Lucene search
+L

557 matches found

ATTACKERKB
ATTACKERKB
added 2018/03/27 3:29 a.m.3 views

CVE-2018-9042

In Advanced SystemCare Ultimate 11.0.1.58, the driver file Monitorwin10x64.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x9c402000...

7.8CVSS5.8AI score0.00413EPSS
Exploits1References2
CNVD
CNVD
added 2018/03/20 12:0 a.m.5 views

Google Android Qualcomm Wma elevation of privilege vulnerability (CNVD-2018-06009)

Android on Google Pixel and Nexus is a Linux-based open source operating system for the Google Pixel and Nexus smartphones developed by Google and the Open Handset Alliance OHA.Qualcomm Wma is one of the components of Qualcomm's Wma digital audio compression format. (Qualcomm Wma is one of...

7.8CVSS6.9AI score0.00172EPSS
Exploits0References1
CNVD
CNVD
added 2018/03/15 12:0 a.m.6 views

Microsoft Windows Hyper-V Information Disclosure Vulnerability (CNVD-2018-06785)

Microsoft Windows Server 2008 SP2 and others are a series of operating systems from Microsoft Corporation USA.Hyper-V Network Switch is one of the network switches. An information disclosure vulnerability exists in Microsoft Hyper-V Network Switch, which originates from the program failing to...

5.6CVSS6.1AI score0.01488EPSS
Exploits0References1
CNVD
CNVD
added 2018/02/26 12:0 a.m.1 views

SAP NetWeaver Composite Application Framework and Business Cross-Site Scripting Vulnerability

SAP NetWeaver is the German SAP SAP company's set of service-oriented integrated application platform. The platform provides a development and runtime environment for SAP applications. A cross-site scripting attack vulnerability exists in SAP NetWeaver, which stems from a failure to adequately...

6.9AI score
Exploits0References1
CNVD
CNVD
added 2018/02/09 12:0 a.m.5 views

Multiple Huawei products cross-border read vulnerability (CNVD-2018-05437)

Huawei AR120-S and others are router products from Huawei China. An out-of-bounds read vulnerability exists in multiple Huawei products, which stems from a program failing to adequately validate input. A remote attacker could exploit the vulnerability by sending a specially crafted signature to t...

5.3CVSS6.9AI score0.01241EPSS
Exploits0References1
CNVD
CNVD
added 2018/02/07 12:0 a.m.5 views

Jiangmin Antivirus Denial of Service Vulnerability (CNVD-2018-03296)

Jiangmin Antivirus is a set of online antivirus software from the Chinese Jiangmin Jiangmin New Technology Company. A security vulnerability exists in the KSysCall.sys driver file in Jiangmin Antivirus version 16.0.0.100, which is caused by the program failing to validate an input value of IOCtl...

7.8CVSS6.5AI score0.00399EPSS
Exploits1References1
CNVD
CNVD
added 2018/02/07 12:0 a.m.4 views

Jiangmin Antivirus Denial of Service Vulnerability (CNVD-2018-03299)

Jiangmin Antivirus is a set of online antivirus software from the Chinese Jiangmin Jiangmin New Technology Company. A security vulnerability exists in the KrnlCall.sys driver file in Jiangmin Antivirus version 16.0.0.100, which is caused by the program failing to validate an input value of IOCtl...

7.8CVSS6.5AI score0.00399EPSS
Exploits1References1
OSV
OSV
added 2018/02/06 11:29 p.m.3 views

CVE-2018-6776

In Jiangmin Antivirus 16.0.0.100, the driver file KSysCall.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x9A00813C...

7.8CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2018/02/06 11:29 p.m.3 views

CVE-2018-6777

In Jiangmin Antivirus 16.0.0.100, the driver file KVFG.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x220400...

7.8CVSS5.8AI score0.00399EPSS
Exploits1References1
OSV
OSV
added 2018/02/06 11:29 p.m.6 views

CVE-2018-6781

In Jiangmin Antivirus 16.0.0.100, the driver file KSysCall.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x9A008264...

7.8CVSS5.8AI score0.00399EPSS
Exploits1References1
OSV
OSV
added 2018/02/06 11:29 p.m.3 views

CVE-2018-6778

In Jiangmin Antivirus 16.0.0.100, the driver file KSysCall.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x9A008268...

7.8CVSS5.8AI score0.00399EPSS
Exploits1References1
CNVD
CNVD
added 2018/02/06 12:0 a.m.5 views

Micropoint Proactive Defense Software Denial of Service Vulnerability (CNVD-2018-02958)

Micropoint proactive defense software is a set of third-generation anti-virus software from China's Oriental Micropoint Micropoint Company. The software uses proactive defense technology to analyze and judge to achieve the purpose of defense against viruses. A security vulnerability exists in the...

7.8CVSS6.5AI score0.00399EPSS
Exploits1References1
OSV
OSV
added 2018/02/05 6:29 p.m.5 views

CVE-2018-6630

In Micropoint proactive defense software 2.0.20266.0146, the driver file mp110005.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x8000014c...

7.8CVSS5.8AI score0.00399EPSS
Exploits1References1
OSV
OSV
added 2018/02/05 6:29 p.m.6 views

CVE-2018-6625

In WatchDog Anti-Malware 2.74.186.150, the driver file ZAMGUARD32.SYS allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x80002010...

7.8CVSS5.8AI score0.00399EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2018/01/24 12:0 a.m.6 views

The vulnerability of the command-line interface (CLI) of the NX-OS operating system of the Cisco Unified Computing System Central device’s centralized device management system allows a attacker to execute arbitrary commands.

The vulnerability of the command-line interface CLI of the NX-OS operating system in the Cisco Unified Computing System Central device management system exists due to insufficient verification of input data during the installation of updates. Exploiting this vulnerability allows an attacker to...

7.2CVSS5.9AI score0.0068EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2018/01/21 10:29 p.m.4 views

CVE-2018-5958

In Zillya! Antivirus 3.0.2230.0, the driver file zef.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x9C402424...

7.8CVSS5.8AI score0.00331EPSS
Exploits0References1
OSV
OSV
added 2018/01/16 7:29 p.m.10 views

CVE-2018-5714

In Malwarefox Anti-Malware 2.72.169, the driver file zam64.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x80002054...

7.8CVSS5.8AI score0.00399EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2018/01/12 12:0 a.m.7 views

The vulnerability of the rubygems package manager arises from insufficient validation of input data, allowing attackers to overwrite any file.

The vulnerability of the rubygems package manager exists due to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to overwrite any file...

7.5CVSS7.5AI score0.29442EPSS
Exploits2References12Affected Software1
CNVD
CNVD
added 2018/01/05 12:0 a.m.2 views

Code Execution Vulnerability in Pagoda Panel for windows

Pagoda Panel is an easy-to-use, full-featured and free-for-life server management software that supports Linux and Windows. A code execution vulnerability exists in Pagoda Panel for Windows, which is caused due to the program failing to validate the values passed by the user, which can be exploit...

7.8AI score
Exploits0
CNVD
CNVD
added 2018/01/04 12:0 a.m.5 views

Structured Data Linter Directory Traversal Vulnerability

Structured Data Linter is an open source embedded RDF markup for extracting and validating HTML. A directory traversal vulnerability exists in Structured Data Linter 2.4.1 and earlier versions, which stems from the program failing to detect user input. An attacker can exploit this vulnerability t...

7.5CVSS6.7AI score0.0243EPSS
Exploits0References1
Rows per page
Query Builder