Lucene search
K

767 matches found

NVD
NVD
added 2017/08/08 9:29 p.m.16 views

CVE-2017-8652

Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an attacker to disclose information due to the way that Microsoft Edge handles objects in memory, aka "Microsoft Edge Information Disclosure Vulnerability". This CVE ID is unique from CVE-2017-8644 and...

6.5CVSS4.3AI score0.22937EPSS
Exploits3References4
OSV
OSV
added 2017/08/08 9:29 p.m.4 views

CVE-2017-8627

Windows Subsystem for Linux in Windows 10 1703, allows a denial of service vulnerability due to the way it handles objects in memory, aka "Windows Subsystem for Linux Denial of Service Vulnerability"...

4.7CVSS5.8AI score0.01565EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2017/08/03 12:0 a.m.11 views

Vulnerability of Microsoft Edge browser script handlers on the Windows operating system, allowing a hacker to execute arbitrary code

The vulnerability of Microsoft Edge’s script handlers arises from an operation going beyond the buffer boundaries due to a memory object processing error. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user...

7.6CVSS7.9AI score0.15877EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2017/08/03 12:0 a.m.8 views

Vulnerability of Internet Explorer browser scripting handlers on the Windows operating system, allowing a hacker to execute arbitrary code

The vulnerability of Internet Explorer script handlers arises from an operation going beyond the buffer boundaries due to a memory object processing error. Exploiting this vulnerability allows a remote attacker to execute arbitrary code in the context of the current user...

7.6CVSS8AI score0.58078EPSS
Exploits2References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/08/03 12:0 a.m.10 views

The vulnerability of JavaScript handlers in the Microsoft Edge browser for the Windows operating system, allowing a perpetrator to execute arbitrary code

The vulnerability of Microsoft Edge’s JavaScript handlers arises from an operation going beyond the buffer boundaries due to a memory object processing error. Exploiting this vulnerability allows a remote attacker to execute arbitrary code in the context of the current user...

7.6CVSS7.9AI score0.66911EPSS
Exploits5References4
BDU FSTEC
BDU FSTEC
added 2017/08/03 12:0 a.m.8 views

Vulnerability of JavaScript handlers in Microsoft Edge and Internet Explorer browsers of the Windows operating system, allowing a perpetrator to execute arbitrary code

The vulnerability of Microsoft Edge and Internet Explorer JavaScript handlers arises from an operation going beyond the buffer boundaries due to a memory object processing error. Exploiting this vulnerability allows a remote attacker to execute arbitrary code in the context of the current user...

7.6CVSS7.9AI score0.09391EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/08/03 12:0 a.m.7 views

Vulnerability of JavaScript handlers in Microsoft Edge and Internet Explorer browsers of the Windows operating system, allowing a perpetrator to execute arbitrary code

The vulnerability of Microsoft Edge and Internet Explorer JavaScript handlers arises from an operation going beyond the buffer boundaries due to a memory object processing error. Exploiting this vulnerability allows a remote attacker to execute arbitrary code in the context of the current user...

7.6CVSS7.9AI score0.09391EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/07/20 12:0 a.m.4 views

Vulnerability of Microsoft Office Online Server, Microsoft Excel Viewer, Microsoft Office Compatibility Pack, Microsoft SharePoint Server, Microsoft Office, and Microsoft Excel, allowing a perpetrator to execute arbitrary code

The vulnerabilities of Microsoft Office Online Server, Microsoft Excel Viewer, Microsoft Office Compatibility Pack, Microsoft SharePoint Server, Microsoft Office, and Microsoft Excel are related to object handling in memory. Exploitation of these vulnerabilities can allow a malicious actor to...

9.3CVSS7.7AI score0.22504EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/07/20 12:0 a.m.4 views

The vulnerability of the Microsoft Office software package, which allows a hacker to inject arbitrary code.

The vulnerability of the Microsoft Office suite is related to the handling of objects in memory. Exploiting this vulnerability allows a malicious actor to inject arbitrary code remotely...

9.3CVSS7.8AI score0.89889EPSS
Exploits14References5
CNVD
CNVD
added 2017/07/12 12:0 a.m.6 views

Microsoft Windows CLFS Local Elevation of Privilege Vulnerability

Microsoft Windows is a popular computer operating system. Microsoft Windows Common Log File System CLFS has a security vulnerability in the handling of memory objects, which allows attackers to exploit the vulnerability to submit special requests for elevated privileges...

8.8CVSS8.9AI score0.00972EPSS
Exploits0References1
CNVD
CNVD
added 2017/07/12 12:0 a.m.3 views

Microsoft Edge Remote Code Execution Vulnerability (CNVD-2017-14640)

Microsoft Edge is the web browser built into the Windows 10 version. Microsoft Edge does not properly handle memory objects and has a remote code execution vulnerability in its implementation that could be exploited by an attacker to execute arbitrary code in the current user context...

7.6CVSS8.3AI score0.10999EPSS
Exploits0References1
CNVD
CNVD
added 2017/07/12 12:0 a.m.5 views

Microsoft Office Remote Code Execution Vulnerability (CNVD-2017-16982)

Microsoft Office is a suite of office software based on the Windows operating system developed by Microsoft. A remote code execution vulnerability exists in Microsoft Office's handling of memory objects, which could allow an attacker to perform an operation in the current user security context vi...

9.3CVSS7.8AI score0.21469EPSS
Exploits0References1
OSV
OSV
added 2017/07/11 9:29 p.m.1 views

CVE-2017-8561

Windows kernel in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation of privilege vulnerability due to the way it handles objects in memory, aka "Windows Kernel Elevation of Privilege...

7CVSS5.8AI score0.00841EPSS
Exploits0References2
OSV
OSV
added 2017/07/11 9:29 p.m.0 views

CVE-2017-8578

Win32k in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an elevation of privilege vulnerability when it fails to properly handle objects in memory, ak...

7.8CVSS5.8AI score0.06473EPSS
Exploits0References3
OSV
OSV
added 2017/07/11 9:29 p.m.0 views

CVE-2017-8486

Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an information disclosure due to the way it handles objects in memory, aka "Win32k Information Disclosure...

4.7CVSS5.8AI score0.02214EPSS
Exploits2References3
BDU FSTEC
BDU FSTEC
added 2017/07/06 12:0 a.m.9 views

The vulnerability of the Uniscribe component of the Windows operating system and the Microsoft Office software package allows a perpetrator to execute arbitrary code.

The vulnerability of the Uniscribe component of the Windows operating system and the Microsoft Office suite is related to the handling of objects in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9.3CVSS8AI score0.19889EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2017/06/30 12:0 a.m.6 views

The vulnerability of the Microsoft PowerPoint presentation preparation program allows a hacker to execute arbitrary code.

The vulnerability of the Microsoft PowerPoint presentation preparation program is related to improper access to objects in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9.3CVSS7.6AI score0.17127EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2017/06/30 12:0 a.m.4 views

Microsoft Edge browser vulnerability, which allows a hacker to gain access to processes in privileged context

The vulnerability of Microsoft Edge relates to improper access to objects in memory. Exploiting this vulnerability can allow a local attacker to gain control over processes from a privileged context...

7.6CVSS7.5AI score0.51465EPSS
Exploits5References3
OSV
OSV
added 2017/06/15 1:29 a.m.0 views

CVE-2017-8511

A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-8509, CVE-2017-8510, CVE-2017-8512, CVE-2017-0260, and CVE-2017-8506...

7.8CVSS6.4AI score0.20612EPSS
Exploits0References2
OSV
OSV
added 2017/06/15 1:29 a.m.3 views

CVE-2017-8513

A remote code execution vulnerability exists in Microsoft PowerPoint when the software fails to properly handle objects in memory, aka "Microsoft PowerPoint Remote Code Execution Vulnerability"...

7.8CVSS6.4AI score0.17127EPSS
Exploits0References2
Rows per page
Query Builder