Lucene search
K

34 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-12339

Malware in sbrugna...

7.8CVSS6.9AI score0.41131EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2011-0051

Malware in sbrugna...

6.8CVSS6AI score0.02578EPSS
Exploits0References16
Citrix
Citrix
added 2025/03/13 12:0 a.m.40 views

Citrix Virtual Apps and Desktops 2402 CU2 expired certificate

Citrix Virtual Apps and Desktops CVAD 2402 LTSR Cumulative Update 2 CU2 2402.0.2100 contains installers and binaries signed with a now-expired code signing certificate. File signatures are considered valid if either: A timestamp was included at the time of signing, or The certificate used for...

7.2AI score
Exploits0
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.47 views

Moderate: skopeo security and bug fix update

The skopeo command lets you inspect images from container image registries, get images and image layers, and use signatures to create and verify files. Security Fixes: golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms...

7.5CVSS8.8AI score0.01956EPSS
Exploits0References6
Prion
Prion
added 2024/01/31 2:15 a.m.27 views

Design/Logic Flaw

In Notion Web Clipper 1.0.37, a .nib file is susceptible to the Dirty NIB attack. NIB files can be manipulated to execute arbitrary commands. Additionally, even if a NIB file is modified within an application, Gatekeeper may still permit the execution of the application, enabling the execution of...

7.5CVSS9.7AI score0.01984EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2021/11/11 11:15 p.m.24 views

CVE-2021-34420

The Zoom Client for Meetings for Windows installer before version 5.5.4 does not properly verify the signature of files with .msi, .ps1, and .bat extensions. This could lead to a malicious actor installing malicious software on a customer’s computer...

7.4CVSS0.00394EPSS
Exploits0References2
NVD
NVD
added 2020/10/16 11:15 p.m.19 views

CVE-2020-16922

A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed files. In an attack scenario, an attacker could bypass security features intended to prevent...

5.5CVSS0.00786EPSS
Exploits0References1
Prion
Prion
added 2020/10/16 11:15 p.m.20 views

Security feature bypass

A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed files. In an attack scenario, an attacker could bypass security features intended to prevent...

2.1CVSS6.8AI score0.00786EPSS
Exploits0References1Affected Software5
Tenable Nessus
Tenable Nessus
added 2020/10/13 12:0 a.m.138 views

KB4580346: Windows 10 Version 1607 and Windows Server 2016 October 2020 Security Update

The remote Windows host is missing security update 4580346. It is, therefore, affected by multiple vulnerabilities : - A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security features and...

9.3CVSS8AI score0.097EPSS
Exploits0References40
Tenable Nessus
Tenable Nessus
added 2020/10/13 12:0 a.m.104 views

KB4580328: Windows 10 Version 1709 October 2020 Security Update

The remote Windows host is missing security update 4580328 or 4577041. It is, therefore, affected by multiple vulnerabilities : - A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security...

9.3CVSS7.9AI score0.13348EPSS
Exploits12References48
Prion
Prion
added 2020/08/17 7:15 p.m.27 views

Security feature bypass

A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed files. In an attack scenario, an attacker could bypass security features intended to prevent...

2.1CVSS8.4AI score0.41131EPSS
Exploits1References4Affected Software5
ATTACKERKB
ATTACKERKB
added 2020/08/17 12:0 a.m.44 views

CVE-2020-1464

A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed files. In an attack scenario, an attacker could bypass security features intended to prevent...

7.8CVSS6.6AI score0.41131EPSS
In wildExploits1References7
Microsoft CVE
Microsoft CVE
added 2020/08/11 7:0 a.m.43 views

Windows Spoofing Vulnerability

A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed files. In an attack scenario, an attacker could bypass security features intended to prevent...

7.8CVSS2.5AI score0.41131EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2020/08/11 12:0 a.m.7 views

PT-2020-3677 · Oracle +1 · Java +1

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: A spoofing vulnerability exists when Windows incorrectly validates file signatures, allowing an attacker to bypass security features and load improperly signed files. In an...

7.8CVSS9.3AI score0.41131EPSS
Exploits1References27
BDU FSTEC
BDU FSTEC
added 2019/10/03 12:0 a.m.4 views

The vulnerability of the Image Verification function in the Cisco IOS XE operating system allows a perpetrator to install malware onto a vulnerable device or upload malicious executable files.

The vulnerability of the Image Verification function in the Cisco IOS XE operating system is related to the lack of verification of file signatures during the system’s loading process. Exploiting this vulnerability allows a perpetrator to install malware onto a vulnerable device or load malicious...

6.8CVSS5.5AI score0.00237EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/08/30 12:0 a.m.6 views

The vulnerability of the File Signature Security function in the Windows operating system allows a hacker to circumvent existing security restrictions and introduce malicious code into a CAB file without canceling the file’s signature.

The vulnerability of the File Signature Security function in the Windows operating system is related to errors in checking the signatures of CAB files. Exploiting this vulnerability allows a hacker to bypass existing security restrictions and inject malicious code into CAB files without...

5.5CVSS5.6AI score0.01485EPSS
Exploits0References2
Prion
Prion
added 2019/08/14 9:15 p.m.19 views

Security feature bypass

A security feature bypass exists when Windows incorrectly validates CAB file signatures, aka 'Windows File Signature Security Feature Bypass Vulnerability'...

4.3CVSS5.7AI score0.01485EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2019/08/14 8:55 p.m.109 views

CVE-2019-1163

Technical details (affected products, components, versions, root cause, impact or fixes) are not publicly provided in the supplied documents. Monitor for updates from official advisories and CVE records.

5.5CVSS7.2AI score0.01485EPSS
Exploits0References1Affected Software3
ThreatPost
ThreatPost
added 2019/06/28 8:5 p.m.20 views

New Dridex Variant Slips By Anti-Virus Detection

Researchers have spotted a variant of the Dridex banking trojan with new obfuscation capabilities that help it skirt anti-virus detection. While Dridex has been around since 2011, researchers told Threatpost Friday that they recently spotted phishing emails distributing a never-before-seen varian...

0.8AI score
Exploits0References5
UbuntuCve
UbuntuCve
added 2018/06/15 2:29 a.m.17 views

CVE-2018-12356

An issue was discovered in password-store.sh in pass in Simple Password Store 1.7.x before 1.7.2. The signature verification routine parses the output of GnuPG with an incomplete regular expression, which allows remote attackers to spoof file signatures on configuration files and extension script...

9.8CVSS7.5AI score0.04648EPSS
Exploits0References6
Rows per page
Query Builder