Lucene search
K

163 matches found

Trellix
Trellix
added 2022/07/19 12:0 a.m.123 views

Countering Follina Attack (CVE- 2022-30190) with Trellix Network Security Platform’s Advanced Detection Features

Countering Follina Attack CVE- 2022-30190 with Trellix Network Security Platform’s Advanced Detection Features By Trellix · July 19, 2022 This blog was also written by Chintan Shah Executive summary During the end of May 2022, independent security researcher reported a vulnerability assigned...

8.8CVSS9.2AI score0.99374EPSS
Exploits90
Microsoft KB
Microsoft KB
added 2022/07/05 12:0 a.m.4 views

July 5, 2022, update for Office 2016 (KB5002226)

July 5, 2022, update for Office 2016 KB5002226 This article describes update 5002226 for Microsoft Office 2016 that was released on July 5, 2022.Be aware that the update in the Microsoft Download Center applies to the Microsoft Installer .msi-based edition of Office 2016. It doesn't apply to Offi...

6.4AI score
Exploits0
CISA KEV Catalog
CISA KEV Catalog
added 2022/03/03 12:0 a.m.15 views

Microsoft Windows Object Linking & Embedding (OLE) Remote Code Execution Vulnerability

A vulnerability exists in Windows Object Linking & Embedding OLE that could allow remote code execution if a user opens a file that contains a specially crafted OLE object...

9.3CVSS7.1AI score0.81628EPSS
In wildExploits22
BDU FSTEC
BDU FSTEC
added 2021/10/13 12:0 a.m.12 views

Vulnerability of Windows operating systems, related to errors in code generation, allows a hacker to execute arbitrary code.

The vulnerability of Windows operating systems is related to errors in code generation control. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially created file containing a malicious OLE object...

9.3CVSS8AI score0.77553EPSS
Exploits11References10
CNNVD
CNNVD
added 2021/07/26 12:0 a.m.4 views

TechSmith Snagit 安全漏洞

Techsmith TechSmith SnagIT is a set of screen capture software from Techsmith USA. The software is mainly used to take screenshots and record videos on the screen. A security vulnerability exists in TechSmith Snagit that stems from TechSmith Snagit's use of Object Linking and Embedding OLE, which...

8.8CVSS8AI score0.00391EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2021/07/26 12:0 a.m.4 views

PT-2021-10148

Name of the Vulnerable Software and Affected Versions: TechSmith Snagit version 19.1.0.2653 Description: The issue allows attackers to obfuscate and embed crafted files used to escalate privileges by utilizing Object Linking and Embedding OLE. Recommendations: For TechSmith Snagit version...

8.8CVSS7.9AI score0.00391EPSS
Exploits1References10
BDU FSTEC
BDU FSTEC
added 2021/06/02 12:0 a.m.7 views

The vulnerability of the OLE Automation technology implementation in Microsoft Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the OLE Automation technology implementation in Microsoft Windows operating systems is related to improper code generation management. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

8.8CVSS8.2AI score0.02352EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2019/12/17 12:0 a.m.4 views

Vulnerability of the Windows OLE operating system component, allowing a hacker to execute arbitrary code

The vulnerability of the Windows OLE operating system exists due to insufficient checking of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

7.8CVSS7.6AI score0.08859EPSS
Exploits0References4
CNVD
CNVD
added 2019/12/11 12:0 a.m.2 views

Microsoft Windows and Microsoft Windows Server OLE Remote Code Execution Vulnerability

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation, U.S.A. Microsoft Windows is a set of operating systems for personal devices.Microsoft Windows Server is a set of server operating systems.OLE is a technology that allows applications to share data and...

7.8CVSS8AI score0.08859EPSS
Exploits0References1
OSV
OSV
added 2019/12/10 10:15 p.m.3 views

CVE-2019-1484

A remote code execution vulnerability exists when Microsoft Windows OLE fails to properly validate user input, aka 'Windows OLE Remote Code Execution Vulnerability'...

7.8CVSS7.7AI score0.08859EPSS
Exploits0References1
OSV
OSV
added 2019/11/27 7:15 p.m.2 views

DEBIAN-CVE-2013-2625

An Access Bypass issue exists in OTRS Help Desk before 3.2.4, 3.1.14, and 3.0.19, OTRS ITSM before 3.2.3, 3.1.8, and 3.0.7, and FAQ before 2.2.3, 2.1.4, and 2.0.8. Access rights by the object linking mechanism is not verified...

6.5CVSS6.8AI score0.01291EPSS
Exploits0References1
OSV
OSV
added 2019/11/27 7:15 p.m.9 views

CVE-2013-2625

An Access Bypass issue exists in OTRS Help Desk before 3.2.4, 3.1.14, and 3.0.19, OTRS ITSM before 3.2.3, 3.1.8, and 3.0.7, and FAQ before 2.2.3, 2.1.4, and 2.0.8. Access rights by the object linking mechanism is not verified...

6.5CVSS6.6AI score0.01291EPSS
Exploits0References6
Prion
Prion
added 2019/11/27 7:15 p.m.20 views

Design/Logic Flaw

An Access Bypass issue exists in OTRS Help Desk before 3.2.4, 3.1.14, and 3.0.19, OTRS ITSM before 3.2.3, 3.1.8, and 3.0.7, and FAQ before 2.2.3, 2.1.4, and 2.0.8. Access rights by the object linking mechanism is not verified...

6.4CVSS6.9AI score0.01291EPSS
Exploits0References5Affected Software5
UbuntuCve
UbuntuCve
added 2019/11/27 7:15 p.m.28 views

CVE-2013-2625

An Access Bypass issue exists in OTRS Help Desk before 3.2.4, 3.1.14, and 3.0.19, OTRS ITSM before 3.2.3, 3.1.8, and 3.0.7, and FAQ before 2.2.3, 2.1.4, and 2.0.8. Access rights by the object linking mechanism is not verified...

6.5CVSS6.8AI score0.01291EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/11/27 6:8 p.m.26 views

CVE-2013-2625

An Access Bypass issue exists in OTRS Help Desk before 3.2.4, 3.1.14, and 3.0.19, OTRS ITSM before 3.2.3, 3.1.8, and 3.0.7, and FAQ before 2.2.3, 2.1.4, and 2.0.8. Access rights by the object linking mechanism is not verified...

6.6AI score0.01291EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2019/11/27 6:8 p.m.20 views

CVE-2013-2625

An Access Bypass issue exists in OTRS Help Desk before 3.2.4, 3.1.14, and 3.0.19, OTRS ITSM before 3.2.3, 3.1.8, and 3.0.7, and FAQ before 2.2.3, 2.1.4, and 2.0.8. Access rights by the object linking mechanism is not verified...

6.5CVSS6.6AI score0.01291EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2019/06/06 12:0 a.m.7 views

The vulnerability of the OLE component of the Windows operating system, related to insufficient validation of input data, allows a perpetrator to execute arbitrary code.

The vulnerability of the OLE component in the Windows operating system is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

9.3CVSS7.8AI score0.14351EPSS
Exploits0References3
OSV
OSV
added 2019/04/08 12:57 p.m.5 views

USN-3940-1 clamav vulnerabilities

It was discovered that ClamAV incorrectly handled scanning certain PDF documents. A remote attacker could possibly use this issue to cause ClamAV to crash, resulting in a denial of service. CVE-2019-1787 It was discovered that ClamAV incorrectly handled scanning certain OLE2 files. A remote...

7.5CVSS6AI score0.01839EPSS
Exploits2References4
CNVD
CNVD
added 2017/06/08 12:0 a.m.2 views

Microsoft Windows OLE Remote Code Execution Vulnerability (CNVD-2017-09716)

Microsoft Windows is a series of operating systems released by the American company Microsoft. A remote code execution vulnerability exists in the olecnv32.dll file in Microsoft Windows due to Windows OLE failing to properly filter user input. A remote attacker can exploit this vulnerability to...

9.3CVSS8.1AI score0.62532EPSS
Exploits2References1
OSV
OSV
added 2017/04/12 2:59 p.m.2 views

CVE-2017-0211

An elevation of privilege vulnerability exists in Windows 10, Windows 8.1, Windows RT 8.1, Windows Server 2012, Windows Server 2012 R2, and Windows Server 2016 versions of Microsoft Windows OLE when it fails an integrity-level check, aka "Windows OLE Elevation of Privilege Vulnerability."...

5.5CVSS7.3AI score0.13975EPSS
Exploits1References4
Rows per page
Query Builder