Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7680 matches found

Debian CVE
Debian CVEadded 2017/03/17 2:0 p.m.24 views

CVE-2014-9852

distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact via unspecified vectors...

9.8CVSS9.8AI score0.01316EPSS
Exploits0
OSV
OSVadded 2017/03/17 12:59 a.m.2 views

CVE-2017-0103

The kernel API in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, and Windows Server 2012 mishandles registry objects in memory, which allows local users to gain privileges via a crafted application, aka "Windows Registry Elevation of Privilege Vulnerability."...

7CVSS5.8AI score0.01188EPSS
Exploits1References4
Prion
Prionadded 2017/03/17 12:59 a.m.22 views

Privilege escalation

The kernel API in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, and Windows Server 2012 mishandles registry objects in memory, which allows local users to gain privileges via a crafted application, aka "Windows Registry Elevation of Privilege Vulnerability."...

4.4CVSS7AI score0.01188EPSS
Exploits1References4Affected Software3
OpenVAS
OpenVASadded 2017/03/15 12:0 a.m.36 views

Microsoft Office Word Viewer Remote Code Execution Vulnerability (4013241)

This host is missing an important security update according to Microsoft Bulletin MS17-014 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS7.2AI score0.23473EPSS
Exploits0References3
Microsoft CVE
Microsoft CVEadded 2017/03/14 7:0 a.m.25 views

Win32k Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or...

7.8CVSS3.5AI score0.01692EPSS
Exploits0
Microsoft CVE
Microsoft CVEadded 2017/03/14 7:0 a.m.23 views

Windows Uniscribe Information Disclosure Vulnerability

An information disclosure vulnerability exists when Windows Uniscribe improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There are multiple ways an attacker could exploit the...

4.4CVSS2.1AI score0.09704EPSS
Exploits2
Microsoft CVE
Microsoft CVEadded 2017/03/14 7:0 a.m.27 views

Win32k Elevation of Privilege Vulnerability

An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or...

7.8CVSS3.5AI score0.01652EPSS
Exploits0
Microsoft CVE
Microsoft CVEadded 2017/03/14 7:0 a.m.52 views

Microsoft Browser Information Disclosure Vulnerability

An information disclosure vulnerability exists when affected Microsoft browsers improperly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit the vulnerability, in a web-based attack...

4.3CVSS1.9AI score0.08427EPSS
Exploits1
Microsoft CVE
Microsoft CVEadded 2017/03/14 7:0 a.m.25 views

Microsoft Browser Information Disclosure Vulnerability

An information disclosure vulnerability exists when affected Microsoft browsers improperly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit the vulnerability, in a web-based attack...

4.3CVSS1.9AI score0.10647EPSS
Exploits1
Microsoft CVE
Microsoft CVEadded 2017/03/14 7:0 a.m.42 views

Windows Uniscribe Remote Code Execution Vulnerability

A remote code execution vulnerability exists due to the way Windows Uniscribe handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accoun...

9.3CVSS7.3AI score0.23994EPSS
Exploits1
Microsoft CVE
Microsoft CVEadded 2017/03/14 7:0 a.m.23 views

Windows Uniscribe Information Disclosure Vulnerability

An information disclosure vulnerability exists when Windows Uniscribe improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the user’s system. There are multiple ways an attacker could exploit the...

4.4CVSS2.1AI score0.09704EPSS
Exploits1
Kaspersky
Kasperskyadded 2017/03/14 12:0 a.m.49 views

KLA10998 Information disclosure vulnerability in Microsoft Windows Media Player

An improper handling of objects in memory was found in Microsoft Windows Media Player. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a specially designed website. Original advisories Microsoft Security Update...

3.1CVSS5.9AI score0.14442EPSS
Exploits1References17
Check Point Advisories
Check Point Advisoriesadded 2017/03/14 12:0 a.m.2 views

Microsoft Office Memory Corruption (MS17-014: CVE-2017-0006)

A remote code execution vulnerability exists in Microsoft Office. The vulnerability is due to the way Microsoft Office improperly handles objects in memory. A remote attacker can exploit this issue by enticing a victim to open a specially crafted file...

9.3CVSS7.6AI score0.26245EPSS
Exploits0
Check Point Advisories
Check Point Advisoriesadded 2017/03/14 12:0 a.m.3 views

Microsoft Windows GDI Elevation of Privilege (MS17-013: CVE-2017-0047)

Elevation of privilege vulnerabilities exists in Windows Graphics Device Interface. The vulnerability is due to the way Windows Graphics Device Interface handles objects in memory. A remote attacker can exploit this issue by enticing a victim to open a specially crafted file...

7.2CVSS4.9AI score0.01714EPSS
Exploits0
Kaspersky
Kasperskyadded 2017/03/14 12:0 a.m.98 views

KLA10984 Privilege escalation vulnerabilities in Windows kernel

Multiple serious vulnerabilities have been found in Microsoft Windows kernel. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities: 1. An improper check of a buffer length prior to copying memory to the buffer can be exploited remotely ...

7.8CVSS8.2AI score0.72264EPSS
Exploits4References24
Check Point Advisories
Check Point Advisoriesadded 2017/03/14 12:0 a.m.6 views

Microsoft Windows Uniscribe Remote Code Execution (MS17-011: CVE-2017-0086)

A remote code execution vulnerability exists in Microsoft Windows. The vulnerability is due to the way Windows Uniscribe handles objects in the memory. A remote attacker can exploit this vulnerability by enticing the target user to open a specially crafted file...

9.3CVSS8.5AI score0.23994EPSS
Exploits1
GithubExploit
GithubExploitadded 2017/03/11 2:30 p.m.3 views

Exploit for Improper Handling of Exceptional Conditions in Apache Struts

I extended Scott Campbell's script further, made it more complic...

10CVSS9.7AI score0.94267EPSS
Exploits44
Zero Day Initiative
Zero Day Initiativeadded 2017/03/09 12:0 a.m.13 views

Foxit Reader Pattern Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.8CVSS6.8AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2017/03/09 12:0 a.m.15 views

Foxit Reader Xref Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of Xre...

6.8CVSS1.8AI score
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2017/03/08 12:0 a.m.19 views

Mozilla Firefox < 52 Multiple Vulnerabilities

Binary data 9986.prm...

10CVSS7.7AI score0.29152EPSS
Exploits12References17
Rows per page
Query Builder