Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7676 matches found

Microsoft CVE
Microsoft CVEadded 2017/03/14 7:0 a.m.25 views

Win32k Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or...

7.8CVSS3.5AI score0.01692EPSS
Exploits0
Microsoft CVE
Microsoft CVEadded 2017/03/14 7:0 a.m.23 views

Windows Uniscribe Information Disclosure Vulnerability

An information disclosure vulnerability exists when Windows Uniscribe improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There are multiple ways an attacker could exploit the...

4.4CVSS2.1AI score0.09704EPSS
Exploits2
Microsoft CVE
Microsoft CVEadded 2017/03/14 7:0 a.m.52 views

Microsoft Browser Information Disclosure Vulnerability

An information disclosure vulnerability exists when affected Microsoft browsers improperly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit the vulnerability, in a web-based attack...

4.3CVSS1.9AI score0.08427EPSS
Exploits1
Microsoft CVE
Microsoft CVEadded 2017/03/14 7:0 a.m.27 views

Win32k Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or...

7.8CVSS3.5AI score0.01652EPSS
Exploits0
Microsoft CVE
Microsoft CVEadded 2017/03/14 7:0 a.m.25 views

Microsoft Browser Information Disclosure Vulnerability

An information disclosure vulnerability exists when affected Microsoft browsers improperly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit the vulnerability, in a web-based attack...

4.3CVSS1.9AI score0.10647EPSS
Exploits1
Microsoft CVE
Microsoft CVEadded 2017/03/14 7:0 a.m.42 views

Windows Uniscribe Remote Code Execution Vulnerability

A remote code execution vulnerability exists due to the way Windows Uniscribe handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accoun...

9.3CVSS7.3AI score0.23994EPSS
Exploits1
Microsoft CVE
Microsoft CVEadded 2017/03/14 7:0 a.m.23 views

Windows Uniscribe Information Disclosure Vulnerability

An information disclosure vulnerability exists when Windows Uniscribe improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There are multiple ways an attacker could exploit the...

4.4CVSS2.1AI score0.09704EPSS
Exploits1
Kaspersky
Kasperskyadded 2017/03/14 12:0 a.m.49 views

KLA10998 Information disclosure vulnerability in Microsoft Windows Media Player

An improper handling of objects in memory was found in Microsoft Windows Media Player. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a specially designed website. Original advisories Microsoft Security Update...

3.1CVSS5.9AI score0.14442EPSS
Exploits1References17
Check Point Advisories
Check Point Advisoriesadded 2017/03/14 12:0 a.m.2 views

Microsoft Office Memory Corruption (MS17-014: CVE-2017-0006)

A remote code execution vulnerability exists in Microsoft Office. The vulnerability is due to the way Microsoft Office improperly handles objects in memory. A remote attacker can exploit this issue by enticing a victim to open a specially crafted file...

9.3CVSS7.6AI score0.26245EPSS
Exploits0
Check Point Advisories
Check Point Advisoriesadded 2017/03/14 12:0 a.m.3 views

Microsoft Windows GDI Elevation of Privilege (MS17-013: CVE-2017-0047)

Elevation of privilege vulnerabilities exists in Windows Graphics Device Interface. The vulnerability is due to the way Windows Graphics Device Interface handles objects in memory. A remote attacker can exploit this issue by enticing a victim to open a specially crafted file...

7.2CVSS4.9AI score0.01714EPSS
Exploits0
Kaspersky
Kasperskyadded 2017/03/14 12:0 a.m.98 views

KLA10984 Privilege escalation vulnerabilities in Windows kernel

Multiple serious vulnerabilities have been found in Microsoft Windows kernel. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities: 1. An improper check of a buffer length prior to copying memory to the buffer can be exploited remotely ...

7.8CVSS8.2AI score0.72264EPSS
Exploits4References24
Check Point Advisories
Check Point Advisoriesadded 2017/03/14 12:0 a.m.6 views

Microsoft Windows Uniscribe Remote Code Execution (MS17-011: CVE-2017-0086)

A remote code execution vulnerability exists in Microsoft Windows. The vulnerability is due to the way Windows Uniscribe handles objects in the memory. A remote attacker can exploit this vulnerability by enticing the target user to open a specially crafted file...

9.3CVSS8.5AI score0.23994EPSS
Exploits1
GithubExploit
GithubExploitadded 2017/03/11 2:30 p.m.3 views

Exploit for Improper Handling of Exceptional Conditions in Apache Struts

I extended Scott Campbell's script further, made it more complic...

10CVSS9.7AI score0.94267EPSS
Exploits44
Zero Day Initiative
Zero Day Initiativeadded 2017/03/09 12:0 a.m.13 views

Foxit Reader Pattern Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.8CVSS6.8AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2017/03/09 12:0 a.m.14 views

Foxit Reader Xref Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of Xre...

6.8CVSS1.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2017/03/08 12:0 a.m.19 views

Mozilla Firefox < 52 Multiple Vulnerabilities

Binary data 9986.prm...

10CVSS7.7AI score0.29152EPSS
Exploits12References17
OpenVAS
OpenVASadded 2017/03/07 12:0 a.m.31 views

LibreOffice Calc And Writer File Disclosure Vulnerability - Windows

LibreOffice is prone to arbitrary file disclosure vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5.5CVSS5.9AI score0.00433EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2017/03/07 12:0 a.m.10 views

Foxit Reader < 8.2.1 Multiple Vulnerabilities

Binary data 9985.prm...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2017/02/24 12:0 a.m.25 views

Debian DSA-3792-1 : libreoffice - security update

Ben Hayak discovered that objects embedded in Writer and Calc documents may result in information disclosure. Please see https://www.libreoffice.org/about-us/security/advisories/cve-2017-3157 /for additional information. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text an...

5.5CVSS5.9AI score0.00433EPSS
Exploits0References4
OSV
OSVadded 2017/02/22 12:0 a.m.0 views

UBUNTU-CVE-2017-3157

By exploiting the way Apache OpenOffice before 4.1.4 renders embedded objects, an attacker could craft a document that allows reading in a file from the user's filesystem. Information could be retrieved by the attacker by, e.g., using hidden sections to store the information, tricking the user in...

5.5CVSS6.3AI score0.00433EPSS
Exploits0References4
Rows per page
Query Builder