Lucene search
K

792 matches found

Microsoft CVE
Microsoft CVE
added 2020/03/10 7:0 a.m.56 views

GDI+ Remote Code Execution Vulnerability

A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface GDI handles objects in the memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or dele...

9.3CVSS8.8AI score0.16465EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/03/10 7:0 a.m.32 views

Chakra Scripting Engine Memory Corruption Vulnerability

A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge HTML-based. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who...

7.6CVSS1.4AI score0.07527EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/03/10 7:0 a.m.29 views

Scripting Engine Memory Corruption Vulnerability

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully...

7.6CVSS7.8AI score0.08469EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/03/10 12:0 a.m.57 views

Security Updates for Microsoft Word Products (March 2020)

The Microsoft Word Products are missing security updates. It is, therefore, affected by affected by the following vulnerability: - A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the...

9.3CVSS8.2AI score0.11548EPSS
Exploits0References5
Prion
Prion
added 2020/02/11 10:15 p.m.18 views

Privilege escalation

An elevation of privilege vulnerability exists when Microsoft Edge does not properly enforce cross-domain policies, which could allow an attacker to access information from one domain and inject it into another domain.In a web-based attack scenario, an attacker could host a website that is used t...

4CVSS4.5AI score0.01573EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2020/02/11 8:0 a.m.29 views

Microsoft Browser Information Disclosure Vulnerability

An information disclosure vulnerability exists in the way that affected Microsoft browsers handle cross-origin requests. An attacker who successfully exploited this vulnerability could determine the origin of all of the web pages in the affected browser. In a web-based attack scenario, an attacke...

4.3CVSS2.5AI score0.0456EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/02/11 8:0 a.m.32 views

Scripting Engine Memory Corruption Vulnerability

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully...

7.6CVSS7.7AI score0.09853EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/02/11 8:0 a.m.28 views

Microsoft Excel Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with...

9.3CVSS2.6AI score0.15168EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/01/17 8:0 a.m.74 views

Microsoft Guidance on Scripting Engine Memory Corruption Vulnerability

Important Microsoft has completed the investigation into a public report of this vulnerability. We have issued CVE-2020-0674 - Scripting Engine Memory Corruption Vulnerability to address this vulnerability. For more information about this issue, including download links for an available security...

7.6CVSS8.1AI score0.86863EPSS
Exploits17
Kaspersky
Kaspersky
added 2020/01/17 12:0 a.m.85 views

KLA11709 Microsoft Advisory for Windows (ESU)

Microsoft has completed the investigation into a public report of this vulnerability. We have issued CVE-2020-0674 – Scripting Engine Memory Corruption Vulnerability to address this vulnerability. For more information about this issue, including download links for an available security update,...

7.6CVSS8AI score0.86863EPSS
Exploits17References5
Microsoft CVE
Microsoft CVE
added 2020/01/14 8:0 a.m.32 views

Microsoft Excel Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with...

9.3CVSS2.6AI score0.20398EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/01/14 8:0 a.m.28 views

Microsoft Excel Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with...

9.3CVSS2.6AI score0.17168EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/01/14 8:0 a.m.35 views

Microsoft Excel Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with...

9.3CVSS2.6AI score0.17168EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2020/01/14 8:0 a.m.29 views

Microsoft Office Memory Corruption Vulnerability

A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with...

7.8CVSS2.6AI score0.16962EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2019/12/10 8:0 a.m.36 views

Microsoft Word Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security context of the current user. For example, the...

7.1CVSS1.8AI score0.04643EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2019/11/12 8:0 a.m.32 views

Scripting Engine Memory Corruption Vulnerability

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge HTML-based. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who...

7.6CVSS1.5AI score0.09374EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2019/11/12 8:0 a.m.28 views

Microsoft Edge Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists when Microsoft Edge improperly handles extension requests and fails to request host permission for allurls. An attacker who successfully exploited this vulnerability could trick a browser into installing an extension without the user's consent. To...

4.3CVSS1.4AI score0.01047EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2019/11/12 8:0 a.m.36 views

Microsoft Excel Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with...

9.3CVSS2.6AI score0.28178EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2019/11/12 8:0 a.m.39 views

Win32k Graphics Remote Code Execution Vulnerability

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete dat...

9.3CVSS9.2AI score0.11953EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2019/11/12 8:0 a.m.26 views

Scripting Engine Memory Corruption Vulnerability

A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge HTML-based. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who...

7.6CVSS1.5AI score0.09374EPSS
Exploits0
Rows per page
Query Builder