Lucene search
K

20 matches found

The Hacker News
The Hacker News
added 2023/11/28 12:50 p.m.26 views

Transform Your Data Security Posture – Learn from SoFi's DSPM Success

As cloud technology evolves, so does the challenge of securing sensitive data. In a world where data duplication and sprawl are common, organizations face increased risks of non-compliance and unauthorized data breaches. Sentra's DSPM Data Security Posture Management emerges as a comprehensive...

7.3AI score
Exploits0
Code423n4
Code423n4
added 2023/05/04 12:0 a.m.11 views

Access Control Unauthorized access to restricted functions setWithdrawalDelayBlocks

Lines of code Vulnerability details Impact By exploiting the owner's role through social engineering, an attacker could theoretically gain indirect control over any functions that require owner authorization. Specifically, the ability to manipulate withdrawal delays and other critical security...

6.9AI score
Exploits0
Huntr
Huntr
added 2023/04/22 4:43 a.m.6 views

Cross-site Scripting (XSS) - Stored

Description The stored XSS vulnerability found in the caliber-web application is a security flaw that allows an attacker to execute malicious code in a user's browser. The vulnerability affects the "/ajax/pathchooser/" endpoint and is present in the "path" parameter, which is sent via the GET...

6.4AI score
Exploits0
Symantec
Symantec
added 2019/01/08 12:0 a.m.29 views

Microsoft Edge Chakra Scripting Engine CVE-2019-0567 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

0.6AI score0.7999EPSS
Exploits3References1
Symantec
Symantec
added 2018/07/10 12:0 a.m.26 views

Microsoft Internet Explorer Scripting Engine CVE-2018-8296 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Internet...

0.1AI score0.15874EPSS
Exploits0References1Affected Software1
Qualys Blog
Qualys Blog
added 2018/04/13 4:0 p.m.61 views

Indication of Compromise: Another Key Practice for GDPR Compliance

In this ongoing blog series on preparing for complying with the EU’s General Data Protection Regulation GDPR, we’ve explained the importance of having solid, foundational security practices like asset management and threat prioritization. Today, we’ll discuss how another such practice can help...

7.2AI score
Exploits0
Symantec
Symantec
added 2018/03/13 12:0 a.m.37 views

Microsoft ChakraCore Scripting Engine CVE-2018-0873 Remote Memory Corruption Vulnerability

Description Microsoft ChakraCore is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore...

7.8AI score0.15556EPSS
Exploits0References1
Symantec
Symantec
added 2017/12/12 12:0 a.m.35 views

Microsoft Internet Explorer and Edge CVE-2017-11894 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer and Edge are prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. Attackers can exploit this issue to execute arbitrary code in the context of the currentl...

7.6CVSS0.7AI score0.08474EPSS
Exploits0Affected Software1
Symantec
Symantec
added 2017/06/13 12:0 a.m.37 views

Microsoft Edge and Microsoft Internet Explorer CVE-2017-8524 Remote Memory Corruption Vulnerability

Description Microsoft Edge and Microsoft Internet Explorer are prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affecte...

7.6CVSS0.2AI score0.09787EPSS
Exploits0Affected Software1
Symantec
Symantec
added 2016/03/08 12:0 a.m.32 views

Microsoft Internet Explorer and Edge CVE-2016-0110 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer and Edge are prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. Attackers can exploit this issue to execute arbitrary code in the context of the currentl...

7.6CVSS1.4AI score0.14108EPSS
Exploits0Affected Software2
Symantec
Symantec
added 2015/06/09 12:0 a.m.39 views

Microsoft Internet Explorer CVE-2015-1742 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

9.3CVSS0.2AI score0.15631EPSS
Exploits0Affected Software8
Symantec
Symantec
added 2014/10/14 12:0 a.m.19 views

Microsoft Internet Explorer CVE-2014-4134 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

9.3CVSS0.1715EPSS
Exploits0Affected Software10
Symantec
Symantec
added 2014/07/08 12:0 a.m.22 views

Microsoft Internet Explorer CVE-2014-2802 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Successfully exploiting this issue may allow attackers to execute arbitrary code in the context of the application. Failed exploit attempts will result in denial-of-service conditions. Internet explorer ...

9.3CVSS0.16393EPSS
Exploits0Affected Software5
Symantec
Symantec
added 2014/06/10 12:0 a.m.21 views

Microsoft Internet Explorer CVE-2014-1773 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Successfully exploiting this issue may allow attackers to execute arbitrary code in the context of the application. Failed exploit attempts will result in denial-of-service conditions. Internet Explorer ...

9.3CVSS0.2AI score0.61773EPSS
Exploits0Affected Software10
Symantec
Symantec
added 2014/06/10 12:0 a.m.24 views

Microsoft Internet Explorer CVE-2014-2764 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Successfully exploiting this issue may allow attackers to execute arbitrary code in the context of the application. Failed exploit attempts will result in denial-of-service conditions. Internet explorer ...

9.3CVSS0.2AI score0.20451EPSS
Exploits0Affected Software10
Symantec
Symantec
added 2013/09/10 12:0 a.m.31 views

Microsoft Internet Explorer CVE-2013-3206 Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability due to a use-after-free error. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions. Microsoft Interne...

9.3CVSS0.1AI score0.19345EPSS
Exploits0Affected Software10
Symantec
Symantec
added 2013/09/10 12:0 a.m.34 views

Microsoft Word CVE-2013-3850 Remote Memory Corruption Vulnerability

Description Microsoft Word is prone to a remote memory-corruption vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsoft...

9.3CVSS0.7AI score0.20043EPSS
Exploits0Affected Software1
Symantec
Symantec
added 2013/01/08 12:0 a.m.74 views

Adobe Acrobat and Reader CVE-2013-0604 Remote Heap Based Buffer Overflow Vulnerability

Description Adobe Acrobat and Reader are prone to a remote heap-based buffer-overflow vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely cause denial-of-service conditions. Note...

10CVSS0.2AI score0.09552EPSS
Exploits0Affected Software7
Symantec
Symantec
added 2011/06/14 12:0 a.m.26 views

Microsoft Excel Array Out Of Bounds Access CVE-2011-1274 Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability due to a boundary condition error. Attackers can exploit this issue by enticing an unsuspecting user to open a specially crafted Excel file. Successful exploits may allow attackers to execute arbitrary code with the...

9.3CVSS0.2AI score0.1332EPSS
Exploits1Affected Software3
Symantec
Symantec
added 2010/12/14 12:0 a.m.31 views

Microsoft Publisher (CVE-2010-3954) Memory Corruption Remote Code Execution Vulnerability

Description Microsoft Publisher is prone to a remote code-execution vulnerability. An attacker can exploit this issue by enticing an unsuspecting user into opening a specially crafted Publisher file. Successfully exploiting this issue allows attackers to execute arbitrary code in the context of t...

9.3CVSS7.3AI score0.20833EPSS
Exploits0Affected Software1
Rows per page
Query Builder