-to-Point Tunneling Protocol PPTP is a network protocol from Microsoft that enables the secure transmission of data from remote clients to private corporate servers by creating a virtual private network VPN over a TCP/IP-based data network. VPN. A competitive conditions iss...

Microsoft Graphics Component 安全漏洞

Microsoft Graphics Component is a graphics driver component from Microsoft Corporation USA. A security vulnerability exists in Microsoft Graphics Component. The following products and editions are affected:Windows 10 Version 1809 for ARM64-based Systems,Windows Server 2019,Windows Server 2019...

Microsoft Windows Print Spooler Components权限许可和访问控制问题漏洞

Microsoft Windows Print Spooler Components is a printing backend handler component from Microsoft Corporation USA. A vulnerability exists in microsoft Windows Print Spooler Components due to privilege permission and access control issues. The following products and editions are affected:Windows 1...