3996 matches found
KLA20005 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Visual Studio Code...
KLA19251 DoS vulnerability in Opera
Data validation vulnerability was found in Opera. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Changelog for 91 Stable Channel Update for Desktop Related products Opera CVE list CVE-2022-3075 critical Solution Update to the latest version Download...
KLA12340 RCE vulnerabilities in Microsoft Apps
Remote code execution vulnerabilities were found in Microsoft Apps. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2021-43208 CVE-2021-43209 CVE list CVE-2021-43208 unknown CVE-2021-43209 unknown Solution Install necessary updates from the KB...
KLA12227 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, cause denial of service. Below is a complete list of vulnerabilities: 1. A memory safety vulnerability can be exploited to execute arbitra...
KLA12171 ACE vulnerability in Microsoft Browser
A memory corruption vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2021-26419 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. Related...
KLA12110 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Visual Studio Code ESLint Extension can be exploited remotely to...
KLA12107 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service, bypass security restrictions, spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An...
KLA12105 ACE vulnerability in Apache Tomcat
A security vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories Apache Tomcat 7.x vulnerabilities Related products Apache-Tomcat CVE list CVE-2021-25329 high Solution Update to the latest version Tomcat 7 Software...
KLA11987 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in WebRTC can be exploited t...
KLA11953 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics 365. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A cross-site-scripting XSS vulnerability Microsoft Dynamics 365 On-Premise can be...
KLA11947 Multiple vulnerabilties in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: 1. Security UI vulnerability in eval function...
KLA11488 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A type confusion...
KLA11893 Microsoft Advisory for Microsoft Products (ESU)
Microsoft released an advisory and security updates related to a newly-discovered class of hardware vulnerabilities known as Spectre and Meltdown. Also, a new subclass of speculative execution side channel vulnerabilities known as Speculative Store Bypass SSB has been announced and assigned...
KLA11280 Multiple vulnerabilities in Apple iTunes
Multiple memory corruption vulnerabilities were found in Apple iTunes. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially crafted webpage. Original advisories About the security content of iTunes 12.7.3 for...
KLA11852 Security UI vulnerability in Microsoft Products (ESU)
A spoofing vulnerability was found in Microsoft Products Extended Support Update. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2017-13080 Related products Microsoft-Windows Microsoft-Windows-Server Microsoft-Windows-Server-2012 Microsoft-Windows-...
KLA11850 Microsoft Advisory for Microsoft Device
This advisory addresses CVE-2017-15361. A security vulnerability exists in certain Trusted Platform Module TPM chipsets. The vulnerability weakens key strength. This is a firmware vulnerability, and not a vulnerability in the operating system or a specific application. Original advisories ADV1700...
KLA11115 Multiple vulnerabilities in Foxit Reader
Multiple vulnerabilities was found in Foxit Reader 8.3.2.25013. This vulnerability can be exploited locally via a specially designed .pdf file to cause denial of service, execute arbitrary code or obtain sensetive informatoin. 1. Type confusion vulnerabilities can be exploited remotely file...
KLA11092 Denial of service vulnerability in PostgreSQL
A missing permssion check in the loput function was found in PostgreSQL. By exploiting this vulnerability malicious users can cause a denial of service. This vulnerability can be exploited remotely by overwriting contents of the entire large object. Original advisories PostgreSQL Security Update...
KLA10997 Vulnerability in LibreOffice
Heap-based buffer overflow vulnerability was found in LibreOffice. By exploiting this vulnerability malicious users can obtain a sensitive information or cause a denial of service. Original advisories LibreOffice Security Advisory Related products LibreOffice CVE list CVE-2017-7870 critical...
KLA11020 Multiple vulnerabilities in Wireshark
Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause a denial of service. Below is a complete list of vulnerabilities: 1. An unspecified vulnerability in the IMAP Internet Message Access Protocol dissector can be exploited...
KLA10962 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to spoof user interface and cause a denial of service,bypass security restrictions. Below is a complete list of vulnerabilities: 1. Inability to prevent alerts from being displayed...
KLA10854 Privileges escalation vulnerabilities in VMware products
Untrusted search path vulnerability was found in VMware products. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally via DLL hijack. Technical details This vulnerability related to HGFS aka Shared Folders feature. Original advisories...
KLA10818 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions or obtain sensitive information. Below is a complete list of vulnerabilities 1. Multiple unknown vulnerabilities can be...
KLA10771 Multiple vulnerabilities in Microsoft Internet Explorer and Edge
Multiple serious vulnerabilities have been found in Microsoft Internet Explorer & Edge. Malicious users can exploit these vulnerabilities to execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. An improper memory objects access can be exploited...
KLA10756 Arbitrary code execution in Adobe Flash Player & AIR
Multiple serious vulnerabilities have been found in Adobe Flash Player & AIR. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities 1. Type confusion vulnerability can be exploited remotely to execute arbitrary code; 2...
KLA10792 Denial of service vulnerability in Apache Subversion
An integer overflow was found in Apache Subversion. By exploiting this vulnerability malicious authenticated users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed request. Technical details This vulnerability ca...
KLA10652 Code execution vulnerability in Internet Explorer
An improper memory objects handling was found in Internet Explorer. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed website. Original advisories CVE-2015-2502 Related products...
KLA10639 Multiple vulnerabilities in Oracle products
Multiple vulnerabilities were found in Oracle Supply Chain Products Suite, Oracle Database Server, Oracle Commerce Platform and Oracle Enterprise Manager. By exploiting this vulnerability malicious users can affect confidentiality, integrity and availability. This vulnerabilities can be exploited...
KLA10617 Bypass security restrictions vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to bypass security restrictions. Below is a complete list of vulnerabilities 1. Improper DNS hostnames handling can be exploited remotely via a specially designed hostname string; ...
KLA11367 Information disclosure vulnerability in CCleaner
Vulnerability related to writing the filenames to disk was found in CCleaner. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2015-3999 Related products CCleaner CVE list CVE-2015-3999 warning Solution Update to the latest version CCleaner...
KLA10581 Privilege escalation vulnerability in Microsoft Silverlight
An unspecified vulnerability was found in Microsoft Silverlight. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited remotely via a specially designed Silverlight application. Original advisories Microsoft advisory CVE-2015-1715 Related produc...
KLA10477 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
An unspecified vulnerability was found in Mozilla products. By exploiting this vulnerability malicious users execute arbitrary code or gain privileges. This vulnerability can be exploited remotely via a SVG navigation or vectors related to Java-Script JIT. Original advisories MFSA Related product...
KLA10502 Multiple vulnerabilities in BACnet OPC Server
Multiple critical vulnerabilities have been found in BACnet OPC Server. Malicious users can exploit these vulnerabilities to execute arbitrary files and read&write local database. Below is a complete list of vulnerabilities 1. An unknwon vulnerabilities can be exploited remotely via unknown vecto...
KLA10486 Denial of service vulnerability in OpenLDAP
Double free and other unknown vulnerability was found in OpenLDAP. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a speciallyu designed search request. Original advisories - Related products OpenLDAP CVE list...
KLA10020 DoS vulnerability in Winamp
A stack-based buffer overflow was found in Winamp. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. This vulnerability can be exploited from the network at a point related to Skin packages via a specially designed package. Original...
KLA10000 Unspecified vulnerability in Oracle Java Runtime Environment
An unspecified vulnerability was found in the JRE component of Oracle Java SE in versions up to 7.21. By exploiting this vulnerability malicious users can affect integrity. This vulnerability can be exploited remotely at a point related to Deployment. Original advisories confirmation mitre Relate...
KLA10021 LPE vulnerability in DAEMON Tools
An unspecified vulnerability was found in the DAEMON Tools. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited from the network at a point related to path search. Via a Trojan horse. Original advisories NVD Exploitation Public exploits exist...
KLA10364 ACE vulnerability in UltraVNC & TightVNC
Integer signing errors were found in UltraVNC & TightVNC. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed message. Original advisories - Related products UltraVNC...
KLA10320 Vulnerability in Van Dyke Technologies
An unspecified vulnerability was found in SecureCRT & SecureFX. By exploiting this vulnerability malicious users can cause unknown impact. This vulnerability can be exploited remotely via unknown vectors. Original advisories - Related products SecureCRT SecureFX CVE list CVE-2006-1038 critical...
KLA77109 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Excel can be exploited remotely to...
KLA63223 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, obtain sensitive information, execute arbitrary code, gain privileges, spoof user interface. Below is a complete list of...
KLA61363 Multiple vulnerabilities in Apache Tomcat
Multiple vulnerabilities were found in Apache Tomcat. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in HTTP/2 protocol can be...
KLA61361 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Blink History can be exploited to cause denial of service or...
KLA60570 Multiple vulnerabilities in Microsoft Apps
Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in 3D Builder can be exploited remotely to execute arbitrary code. 2. A remote...
KLA52285 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Implementation vulnerability in Fullscreen can be exploited to cause denial of service. 2...
KLA49157 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in SysInternals Sysmon for Windows can be...
KLA49112 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Validation of untrusted input vulnerability in Exte can be exploited to cause denial of...
KLA40220 DoS vulnerability in Apache Tomcat
Denial of service vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Fixed in Apache Tomcat 8.5.85 Exploitation Public exploits exist for this vulnerability. Related products Apache-Tomcat CVE list CVE-2023-2499...
KLA20163 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Implementation vulnerability in File System API can be exploited to caus...
KLA20118 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A remote code...