4202 matches found
KB5043051: Windows 10 Version 1607 / Windows Server 2016 Security Update (September 2024)
The remote Windows host is missing security update 5043051. It is, therefore, affected by multiple vulnerabilities - Windows MSHTML Platform Spoofing Vulnerability CVE-2024-43461 - Windows Remote Desktop Licensing Service Spoofing Vulnerability CVE-2024-43455 - Windows Remote Desktop Licensing...
Code execution vulnerability in multiple Mozilla products (CNVD-2024-40521)
Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A code execution vulnerability exists in several Mozilla products due to...
Code Execution Vulnerability in Multiple Mozilla Products (CNVD-2024-40522)
Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A code execution vulnerability exists in multiple Mozilla products that ...
Mozilla Firefox 安全漏洞
Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A code execution vulnerability exists in Mozilla Firefox, which can be exploited by attackers to execute arbitrary code or cause a denial of service on a vulnerable system...
VMSA-2024-0018:VMware Fusion update addresses a code execution vulnerability (CVE-2024-38811)
Advisory ID: | VMSA-2024-0018 ---|--- Advisory Severity: | Important CVSSv3 Range: | 8.8 Synopsis: | VMware Fusion update addresses a code-execution vulnerability CVE-2024-38811 Issue date: | 2024-09-03 Updated on: | 2024-09-03 Initial Advisory CVEs | CVE-2024-38811 1. Impacted Products VMware...
Google Chrome heap buffer overflow vulnerability (CNVD-2024-38578)
Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a heap buffer overflow vulnerability that is caused by incorrect boundary checking in Skia. An attacker can exploit this vulnerability to cause an overflow buffer to execute arbitrary code on the system or...
NetIQ Advanced Authentication Command Execution Vulnerability
NetIQ Advanced Authentication is an application from NetIQ UK. It provides a more secure way to protect your sensitive information by moving away from usernames and passwords. A command execution vulnerability exists in NetIQ Advanced Authentication versions prior to 6.3.5.1, which can be exploit...
CVE-2024-41364
RPi-Jukebox-RFID v2.7.0 was discovered to contain a remote code execution RCE vulnerability via htdocs\trackEdit.php...
CVE-2024-41622
D-Link DIR-846W A1 FW100A43 was discovered to contain a remote command execution RCE vulnerability via the tomographypingaddress parameter in /HNAP1/ interface...
CVE-2024-44341
D-Link DIR-846W A1 FW100A43 was discovered to contain a remote command execution RCE vulnerability via the lan0dhcpsstaticlist parameter. This vulnerability is exploited via a crafted POST request...
CVE-2024-42636
DedeCMS V5.7.115 has a command execution vulnerability via filemanageview.php?fmdo=newfile&activepath...
Security update for python-nltk (important)
openSUSE Security Update: Security update for python-nltk Announcement ID: openSUSE-SU-2024:0221-1 Rating: important References: 1227174 Cross-References: CVE-2024-39705 Affected Products: openSUSE Backports SLE-15-SP6 An update that fixes one vulnerability is now available. Description: This...
Security update for znc (critical)
openSUSE Security Update: Security update for znc Announcement ID: openSUSE-SU-2024:0203-1 Rating: critical References: 1227393 Cross-References: CVE-2024-39844 Affected Products: openSUSE Backports SLE-15-SP6 An update that fixes one vulnerability is now available. Description: This update for z...
Foxit PDF Reader Code Execution Vulnerability (CNVD-2024-40815)
Foxit PDF Reader is a PDF document reader and printer with fast startup speed and rich features. A code execution vulnerability exists in Foxit PDF Reader, which can be exploited by an attacker to execute arbitrary code on the system...
Foxit PDF Reader Resource Management Error Vulnerability (CNVD-2024-40814)
Foxit PDF Reader is China Foxit Foxit company a PDF reader. A resource management error vulnerability exists in Foxit PDF Reader, which can be exploited by an attacker to execute code in the context of the current process...
Command Execution Vulnerability in NBR800G of Beijing StarNet Ruijie Network Technology Co. Ltd (CNVD-2024-40101)
The NBR800G is an enterprise-class router. A command execution vulnerability exists in the NBR800G of Beijing StarNet Ruijie Network Technology Co. that can be exploited by an attacker to gain server privileges...
KLA71827 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, bypass security restrictions, gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Inappropriate...
EulerOS Virtualization 2.11.1 : libarchive (EulerOS-SA-2024-2156)
According to the versions of the libarchive package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Windows Libarchive Remote Code Execution VulnerabilityCVE-2024-20696 Tenable has extracted the preceding description block...
RHEL 8 : kpatch-patch-4_18_0-553 (RHSA-2024:5522)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:5522 advisory. This is a kernel live patch module which can be loaded by the kpatch command line utility to modify the code of a running kernel. This patch...
Command Execution Vulnerability in Electronic Document Security Management System of Beijing Yisetong Technology Development Co., Ltd (CNVD-2024-38466)
Electronic document security management system is a controllable authorization of electronic document security sharing management system, using real-time dynamic encryption and decryption protection technology and real-time rights recovery mechanism, to provide all kinds of electronic documents...