CVE-2018-8455

An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers...

CVE-2018-8456

A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8354, CVE-2018-8391, CVE-2018-8457,...

Microsoft Windows kernel privilege exploit

Microsoft Windows 10 and others are a series of operating systems released by Microsoft Corporation in the U.S. Windows kernel is one of the Windows system kernels. An elevation of privilege vulnerability exists in the way memory objects are handled in the Microsoft Windows kernel, which can be...

The vulnerability of the Microsoft Office suite relates to errors in memory object handling, allowing an attacker to execute arbitrary code.

The vulnerability of the Microsoft Office suite is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created file...

The vulnerability of the Microsoft Office software package, related to errors in memory object handling, allows an attacker to disclose protected information.

The vulnerability of the Microsoft Office suite is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to disclose sensitive information through a specially created document...

The vulnerability of Microsoft Excel’s spreadsheet editor, related to errors in memory object handling, allows a hacker to execute arbitrary code.

The vulnerability of Microsoft Excel editors is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created file...

The vulnerability of the DirectX Graphics Kernel driver in Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the DirectX Graphics Kernel Driver DXGKRNL on Windows operating systems is related to object handling errors in memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...

PT-2018-1483 · Microsoft · Directx +1

Name of the Vulnerable Software and Affected Versions: Microsoft Windows affected versions not specified Description: The issue is related to errors in object handling in memory within the DirectX Graphics Kernel DXGKRNL driver of Windows operating systems. It may allow an attacker to escalate...

Design/Logic Flaw

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user...

CVE-2018-3939

An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software's PDF Reader, version 9.1.0.5096. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user...

Moderate: Red Hat Security Advisory: memcached security update

An update for memcached is now available for Red Hat OpenStack Platform 10.0 Newton for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

CVE-2018-8281

A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory, aka "Microsoft Office Remote Code Execution Vulnerability." This affects Microsoft Excel Viewer, Microsoft PowerPoint Viewer, Microsoft Office, Microsoft Office...

Microsoft Edge Information Disclosure Vulnerability (CNVD-2018-12879)

Edge is Microsoft's browser for Windows 10. Microsoft Edge suffers from an information disclosure vulnerability. The vulnerability stems from Microsoft Edge failing to properly handle objects in memory. An attacker could exploit the vulnerability to obtain information that could further compromis...

The vulnerability of the JavaScript script handler ChakraCore in browsers Internet Explorer and Microsoft Edge allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of ChakraCore JavaScript handlers in browsers Internet Explorer and Microsoft Edge is related to errors in memory object handling. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...

Microsoft Edge browser vulnerability, caused by memory object processing errors, allows attackers to execute arbitrary code.

The vulnerability of Microsoft Edge relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

CVE-2018-8210

A remote code execution vulnerability exists when Windows improperly handles objects in memory, aka "Windows Remote Code Execution Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers. This CVE I...

CVE-2018-8233

An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 10, Windows 10 Servers...

The vulnerability of JavaScript script handlers in Internet Explorer arises from errors in memory object handling, allowing attackers to execute arbitrary code.

The vulnerability of JavaScript script handlers in Internet Explorer arises from an operation that goes beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted web page...

VulnCheck KEV: CVE-2018-1038

The Windows kernel in Windows 7 SP1 and Windows Server 2008 R2 SP1 allows an elevation of privilege vulnerability due to the way it handles objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerability."...

The vulnerability of the Microsoft Office suite arises from errors in memory object handling, allowing an attacker to execute arbitrary code.

The vulnerability of the Microsoft Office suite is related to errors in memory object handling. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted Microsoft Office file, from a remote location...