CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8692 matches found

Microsoft KB•added 2016/09/13 7:0 a.m.•50 views

MS16-110: Description of the security update for Windows: September 13, 2016

MS16-110: Description of the security update for Windows: September 13, 2016 Summary To learn more about the vulnerability, see Microsoft Security Bulletin MS16-110. More Information Important We recommend that you install this security update on all client and server operating systems listed in...

8.8CVSS9AI score0.3289EPSS

Exploits0

BDU FSTEC•added 2016/09/07 12:0 a.m.•0 views

Vulnerability of the Java Platform software platform, which allows attackers to compromise the confidentiality, integrity, and accessibility of information

The vulnerability of the Java Platform-related software platform is associated with errors in the code. Exploiting this vulnerability can allow a malicious actor, operating remotely, to compromise the confidentiality, integrity, and accessibility of information through actions related to librarie...

9.3CVSS0.04237EPSS

Exploits0References2

BDU FSTEC•added 2016/09/07 12:0 a.m.•0 views

Vulnerability of the Java Platform software platform, allowing attackers to compromise accessibility

The vulnerability of the Java Platform is related to errors in the code. Exploiting this vulnerability can allow a malicious actor, operating remotely, to compromise accessibility through actions related to JavaFX...

5CVSS0.05585EPSS

Exploits0References2Affected Software1

BDU FSTEC•added 2016/09/07 12:0 a.m.•0 views

Vulnerability of the Java Platform software platform, which allows attackers to compromise the confidentiality, integrity, and accessibility of information

The vulnerability of the Java Platform is related to errors in the code. Exploiting this vulnerability can allow a malicious actor, operating remotely, to compromise the confidentiality, integrity, and accessibility of information through actions related to Hotspot...

9.3CVSS0.03532EPSS

Exploits0References2Affected Software1

BDU FSTEC•added 2016/09/07 12:0 a.m.•0 views

Vulnerability of the Java Platform software platform, which allows attackers to compromise the confidentiality, integrity, and accessibility of information

6.9CVSS0.00088EPSS

Exploits0References2Affected Software1

BDU FSTEC•added 2016/09/07 12:0 a.m.•1 views

Vulnerability of the Java Platform software platform, which allows attackers to compromise the confidentiality, integrity, and accessibility of information

9.3CVSS0.07073EPSS

Exploits0References2

BDU FSTEC•added 2016/09/07 12:0 a.m.•0 views

Vulnerability of the Java Platform software platform, which allows attackers to compromise the confidentiality, integrity, and accessibility of information

9.3CVSS0.06034EPSS

Exploits0References2

BDU FSTEC•added 2016/09/07 12:0 a.m.•0 views

Vulnerabilities in the Google Chrome browser that allow a perpetrator to trigger a service failure or cause other effects

The multiple vulnerabilities of the Google Chrome browser are related to errors in the code. Exploiting these vulnerabilities can allow a malicious actor to cause service failures or other adverse effects...

6.8CVSS0.00621EPSS

Exploits0References23Affected Software1

FreeBSD•added 2016/09/06 12:0 a.m.•34 views

Pillow -- multiple vulnerabilities

Pillow reports: Pillow prior to 3.3.2 may experience integer overflow errors in map.c when reading specially crafted image files. This may lead to memory disclosure or corruption. Pillow prior to 3.3.2 and PIL 1.1.7 at least do not check for negative image sizes in ImagingNew in Storage.c. A...

5.5CVSS3.2AI score0.00358EPSS

Exploits0References2

CNVD•added 2016/09/01 12:0 a.m.•1 views

HP Integrated Lights-Out Information Disclosure Vulnerability (CNVD-2016-07089)

HP Integrated Lights-Out is used for remote management of servers. An information disclosure vulnerability exists in HP Integrated Lights-Out. A remote attacker could exploit this vulnerability to cause information disclosure via TLS CBC Padding and MAC errors...

4.3CVSS6.4AI score0.00463EPSS

Exploits0References1

BDU FSTEC•added 2016/08/31 12:0 a.m.•0 views

The vulnerability of Kaspersky Internet Security’s antivirus protection allows a hacker to trigger a service failure.

The vulnerability of the KLIF driver in Kaspersky Internet Security’s antivirus protection system exists due to errors in the filtering of system calls. Exploiting this vulnerability could allow a malicious actor, operating locally, to cause a service failure by sending the API call...

4.6CVSS0.00064EPSS

Exploits2References2Affected Software1

BDU FSTEC•added 2016/08/16 12:0 a.m.•1 views

Vulnerability of the Windows operating system, allowing a perpetrator to execute arbitrary code

The vulnerability of the Windows operating system’s print queue dispatcher is related to security configuration errors. Exploiting this vulnerability allows a perpetrator performing a “man-in-the-middle” attack to execute arbitrary code using a specially crafted print driver during printer...

9.3CVSS0.15154EPSS

Exploits0References2

BDU FSTEC•added 2016/08/16 12:0 a.m.•0 views

The vulnerability of the Windows operating system, which allows a perpetrator to obtain confidential information

The vulnerability of the Windows operating system’s kernel is related to the improper handling of system call errors during page faults. Exploiting this vulnerability can allow an attacker, operating locally, to obtain confidential information through a specially created application...

2.1CVSS0.1256EPSS

Exploits0References2

OSV•added 2016/08/11 12:0 a.m.•38 views

DSA-3647-1 icedove - security update

Bulletin has no description...

8.8CVSS8.8AI score0.00288EPSS

Exploits0

OSV•added 2016/08/05 8:59 p.m.•3 views

CVE-2016-3827

codecs/hevcdec/SoftHEVC.cpp in libstagefright in mediaserver in Android 6.0.1 before 2016-08-01 mishandles decoder errors, which allows remote attackers to cause a denial of service device hang or reboot via a crafted media file, aka internal bug 28816956...

5.5CVSS7.3AI score

Exploits0References3