Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

105 matches found

Exploit DB
Exploit DBadded 2018/12/20 12:0 a.m.38 views

VBScript - MSXML Execution Policy Bypass

According to https://blogs.windows.com/msedgedev/2017/07/07/update-disabling-vbscript-internet-explorer-11/, Starting from Windows 10 Fall Creators Update, VBScript execution in IE 11 should be disabled for websites in the Internet Zone and the Restricted Sites Zone by default. However, the...

7AI score
Exploits0
CVE
CVEadded 2018/10/10 1:0 p.m.136 views

CVE-2018-8494

CVE-2018-8494 is a remote code execution vulnerability in the Microsoft XML Core Services MSXML parser when processing untrusted input. Affected products include Windows 7; Windows Server 2008, 2012, 2012 R2, 2016, 2019; Windows 8.1; Windows 10 (and Windows RT 8.1); Windows Server 2008 R2; Window...

9.3CVSS7.8AI score0.22187EPSS
Exploits0References3Affected Software8
OpenVAS
OpenVASadded 2018/10/10 12:0 a.m.160 views

Microsoft Windows Multiple Vulnerabilities (KB4462923)

This host is missing a critical security update according to Microsoft KB4462923 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.8AI score0.73106EPSS
Exploits16References3
OpenVAS
OpenVASadded 2018/10/10 12:0 a.m.87 views

Microsoft Windows Multiple Vulnerabilities (KB4462922)

This host is missing a critical security update according to Microsoft KB4462922 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS6.8AI score0.73106EPSS
Exploits16References3
Microsoft CVE
Microsoft CVEadded 2018/10/09 7:0 a.m.44 views

MS XML Remote Code Execution Vulnerability

A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input. An attacker who successfully exploited the vulnerability could run malicious code remotely to take control of the user’s system. To exploit the vulnerability, an attacker could hos...

9.3CVSS4.1AI score0.22187EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2018/10/09 12:0 a.m.139 views

KB4462917: Windows 10 Version 1607 and Windows Server 2016 October 2018 Security Update

The remote Windows host is missing security update 4462917. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory. The vulnerability could corrupt memory in such a way that an attacker...

9.3CVSS8.1AI score0.73106EPSS
Exploits17References24
BDU FSTEC
BDU FSTECadded 2018/09/14 12:0 a.m.3 views

The vulnerability of the MSXML component in Windows operating systems allows attackers to execute malicious code.

The vulnerability of the MSXML component in Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute malicious code through a specially created web page from a remote location...

7.6CVSS8AI score0.48901EPSS
Exploits1References3
Cvelist
Cvelistadded 2018/09/13 12:0 a.m.24 views

CVE-2018-8420

A remote code execution vulnerability exists when the Microsoft XML Core Services MSXML parser processes user input, aka "MS XML Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows...

8.3AI score0.48901EPSS
Exploits1References3
CNVD
CNVDadded 2018/09/12 12:0 a.m.1 views

Microsoft Windows MS XML Remote Code Execution Vulnerability

Microsoft Windows Server 2016 and so on are a series of operating systems released by Microsoft USA.XML Core Services MSXML parser is one of the XML parsers. A remote code execution vulnerability exists in the Microsoft XML Core Services MSXML parser. A remote attacker can exploit this...

9.3CVSS8.8AI score0.48901EPSS
Exploits1References1
OpenVAS
OpenVASadded 2018/09/12 12:0 a.m.181 views

Microsoft Windows Multiple Vulnerabilities (KB4457144)

This host is missing a critical security update according to Microsoft KB4457144. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS7AI score0.48901EPSS
Exploits11References3
OpenVAS
OpenVASadded 2018/09/12 12:0 a.m.77 views

Microsoft Windows Multiple Vulnerabilities (KB4457132)

This host is missing a critical security update according to Microsoft KB4457132 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6.9AI score0.69019EPSS
Exploits16References3
Microsoft KB
Microsoft KBadded 2018/09/11 7:0 a.m.40 views

September 11, 2018—KB4457140 (Security-only update)

September 11, 2018—KB4457140 Security-only update Improvements and fixes This security update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Security updates to Windows media, Windows Shell, .NET Framework, Windows Hyper-V...

9.3CVSS6.9AI score0.48901EPSS
Exploits11
Microsoft KB
Microsoft KBadded 2018/09/11 7:0 a.m.53 views

September 11, 2018—KB4457135 (Monthly Rollup)

September 11, 2018—KB4457135 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4343895 released August 30, 2018 and addresses the following issues: Security updates to Windows media, Windows Shell, .NET Framework, Windows...

9.3CVSS6.8AI score0.48901EPSS
Exploits11
Symantec
Symantecadded 2018/09/11 12:0 a.m.48 views

Microsoft Windows XML Core Services MSXML parser CVE-2018-8420 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely cause a denial-of-service condition. Technologies Affected Microsoft Windows ...

0.8AI score0.48901EPSS
Exploits1Affected Software3
NVD
NVDadded 2018/05/17 7:29 p.m.20 views

CVE-2018-8714

Honeywell MatrikonOPC OPC Controller before 5.1.0.0 allows local users to transfer arbitrary files from a host computer and consequently obtain sensitive information via vectors related to MSXML libraries...

6.1CVSS6AI score0.00388EPSS
Exploits0References3
Prion
Prionadded 2018/05/17 7:29 p.m.12 views

Design/Logic Flaw

Honeywell MatrikonOPC OPC Controller before 5.1.0.0 allows local users to transfer arbitrary files from a host computer and consequently obtain sensitive information via vectors related to MSXML libraries...

3.6CVSS5.9AI score0.00388EPSS
Exploits0References3Affected Software1
OSV
OSVadded 2018/05/17 7:29 p.m.2 views

CVE-2018-8714

Honeywell MatrikonOPC OPC Controller before 5.1.0.0 allows local users to transfer arbitrary files from a host computer and consequently obtain sensitive information via vectors related to MSXML libraries...

6.1CVSS5.9AI score0.00388EPSS
Exploits0References3
Cvelist
Cvelistadded 2018/05/17 7:0 p.m.21 views

CVE-2018-8714

Honeywell MatrikonOPC OPC Controller before 5.1.0.0 allows local users to transfer arbitrary files from a host computer and consequently obtain sensitive information via vectors related to MSXML libraries...

6AI score0.00388EPSS
Exploits0References3
Microsoft KB
Microsoft KBadded 2018/04/17 12:0 a.m.92 views

MS06-071: Security update for Microsoft XML Core Services 6.0

MS06-071: Security update for Microsoft XML Core Services 6.0 INTRODUCTION Microsoft has released security bulletin MS06-071. The security bulletin contains all the relevant information about the security update. This information includes file manifest information and deployment options. To view...

6.9AI score
Exploits0
Microsoft KB
Microsoft KBadded 2018/04/17 12:0 a.m.47 views

MS08-069: Description of the security update for XML Core Services 6.0: November 11, 2008

MS08-069: Description of the security update for XML Core Services 6.0: November 11, 2008 Support for Windows Vista Service Pack 1 SP1 ends on July 12, 2011. To continue receiving security updates for Windows, make sure you're running Windows Vista with Service Pack 2 SP2. For more information,...

7.1AI score
Exploits0
Rows per page
Query Builder