Security Update for Windows Defender (May 2026) (CVE-2026-41091)

The Malware Protection Engine version of Microsoft Windows Defender installed on the remote Windows host is prior to 1.1.26040.8. It is, therefore, affected by a privilege escalation vulnerability: - Improper link resolution before file access 'link following' in Microsoft Defender allows an...

📄 Microsoft Malware Protection Engine Type Confusion

Microsoft Malware Protection Engine type confusion vulnerability proof of concept exploit for an older vulnerability from 2017. ================================================================================================================================== | Title : Microsoft Malware Protection...

EUVD-2017-17485

Malware in sbrugna...

EUVD-2011-0063

Malware in sbrugna...

EUVD-2017-17487

Malware in sbrugna...

EUVD-2023-28023

Malicious code in bioql PyPI...

CVE-2013-1346

mpengine.dll in Microsoft Malware Protection Engine before 1.1.9506.0 on x64 platforms allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted file...

CVE-2024-29183

OpenRASP is a RASP solution that directly integrates its protection engine into the application server by instrumentation. There exists a reflected XSS in the /login page due to a reflection of the redirect parameter. This allows an attacker to execute arbitrary javascript with the permissions of...

Microsoft Security Essentials DoS Vulnerability (Dec 2023)

This host is missing a critical security update according to Microsoft Security Updates released for Microsoft Security Essentials Protection Engine dated 13-12-2023 SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C ...

Security Updates for Windows Defender (November 2023)

The Malware Protection Engine version of Microsoft Windows Defender installed on the remote Windows host is prior to 4.18.23100.2009. It is, therefore, affected by a privilege escalation vulnerability. An authenticated attacker can exploit this to gain elevated privileges. Note that Nessus has no...

CVE-2023-23958

Symantec Protection Engine, prior to 9.1.0, may be susceptible to a Hash Leak vulnerability...

CVE-2023-23958

Symantec Protection Engine, prior to 9.1.0, may be susceptible to a Hash Leak vulnerability...

Memory corruption

Symantec Protection Engine, prior to 9.1.0, may be susceptible to a Hash Leak vulnerability...

Symantec Protection Engine Security Vulnerability

Symantec Protection Engine is a malware protection platform from Symantec USA. A security vulnerability exists in Symantec Protection Engine versions prior to 9.1.0, which stems from a hash disclosure vulnerability...

CVE-2023-23958 Symantec Protection Engine Hash Leak Vulnerability

Symantec Protection Engine, prior to 9.1.0, may be susceptible to a Hash Leak vulnerability...

CVE-2023-23958

The CVE-2023-23958 issue affects Symantec Protection Engine, with versions prior to 9.1.0. The root cause is a Hash Leak vulnerability that may allow exposure of sensitive information to an unauthorized actor. Impact is described as exposure of confidential data, with no explicit exploit details ...

CVE-2023-23958 Symantec Protection Engine Hash Leak Vulnerability

Symantec Protection Engine, prior to 9.1.0, may be susceptible to a Hash Leak vulnerability...

PT-2023-19324 · Symantec · Symantec Protection Engine

Name of the Vulnerable Software and Affected Versions: Symantec Protection Engine versions prior to 9.1.0 Description: The issue may allow sensitive information to be exposed to an unauthorized actor due to a Hash Leak. Recommendations: For Symantec Protection Engine versions prior to 9.1.0, upda...

Security Updates for Windows Defender (July 2023)

The Malware Protection Engine version of Microsoft Windows Defender installed on the remote Windows host is prior to 1.1.23050.3. It is, therefore, affected by an elevation of privilege vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application's...

KLA50772 PE vulnerability in Microsoft System Center

An elevation of privilege vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2023-33156 Related products Windows-Defender CVE list CVE-2023-33156 high KB list Solution Install necessary updates from the KB...