CVE-2026-46383

Microsoft APM is an open-source, community-driven dependency manager for AI agents. Prior to 0.13.0, Microsoft APM contains a Windows-specific archive extraction boundary failure in the legacy-bundle probe used by apm install on supported Python 3.10 and 3.11 runtimes. When apm install is given a...

CVE-2026-46383 Microsoft APM: Windows absolute-path tar member overwrite during legacy-bundle probing in `apm install`

Microsoft APM is an open-source, community-driven dependency manager for AI agents. Prior to 0.13.0, Microsoft APM contains a Windows-specific archive extraction boundary failure in the legacy-bundle probe used by apm install on supported Python 3.10 and 3.11 runtimes. When apm install is given a...

Microsoft Application Gateway Elevation of Privilege Vulnerability

Microsoft Application Gateway is an application gateway from Microsoft Corporation in the United States. An elevation of privilege vulnerability exists in Microsoft Application Gateway, which can be exploited by an attacker to elevate privileges...

Microsoft Application Gateway 缓冲区错误漏洞

Microsoft Application Gateway is an application gateway from Microsoft Corporation in the United States. An elevation of privilege vulnerability exists in Microsoft Application Gateway, which can be exploited by an attacker to elevate privileges...

CVE-2022-43688

Concrete CMS formerly concrete5 below 8.5.10 and between 9.0.0 and 9.1.2 is vulnerable to Stored Cross-Site Scripting XSS in icons since the Microsoft application tile color is not sanitized. Remediate by updating to Concrete CMS 9.1.3+ or 8.5.10+...

Malicious code in microsoft.applicationinsights (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2025-851 Malicious code in microsoft.applicationinsights (npm)

--- -= Per source details. Do not edit below this line.=-...

MAL-2024-11883 Malicious code in microsoft.applicationinsights.windowsapps (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 52a55ac73cfe94f23310de107d74ba82bfa2e8ae17f9742af50ef4e2da42c98d The OpenSSF Package Analysis project identified 'microsoft.applicationinsights.windowsapps' @ 99.99.99 npm as malicious. It is considered...

Microsoft Application Virtualization 代码注入漏洞

Microsoft Application Virtualization is an application virtualization and application streaming solution from Microsoft Corporation USA. A code injection vulnerability exists in Microsoft Application Virtualization. The following products and editions are affected: Windows 10 Version 20H2 for...

PT-2021-2428 · Microsoft · Application Virtualization +1

Name of the Vulnerable Software and Affected Versions: Microsoft Application Virtualization App-V affected versions not specified Description: The issue is related to incorrect code generation management in Microsoft Application Virtualization App-V for Windows operating systems. It allows remote...

Raw Image Extension Information Disclosure Vulnerability

Raw Image Extension is an image extension application developed by Microsoft that allows you to view images in Raw format. An information disclosure vulnerability exists in versions prior to Raw Image Extension 1.0.32861.0. An attacker could exploit this vulnerability to obtain sensitive...

Update for RDC 7.1 to support restricted administration logons on Windows 7 and Windows Server 2008 R2

Update for RDC 7.1 to support restricted administration logons on Windows 7 and Windows Server 2008 R2 About this update This Remote Desktop Protocol RDP 7.1 update enables the Remote Desktop Connection client to perform restricted administration logons. It also enables the Remote Desktop Service...

Microsoft Application Inspector Remote Code Execution Vulnerability

Microsoft Application Inspector is a software source code analysis tool from the U.S. company Microsoft Microsoft. The product supports scanning C, C++, C, Java and JavaScript and other languages. A remote code execution vulnerability exists in Microsoft Application Inspector v1.0.23 and prior...

Microsoft Application Verifier DoubleAgent Antivirus Hijacking Vulnerability

Microsoft Application Verifier is a code dynamic detection tool that comes with Microsoft Windows versions. Microsoft Application Verifier has a DoubleAgent vulnerability in the application code detection workaround. The vulnerability exists in the "verifier provider DLL" file. An attacker can...

Microsoft Application Verifier exposed 0day vulnerabilities, the impact of Trend Micro, Kaspersky, Symantec, including a large number of security products-vulnerability warning-the black bar safety net

Recently, Cybellum company found a 0-day vulnerability, can completely control most of the security product. This vulnerability is called“DoubleAgent”is a double-sided Spy, and many security vendors by DoubleAgent effects, including Avast, AVG, Avira, Bitdefender, Trend Micro, Comodo Comodo, ESET...

Microsoft Application Virtualization CVE-2016-0137 Information Disclosure Vulnerability

Description Microsoft Application Virtualization is prone to an information-disclosure vulnerability. An attacker can leverage this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Office 2013 Service Pack 1 32-bit editions Microsoft Office 20...

MS09-062: Vulnerabilities in GDI+ Could Allow Remote Code Execution (957488) (uncredentialed check)

The remote host has a version of SQL Server that may host the RSClientPrint ActiveX control that includes a copy of gdiplus.dll that is affected by multiple buffer overflow vulnerabilities when viewing TIFF, PNG, BMP, and Office files that could allow an attacker to execute arbitrary code on the...

MS09-062: Vulnerabilities in GDI+ Could Allow Remote Code Execution (957488)

The remote host is running a version of Windows that is affected by multiple buffer overflow vulnerabilities when viewing TIFF, PNG, BMP, and Office files that could allow an attacker to execute arbitrary code on the remote host. Additionally, there is a GDI+ .NET API vulnerability that allows a...

Bing Bar WLCMDODF

...

Microsoft Application Virtualization 4.6 Service Pack 3 (KB2873450)

Application Virtualization App-V 4.6 Service Pack 3 provides new platform support for Windows 8.1 and Windows Server 2012 R2. This service pack also provides the latest security and stability enhancements to help keep computers running App-V up-to-date, reliable, and more secure. The goal of this...