12 matches found
CVE-2025-12811
Improper Inconsistent Interpretation of HTTP Requests 'HTTP Request Smuggling' in Delinea Inc. Cloud Suite and Privileged Access Service. If you're not using the latest Server Suite agents, this fix requires that you upgrade to Server Suite 2023.1 agent 6.0.1 or later. If you cannot upgrade to...
Microsoft HTTP.sys 安全漏洞
Microsoft HTTP.SYS is an HTTP application protocol developed by Microsoft Corporation. There are security vulnerabilities in Microsoft HTTP.SYS. The following products and versions are affected: Windows 11 Version 26H1 for ARM64-based Systems, Windows 11 Version 26H1 for x64-based Systems, Window...
Microsoft Windows Error Reporting 安全漏洞
Microsoft Windows Error Reporting WER is a component of Microsoft Corporation USA. It enables users to notify Microsoft of application failures, kernel failures, unresponsive applications, and other application-specific problems. A security vulnerability exists in Microsoft Windows Error Reportin...
Microsoft Windows Remote Assistance 安全漏洞
Microsoft Windows Remote Assistance is a windows feature from Microsoft Corporation USA for viewing or controlling a remote Windows computer to solve a problem without having to touch the device directly. A security vulnerability exists in Microsoft Windows Remote Assistance. An attacker exploiti...
CVE-2025-13008 Session Token Disclosure in M-Files Web
An information disclosure vulnerability in M-Files Server before versions 25.12.15491.7, 25.8 LTS SR3, 25.2 LTS SR3 and 24.8 LTS SR5 allows an authenticated attacker using M-Files Web to capture session tokens of other active users...
Microsoft Windows DNS 数据伪造问题漏洞
Microsoft Windows DNS is a domain name resolution service from Microsoft Corporation USA. The Domain Name System DNS is one of the industry-standard suite of protocols that encompasses TCP/IP, and DNS clients and DNS servers work together to provide name resolution services for computers and user...
Microsoft ODBC Driver 安全漏洞
Microsoft ODBC Driver is a driver from Microsoft Corporation USA. It allows applications to access data in a database management system DBMS using SQL as the standard for accessing data. A security vulnerability exists in the Microsoft ODBC Driver. The following products and versions are affected...
Microsoft Graphics Component 安全漏洞
Microsoft Graphics Component is a graphics driver component from Microsoft Corporation USA. A security vulnerability exists in Microsoft Graphics Component. The following products and versions are affected: Windows 10 Version 21H2 for 32-bit Systems,Windows 10 Version 21H2 for ARM64-based...
Microsoft Windows Kernel 竞争条件问题漏洞
The Microsoft Windows Kernel is the kernel of the Windows operating system from Microsoft Corporation USA. Microsoft Windows Kernel is vulnerable to a competitive conditions issue. The following products and versions are affected:Windows Server 2019,Windows 10 Version 1909 for 32-bit...
Microsoft Windows Storage Spaces Controller 信息泄露漏洞
Microsoft Windows Storage Spaces Controller is an essential driver for providing storage space functionality from Microsoft Corporation USA. An information disclosure vulnerability exists in Microsoft Windows Storage Spaces Controller. The following products and editions are affected:Windows 10...
Microsoft Windows Active Directory 权限许可和访问控制问题漏洞
Microsoft Windows Active Directory is a centralized directory management service responsible for architecting medium- to large-scale network environments from the U.S. company Microsoft. Stores information about objects on the network and makes it easy for administrators and users to find and use...
ALPINE-CVE-2017-3138
named contains a feature which allows operators to issue commands to a running server by communicating with the server process over a control channel, using a utility program such as rndc. A regression introduced in a recent feature change has created a situation under which some versions of name...