Lucene search
K

4 matches found

ATTACKERKB
ATTACKERKB
added 2021/05/11 12:0 a.m.187 views

CVE-2021-26419

Scripting Engine Memory Corruption Vulnerability Recent assessments: architect00 at May 14, 2021 10:33am UTC reported: Details The vulnerability affects Internet Explorer 11 on all Windows Versions. It is located in the jscript9.dll library, which is used to execute javascript. Possible attack...

8.8CVSS9AI score0.24188EPSS
In wildExploits3References3
ATTACKERKB
ATTACKERKB
added 2020/12/30 12:0 a.m.80 views

CVE-2020-17008 splWOW64 Elevation of Privilege Patch Bypass

This CVE is the result of a patch bypass for CVE-2020-0986, reported to Microsoft by Kaspersky in December 2019 and patched in June 2020. Google Project Zero researcher Maddie Stone notified Microsoft on September 24, 2020 that the fix for Kaspersky’s reported vulnerability was incomplete...

7.8CVSS7.8AI score0.15932EPSS
In wildExploits1References1
Securelist
Securelist
added 2020/09/02 10:0 a.m.304 views

Operation PowerFall: CVE-2020-0986 and variants

In August 2020, we published a blog post about Operation PowerFall. This targeted attack consisted of two zero-day exploits: a remote code execution exploit for Internet Explorer 11 and an elevation of privilege exploit targeting the latest builds of Windows 10. While we already described the...

7.2CVSS8.7AI score0.15932EPSS
Exploits0
Securelist
Securelist
added 2020/08/12 7:0 a.m.866 views

Internet Explorer and Windows zero-day exploits used in Operation PowerFall

Executive summary In May 2020, Kaspersky technologies prevented an attack on a South Korean company by a malicious script for Internet Explorer. Closer analysis revealed that the attack used a previously unknown full chain that consisted of two zero-day exploits: a remote code execution exploit f...

7.6CVSS8.5AI score0.86863EPSS
Exploits20
Rows per page
Query Builder