Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2016-6976

Malware in sbrugna...

9.3CVSS7.5AI score0.02618EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/05/16 8:54 a.m.5 views

webkitgtk: memory disclosure issue was addressed with improved memory handling

A flaw was found in webkitgtk. Improper input validation leads to a memory corruption vulnerability. This flaw allows an attacker with network access to pass specially crafted web content files, causing an application to halt, crash, or perform arbitrary code execution...

6.5CVSS6AI score0.00939EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2022/01/24 6:29 p.m.34 views

CVE-2021-30953

A flaw was found in webkitgtk. The vulnerability occurs due to improper bounds checking, which can lead to an out-of-bounds read vulnerability. An attacker with network access could pass specially crafted web content files causing an application to halt, crash, or may lead to arbitrary code...

8.8CVSS4.5AI score0.01939EPSS
Exploits0References4
Prion
Prion
added 2020/01/02 8:15 p.m.29 views

Cross site request forgery (csrf)

Versions of Foreman as shipped with Red Hat Satellite 6 does not check for a correct CSRF token in the logout action. Therefore, an attacker can log out a user by having them view specially crafted content...

4.3CVSS7AI score0.00522EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2019/06/12 2:29 p.m.4 views

CVE-2019-1081

An information disclosure vulnerability exists when affected Microsoft browsers improperly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit the vulnerability, in a web-based attack...

4.2CVSS5.8AI score0.02335EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2019/06/11 7:0 a.m.28 views

Chakra Scripting Engine Memory Corruption Vulnerability

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge HTML-based. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who...

7.6CVSS1.4AI score0.0256EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2019/05/14 7:0 a.m.24 views

Chakra Scripting Engine Memory Corruption Vulnerability

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge HTML-based. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who...

7.6CVSS1.4AI score0.0903EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/08/08 12:0 a.m.45 views

Adobe Flash Player <= 26.0.0.137 Multiple Vulnerabilities (APSB17-23)

The version of Adobe Flash Player installed on the remote Windows host is equal or prior to version 26.0.0.137. It is, therefore, affected by multiple vulnerabilities : - An information disclosure vulnerability exists due to an unspecified flaw. An unauthenticated, remote attacker can exploit thi...

9.3CVSS8.4AI score0.22311EPSS
Exploits3References4
Microsoft CVE
Microsoft CVE
added 2017/07/11 7:0 a.m.29 views

Microsoft Edge Memory Corruption Vulnerability

A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory. The vulnerability could corrupt memory in such a way that enables an attacker to execute arbitrary code in the context of the current user. An attacker who successfully exploited the...

7.6CVSS1.6AI score0.08891EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2017/03/14 12:0 a.m.69 views

MS17-009: Security update for Microsoft Windows PDF Library: March 14, 2017

Resolves a vulnerability in Windows that could allow remote code execution if a user views specially crafted PDF content online or opens a specially crafted PDF document.SummaryThis security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow remote code execution ...

7.6CVSS7.8AI score0.34017EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2016/08/09 7:0 a.m.41 views

Windows PDF Remote Code Execution Vulnerability

A remote code execution vulnerability exists when Microsoft Windows PDF Library improperly handles objects in memory. The vulnerability could corrupt memory in a way that enables an attacker to execute arbitrary code in the context of the current user. An attacker who successfully exploited the...

9.3CVSS3.5AI score0.18537EPSS
Exploits1
Microsoft KB
Microsoft KB
added 2015/11/10 12:0 a.m.33 views

MS15-123: Security update for Skype for Business and Lync to address information disclosure: November 10, 2015

Resolves a vulnerability in Skype for Business and Microsoft Lync. The vulnerability could allow information disclosure if an attacker invites a user to an instant message session and then sends that user a message that contains specially crafted JavaScript content.SummaryThis security update...

4.3CVSS5.5AI score0.12811EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2014/10/14 12:0 a.m.201 views

MS14-059: Vulnerability in ASP.NET MVC could allow security feature bypass: October 14, 2014

Describes a security update that resolves a vulnerability in ASP.NET MVC that could allow security feature bypass if an attacker convinces a user to click a specially crafted link or to go to a webpage that contains specially crafted content.View products that this article applies...

4.3CVSS5.8AI score0.2016EPSS
Exploits0
Rows per page
Query Builder