335 matches found
CLSA-2026-1778177253 perl: Fix of 2 CVEs
CVE-2023-47038: fix write past buffer end via illegal user-defined Unicode property, for almalinux9.2esu - CVE-2025-40909: clone dirhandles without fchdir, for almalinux9.2esu...
March 10, 2026—KB5078775 (Monthly Rollup)
None None...
February 10, 2026—KB5075971 (Monthly Rollup)
None None...
KLA90838 Multiple vulnerabilities in Microsoft Product (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to bypass security restrictions, gain privileges, execute arbitrary code, obtain sensitive information, cause denial of service, spoof user interface. Below is a...
November 11, 2025—KB5068905 (Monthly Rollup)
None None...
December 9, 2025—KB5071546 (OS Builds 19045.6691 and 19044.6691)
None None...
KLA89277 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products ESU. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, gain privileges, obtain sensitive information, spoof user interface. Below is a complete list of...
Malicious code in @zalastax/nolb-esu (npm)
The package @zalastax/nolb-esu was found to contain malicious code...
MAL-2025-11352 Malicious code in @zalastax/nolb-esu (npm)
The package @zalastax/nolb-esu was found to contain malicious code...
July 22, 2025—KB5062649 (OS Build 19045.6159) Preview
None None...
May 13, 2025—KB5058403 (Monthly Rollup)
None None...
November 12, 2024—KB5046639 (Security-only update)
None None...
November 12, 2024—KB5046682 (Monthly Rollup)
None None...
November 12, 2024—KB5046697 (Monthly Rollup)
None None...
CVE-2024-50591 Local Privilege Escalation via Command Injection
An attacker with local access the to medical office computer can escalate his Windows user privileges to "NT AUTHORITY\SYSTEM" by exploiting a command injection vulnerability in the Elefant Update Service. The command injection can be exploited by communicating with the Elefant Update Service whi...
October 8, 2024-Security Only Update for .NET Framework 3.5.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2008 R2 SP1 (KB5044085)
None None...
October 8, 2024-Security Only Update for .NET Framework 2.0, 3.0, 3.5 SP1, 4.6.2 for Windows Server 2008 SP2 (KB5044086)
None None...
October 8, 2024—KB5044342 (Monthly Rollup)
None None...
KLA73910 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, spoof user interface, cause denial of service, obtain sensitive information, bypass security restrictions. Below is a...
September 10, 2024—KB5043138 (Monthly Rollup)
None None...