Lucene search
K
KasperskyMost viewed

3996 matches found

Kaspersky
Kaspersky
added 2019/10/08 12:0 a.m.99 views

KLA11574 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges, spoof user interface, bypass security restrictions, cause denial of service, execute arbitrary code. Below is a complete list of...

9.9CVSS9.8AI score0.76451EPSS
Exploits36References58
Kaspersky
Kaspersky
added 2017/09/25 12:0 a.m.99 views

KLA11127 Multiple vulnerabilities in Apple iTunes

Multiple serious vulnerabilities have been found in Apple iTunes for Windows. These vulnerabilities have been found in WebKit component and can be exploited remotely to execute arbitrary code, perform cross-site scripting, bypass security restrictions and obtain sensitive information. NB: Not eve...

8.8CVSS8.7AI score0.10151EPSS
Exploits7References3
Kaspersky
Kaspersky
added 2017/07/11 12:0 a.m.99 views

KLA11067 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, gain privileges, bypass security restrictions, cause denial of service. Below is a complete list of vulnerabilities: 1. An informati...

10CVSS9.2AI score0.26161EPSS
Exploits5References44
Kaspersky
Kaspersky
added 2017/03/14 12:0 a.m.99 views

KLA10984 Privilege escalation vulnerabilities in Windows kernel

Multiple serious vulnerabilities have been found in Microsoft Windows kernel. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities: 1. An improper check of a buffer length prior to copying memory to the buffer can be exploited remotely ...

7.8CVSS8.2AI score0.57482EPSS
Exploits4References24
Kaspersky
Kaspersky
added 2016/03/10 12:0 a.m.99 views

KLA10773 Code execution vulnerability in Apple Software Update

Weak networking protocol usage was found in Apple Software Update. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via man-in-the-middle attack. Technical details Instead of usage HTTPS for downloading updates unprotected...

5.9CVSS6.3AI score0.00925EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2016/01/20 12:0 a.m.99 views

KLA10743 Multiple vulnerabilities in Oracle Java SE

An unspecified vulnerabilities were found in Oracle Java SE. By exploiting these vulnerabilities malicious users can affect application confidentiality, integrity and availability. These vulnerabilities can be exploited remotely via an unknown vectors related to 2D, AWT, Libraries, Networking,...

10CVSS6.7AI score0.14714EPSS
Exploits0References6
Kaspersky
Kaspersky
added 2014/10/14 12:0 a.m.99 views

KLA10614 Code injection vulnerability in Microsoft ASP.NET MVC

XSS vulnerability was found in ASP.NET MVC. By exploiting this vulnerability malicious users can inject arbitrary script. This vulnerability can be exploited remotely via a specially designed web page. Original advisories CVE-2014-4075 Related products Microsoft-ASP.NET-MVC CVE list CVE-2014-4075...

4.3CVSS6.1AI score0.2016EPSS
Exploits0References9
Kaspersky
Kaspersky
added 2023/09/12 12:0 a.m.97 views

KLA60559 ACE vulnerability in Adobe Acrobat and Adobe Acrobat Reader

Out of bounds write vulnerability was found in Adobe Acrobat and Adobe Acrobat Reader. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories APSB23-34 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More...

7.8CVSS8.6AI score0.07036EPSS
Exploits0References7
Kaspersky
Kaspersky
added 2021/12/14 12:0 a.m.97 views

KLA12387 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in...

9.8CVSS9.6AI score0.11963EPSS
Exploits5References61
Kaspersky
Kaspersky
added 2020/08/25 12:0 a.m.97 views

KLA11942 Multiple vulnerabilities in Mozilla Firefox

Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, cause denial of service, execute arbitrary code, gain privileges, spoof user interface. Below is a complete list of...

9.3CVSS9.5AI score0.02716EPSS
Exploits2References3
Kaspersky
Kaspersky
added 2018/12/11 12:0 a.m.97 views

KLA11388 Multiple vulnerabilities in Microsoft Browsers

Multiple serious vulnerabilities were found in Microsoft Browsers Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Chakra Scripting Engine can be exploited remotely via specially craft...

7.6CVSS8.9AI score0.69214EPSS
Exploits10References23
Kaspersky
Kaspersky
added 2018/11/22 12:0 a.m.97 views

KLA11370 ACE vulnerability in VMware Workstation and Fusion

Integer overflow vulnerability was found in VMware Workstation and Fusion. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories VMSA-2018-0030 Related products VMware-Workstation VMware-Fusion CVE list CVE-2018-6983 high Solution Update to the latest versi...

8.8CVSS9.3AI score0.00452EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2018/06/12 12:0 a.m.98 views

KLA11265 Multiple vulnerabilities in Microsoft Internet Explorer & Edge

Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Chakra Scripting...

7.6CVSS8.3AI score0.7131EPSS
Exploits2References29
Kaspersky
Kaspersky
added 2016/10/11 12:0 a.m.97 views

KLA10885 Multiple vulnerabilities in Microsoft Edge and Internet Explorer

Multiple serious vulnerabilities have been found in Microsoft Internet Explorer and Edge. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information or gain privileges. Below is a complete list of vulnerabilities 1. An improper memory objects handlin...

9.3CVSS8.6AI score0.41323EPSS
Exploits0References26
Kaspersky
Kaspersky
added 2024/01/09 12:0 a.m.96 views

KLA62824 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to spoof user interface, obtain sensitive information, bypass security restrictions, gain privileges, cause denial of service, execute arbitrary code. Below is a...

8.8CVSS9.2AI score0.22773EPSS
Exploits2References35
Kaspersky
Kaspersky
added 2023/01/10 12:0 a.m.96 views

KLA20158 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, execute arbitrary code, bypass security restrictions, obtain sensitive information. Below is a complete list of...

9.1CVSS9.7AI score0.41538EPSS
Exploits3References63
Kaspersky
Kaspersky
added 2019/09/10 12:0 a.m.96 views

KLA11551 Multiple vulnerabilities in Microsoft Office

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to spoof user interface, gain privileges, execute arbitrary code, bypass security restrictions, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A spoofing...

9.3CVSS9.1AI score0.21805EPSS
Exploits5References39
Kaspersky
Kaspersky
added 2019/01/08 12:0 a.m.96 views

KLA11395 Multiple vulnerabilities in Microsoft Exchange Server

Multiple serious vulnerabilities were found in Microsoft Exchange Server. Malicious users can exploit these vulnerabilities to execute arbitrary code and obtain sensitive information. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Microsoft Exchange can be...

10CVSS9.2AI score0.15396EPSS
Exploits0References6
Kaspersky
Kaspersky
added 2018/11/20 12:0 a.m.96 views

KLA11365 ACE vulnerability in Adobe Flash Player

A type confusion vulnerability was found in Adobe Flash Player. Malicious users can exploit this vulnerability remotely to execute arbitrary code. Technical details To update Adobe Flash Player ActiveX detected as Flash.ocx on Windows 8 and higher, use the solution from KLA11366 Original advisori...

10CVSS10AI score0.11702EPSS
Exploits0References6
Kaspersky
Kaspersky
added 2018/06/28 12:0 a.m.96 views

KLA11277 Multiple vulnerabilities in VMware products

Multiple out-of-bounds read vulnerabilities have been found in VMware Workstation and Fusion. Malicious users can exploit these vulnerabilities to obtain sensitive information or gain privileges. Original advisories VMSA-2018-0016 Related products VMware-Workstation VMware-Fusion CVE list...

8.1CVSS8.6AI score0.02975EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2016/02/21 12:0 a.m.96 views

KLA10744 Multiple vulnerabilities in Oracle VM VirtualBox

An unspecified vulnerabilities were found in Oracle VirtualBox. By exploiting these vulnerabilities malicious users can affect availability, integrity and confidentiality. These vulnerabilities can be exploited remotely via an unknown vectors related to Core and Windows Installer. Original...

10CVSS8.2AI score0.06792EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2016/02/09 12:0 a.m.96 views

KLA10757 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service or bypass security restrictions. Below is a complete list of vulnerabilities 1. Lack of URL schemes validation at Developer Tools can be exploited remote...

8.8CVSS7.4AI score0.01352EPSS
Exploits1References3
Kaspersky
Kaspersky
added 2015/11/17 12:0 a.m.96 views

KLA10702 Code execution vulnerability in Google Picasa

Integer overflow was found in Google Picasa. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed CAMF section in FOVb image. Original advisories - CVE list CVE-2015-8221 critical Solution Update to the...

10CVSS7.8AI score0.03992EPSS
Exploits0References1
Kaspersky
Kaspersky
added 2003/08/27 12:0 a.m.96 views

KLA10369 ACE vulnerability in Trend Micro

Buffer overflows were found in the Trend Micro products. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via specially designed parameters. Original advisories - Related products Trend-Micro-HouseCall-ActiveX-Control...

7.5CVSS7.9AI score0.02632EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2022/05/09 12:0 a.m.95 views

KLA12534 RCE vulnerability in Microsoft Azure

A remote code execution vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2022-29972 ADV220001 Related products Microsoft-Azure CVE list CVE-2022-29972 unknown Solution Install necessary updates from the K...

7.8CVSS8.4AI score0.03686EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2022/03/08 12:0 a.m.95 views

KLA12471 Multiple vulnerabilities in Mozilla Firefox

Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Security UI vulnerability in fullscreen...

9.6CVSS9.1AI score0.00931EPSS
Exploits5References3
Kaspersky
Kaspersky
added 2020/11/12 12:0 a.m.95 views

KLA12005 Multiple vulnerabilities in PostgreSQL

Multiple vulnerabilities were found in PostgreSQL. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A code execution vulnerability in psql session can be exploited to execute arbitrary code. ...

8.8CVSS8.4AI score0.4644EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2019/06/13 12:0 a.m.95 views

KLA11503 ACE vulnerabilities in Google Chrome

A use-after-free vulnerability was found in Google Chrome. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories Stable Channel Update for Desktop Related products Google-Chrome CVE list CVE-2019-5842 warning Solution Update to the latest version. File with...

6.5CVSS8.1AI score0.00744EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/01/09 12:0 a.m.95 views

KLA11172 Multiple vulnerabilities in Microsoft Development Tools

Multiple serious vulnerabilities have been found in Microsoft .NET Core, ASP.NET Core, Microsoft Excel and Microsoft Office Compatibility Pack. Malicious users can exploit these vulnerabilities to spoof user interface, obtain sensitive information, bypass security restrictions and gain privileges...

8.8CVSS9.1AI score0.08885EPSS
Exploits0References35
Kaspersky
Kaspersky
added 2017/10/31 12:0 a.m.95 views

KLA11146 Multiple vulnerabilities in Apple Safari

Multiple serious vulnerabilities have been found in Apple Safari. Vulnerabilities in the WebKit componenent can be exploited remotely via crafted web site to execute arbitrary code. Original advisories About the security content of Safari 11.0.1 Exploitation Public exploits exist for this...

8.8CVSS9.7AI score0.06712EPSS
Exploits44References4
Kaspersky
Kaspersky
added 2024/09/10 12:0 a.m.94 views

KLA73227 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information, cause denial of service, spoof user interface, bypass security restrictions. Below is a complete list of...

9.8CVSS10AI score0.51883EPSS
Exploits3References67
Kaspersky
Kaspersky
added 2023/08/08 12:0 a.m.94 views

KLA51717 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, execute arbitrary code, obtain sensitive information, gain privileges. Below is a complete list of vulnerabilities: 1. A spoofing...

8.8CVSS9.5AI score0.74288EPSS
Exploits1References35
Kaspersky
Kaspersky
added 2022/05/10 12:0 a.m.94 views

KLA12525 Multiple vulnerabilities in Microsoft Office

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, obtain sensitive information, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability ...

9.3CVSS8.8AI score0.11576EPSS
Exploits0References22
Kaspersky
Kaspersky
added 2021/12/14 12:0 a.m.94 views

KLA12389 Multiple vulnerabilities in Microsoft Office

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in...

8.8CVSS8.7AI score0.05056EPSS
Exploits0References34
Kaspersky
Kaspersky
added 2020/01/07 12:0 a.m.94 views

KLA11636 Use-after-free vulnerability in Google Chrome

Use-after-free vulnerability was found in Google Chrome. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Stable Channel Update for Desktop Related products Google-Chrome CVE list CVE-2020-6377 high Solution Update to the latest version Download Googl...

8.8CVSS8.6AI score0.01453EPSS
Exploits1References3
Kaspersky
Kaspersky
added 2019/05/21 12:0 a.m.94 views

KLA11568 DoS vulnerability in Wireshark

Unspecified vulnerability was found in Wireshark. Malicious users can exploit this vulnerability via injecting a malformed packet to cause denial of service. Original advisories wnpa-sec-2019-19 Related products Wireshark CVE list CVE-2019-12295 warning Solution Update to latest version Get...

7.5CVSS7.5AI score0.03765EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2017/01/04 12:0 a.m.94 views

KLA10929 Denial of service vulnerability in PHP

An improper unserialize implementation in ext/standard/var.c was found in PHP 7.x before 7.0.14. By exploiting this vulnerability malicious users can cause a denial of service. Other unspecified impacts are also possible. This vulnerability can be exploited remotely via specially designed...

9.8CVSS8.2AI score0.46801EPSS
Exploits6References3
Kaspersky
Kaspersky
added 2016/12/13 12:0 a.m.94 views

KLA10924 Privilege escalation and information disclosure vulnerabilities in Microsoft Windows

Multiple serious vulnerabilities have been found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information or gain privileges. Below is a complete list of vulnerabilities: 1. An improper handling of objects in memory while running a Windows Crypto...

9.3CVSS8AI score0.42488EPSS
Exploits5References43
Kaspersky
Kaspersky
added 2016/12/13 12:0 a.m.94 views

KLA10920 Multiple vulnerabilities in Microsoft Browser

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A security feature bypass vulnerability in Microsoft...

9.3CVSS8.4AI score0.70354EPSS
Exploits5References31
Kaspersky
Kaspersky
added 2016/11/08 12:0 a.m.94 views

KLA10897 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, bypass security restrictions, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A memory...

9.3CVSS9.8AI score0.80968EPSS
Exploits34References61
Kaspersky
Kaspersky
added 2016/05/10 12:0 a.m.94 views

KLA11914 Multiple vulnerability in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in...

9.3CVSS8.9AI score0.93165EPSS
Exploits21References45
Kaspersky
Kaspersky
added 2016/01/26 12:0 a.m.94 views

KLA10748 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR

Multiple serious vulnerabilities have been found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, spoof user interface and execute arbitrary code. Below is a complete list of vulnerabilities 1. Multiple memory safety...

10CVSS10AI score0.05992EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2014/06/10 12:0 a.m.94 views

KLA10013 OSI vulnerability in multiple Microsoft XML Core Services

By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited from the network at a point related to MSXML via a specially designed website. It is caused by a missing property information restriction. Original advisories MS Bulletin...

4.3CVSS6.8AI score0.14355EPSS
Exploits0References9
Kaspersky
Kaspersky
added 2010/02/25 12:0 a.m.94 views

KLA10414 ACe vulnerability in Avast! Antivirus

Improper input validation was found in Avast! Antivirus. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed IOCTL request. Original advisories - Related products...

7.2CVSS7.7AI score0.0093EPSS
Exploits0References2
Kaspersky
Kaspersky
added 2020/04/14 12:0 a.m.93 views

KLA11750 Multiple vulnerability in Microsoft Dynamics

Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Dynamics Business...

8CVSS8AI score0.06831EPSS
Exploits0References15
Kaspersky
Kaspersky
added 2019/01/10 12:0 a.m.93 views

KLA11449 SB vulnerability in WinSCP

Buffer overflow vulnerability was found in WinSCP. Malicious users can exploit this vulnerability remotely to bypass security restrictions. Original advisories Bug 1675 – Prevent SCP server sending files that were not requested Related products WinSCP CVE list CVE-2018-20684 high Solution Update ...

7.5CVSS8.1AI score0.02768EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/07/10 12:0 a.m.93 views

KLA11287 Multiple vulnerabilities in Microsoft Office

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: 1. A tampering vulnerability in Microsoft Office...

9.3CVSS8.9AI score0.39555EPSS
Exploits0References29
Kaspersky
Kaspersky
added 2018/06/08 12:0 a.m.93 views

KLA11259 DoS vulnerability in Mozilla Firefox and Firefox ESR

A heap buffer overflow vulnerability was found in the Skia library. By exploiting this vulnerability malicious users can cause denial of service via specially crafted SVG file with anti-aliasing turned off. Original advisories Mozilla Foundation Security Advisory 2018-14 Exploitation Public...

8.8CVSS9.6AI score0.07666EPSS
Exploits1References4
Kaspersky
Kaspersky
added 2017/09/19 12:0 a.m.93 views

KLA11106 Multiple vulnerabilities in Apache Tomcat

Multiple serious vulnerabilities have been found in Apache Tomcat. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions and obtain sensitive information. Below is a complete list of vulnerabilities: 1. A vulnerability related to VirtualDirConte...

8.1CVSS8.5AI score0.99607EPSS
Exploits20References4
Kaspersky
Kaspersky
added 2017/05/29 12:0 a.m.93 views

KLA11032 Denial of service vulnerabilities in VideoLAN VLC media player

Multiple serious vulnerabilities have been found in VideoLAN VLC media player. Malicious users can exploit these vulnerabilities to cause a denial of service or possibly have another unspecified impact. Below is a complete list of vulnerabilities: 1. An unspecified vulnerability in...

7.8CVSS8.3AI score0.03284EPSS
Exploits2References3
Total number of security vulnerabilities3996