3996 matches found
KLA12012 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, perform cross-site scripting attack, obtain sensitive information, bypass security restrictions, spoof user interface. Below is a...
KLA11809 Multiple vulnerabilities in Microsoft Apps
Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Word for Android can be exploited remotely via special...
KLA11793 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in SharedWorkerService can b...
KLA12367 Multiple vulnerabilities in Apache HTTP Server
Multiple vulnerabilities were found in Apache HTTP Server. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface. Below is a complete list of vulnerabilities: 1. Use of uninitialized resource vulnerability in modproxyftp can be exploited via special FT...
KLA11650 Multiple vulnerabilities in Apple iCloud
Multiple vulnerabilities were found in Apple iCloud. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, perform cross-site scripting attack, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Multiple memory corruption...
KLA11459 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to spoof user interface, obtain sensitive information, cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. A cross-site-scripting XSS...
KLA11461 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Office Access Connectivit...
KLA11465 Multiple vulnerabilities in Adobe Flash Player
Multiple vulnerabilities were found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Out-of-bounds read vulnerability can be exploited remotely to obtain sensitive...
KLA11440 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities was found in Mozilla Firefox ESR. Malicious users can exploit this vulnerability to cause denial of service, bypass security restrictions and execute arbitrary code. Original advisories Mozilla Foundation Security Advisory 2019-08 Exploitation Malware exists for this...
KLA11405 Multiple vulnerabilities in Oracle Virtual Box
Multiple vulnerabilities were found in Oracle Virtual Box. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions and cause denial of service. Below is a complete list of vulnerabilities: 1. Multiple vulnerabilities in Core component of...
KLA11597 DoS vulnerability in Apache Tomcat
Unspecified vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability via improper handing of overflow in the UTF-8 decoder to cause denial of service. Original advisories Apache Tomcat 9.x Security Vulnerabilities Related products Apache-Tomcat CVE list CVE-2018-13...
KLA11857 ACE vulnerability in Microsoft System Center
A remote code execution vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2017-11940 Related products Microsoft-System-Center-Virtual-Machine-Manager Microsoft-Forefront-Protection...
KLA11000 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome earlier than 58.0.3029.81. Malicious users can exploit these vulnerabilities to execute arbitrary code and spoof user interface. Below is a complete list of vulnerabilities: 1. Type confusion in the PDFium component can be exploite...
KLA10993 Arbitrary code execution vulnerabilities in Adobe Flash Player
Multiple serious vulnerabilities have been found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to execute arbitary code. Below is a complete list of vulnerabilities: 1. Use-after-free vulnerabilities in the sound class, in the internal script object and in the...
KLA10965 Denial of service vulnerabilities in Wireshark
Multiple serious vulnerabilities have been found in Wireshark 2.0.0 to 2.0.10 and 2.2.0 to 2.2.4. Malicious users can exploit these vulnerabilities possibly to cause a denial of service. Below is a complete list of vulnerabilities: 1. An LDSS dissector crash can be exploited remotely via packet...
KLA10923 Privilege escalation vulnerability in Microsoft Windows
Improper objects handling in memory was found in the Secure Kernel Mode implementation in Microsoft Windows. By exploiting this vulnerability malicious users can gain priveleges and violate virtual trust levels VTL. This vulnerability can be exploited locally via a specially designed application...
KLA10796 Multiple vulnerabilities in Wireshark
Multiple vulnerabilities were found in Wireshark. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely by injecting malformed packet. Technical details These vulnerabilities can be exploited remotely via a vectors related...
KLA10776 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service or execute arbitrary code. Below is a complete list of vulnerabilities 1. Multiple unknown vulnerabilities at V8 can be exploited to cause denial of...
KLA10771 Multiple vulnerabilities in Microsoft Internet Explorer and Edge
Multiple serious vulnerabilities have been found in Microsoft Internet Explorer & Edge. Malicious users can exploit these vulnerabilities to execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. An improper memory objects access can be exploited...
KLA10762 Denial of service vulnerabilities in LibreOffice
Buffer overflow vulnerabilities were found in LibreOffice. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely via a specially designed document. Technical details These vulnerabilities related to parsing the...
KLA10733 Multiple vulnerabilities in VMware products
Memory corruption vulnerability was found in VMware products. By exploiting this vulnerability malicious users can cause denial of service or gain privileges. This vulnerability can be exploited remotely via an unknown vectors. NB: This vulnerability have no public CVSS rating so rating can be...
KLA10703 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, bypass security restrictions or execute arbitrary code. Below is a complete list of vulnerabilities 1. Improper array elements...
KLA10803 VMware Workstation 10.x end of life
VMware announced the end of support for VMware Workstation 10.x. Users should immediately make transition to VMware Workstation 11.x or later Original advisories https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/support/product-lifecycle-matrix.pdf Related products...
KLA10635 RCE vulnerability in Microsoft Font Driver
A remote code execution vulnerability was found in Microsoft products. By exploiting this vulnerability malicious users can take complete control of the affected system. This vulnerability can be exploited remotely via a specially crafted OpenType fonts. Original advisories CVE-2015-2426...
KLA10617 Bypass security restrictions vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to bypass security restrictions. Below is a complete list of vulnerabilities 1. Improper DNS hostnames handling can be exploited remotely via a specially designed hostname string; ...
KLA10573 Multiple vulnerabilities in Apple Safari
Multiple serious vulnerabilities have been found in Apple Safari. Malicious users can exploit these vulnerabilities to bypass security restrictions, read arbitrary files or cause denial of service. Below is a complete list of vulnerabilities 1. Improper page-loading and history implementations ca...
KLA10567 Denial of service vulnerability in Google Chrome
Use-after-free and other vulnerabilities were found in Google Chrome. By exploiting these vulnerabilities malicious users can cause denial of service or conduct other unknown impacts. These vulnerabilities can be exploited remotely via an unknown vectors. Original advisories Google blog entry...
KLA10561 Code injection vulnerability in Microsoft Sharepoint
An XSS vulnerabilities were found in Microsoft Sharepoint. By exploiting these vulnerabilities malicious users can inject arbitrary scripts. These vulnerabilities can be exploited remotely via a specially designed request. Original advisories MS15-036 CVE-2015-1653 CVE-2015-1640 Related products...
KLA10478 Denial of service vulnerability in X.Org libXfont
Improper type conversion and bitmaps handling was found in X.Org libXfont. By exploiting this vulnerability malicious users can execute arbitrary code or cause denial of service. This vulnerability can be exploited remotely via a specially designed BDF font file. Original advisories X.Org advisor...
KLA10477 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
An unspecified vulnerability was found in Mozilla products. By exploiting this vulnerability malicious users execute arbitrary code or gain privileges. This vulnerability can be exploited remotely via a SVG navigation or vectors related to Java-Script JIT. Original advisories MFSA Related product...
KLA10486 Denial of service vulnerability in OpenLDAP
Double free and other unknown vulnerability was found in OpenLDAP. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a speciallyu designed search request. Original advisories - Related products OpenLDAP CVE list...
KLA10336 Multiple vulnerabilities in Sophos Web Appliance
Multiple critical vulnerabilities have been found in Sophos Web Appliance. Malicious users can exploit these vulnerabilities to execute arbitrary commands or change admin password. Below is a complete list of vulnerabilities 1. Vectors related to the netinterface configuration page can be exploit...
KLA10087 DoS vulnerability in BadBlue
Insufficient document access control was found in BadBlue. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited from the network at points related to uninst.exe, badblue.exe and dyndns.exe. Original...
KLA10398 Vulnerability in NetMeeting
An unspecified vulnerability was found in Microsoft NetMeeting. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed input. Original advisories - Related products...
KLA67403 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability can be exploited remotel...
KLA63223 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, obtain sensitive information, execute arbitrary code, gain privileges, spoof user interface. Below is a complete list of...
KLA61363 Multiple vulnerabilities in Apache Tomcat
Multiple vulnerabilities were found in Apache Tomcat. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in HTTP/2 protocol can be...
KLA60563 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A denial o...
KLA48835 Multiple vulnerabilities in Adobe Acrobat and Adobe Acrobat Reader
Multiple vulnerabilities were found in Adobe Acrobat and Adobe Acrobat Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, obtain sensitive information, gain privileges. Below is a complete list of vulnerabilities: 1. Input validation...
KLA40222 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. Policy enforcement vulnerability in DevTools can ...
KLA20112 ACE vulnerability in VMware Workstation
Out of bounds write vulnerability was found in VMware Workstation. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories VMSA-2022-0033 Exploitation Public exploits exist for this vulnerability. Related products VMware-Workstation C...
KLA20051 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, obtain sensitive information, execute arbitrary code, bypass security restrictions, perform cross-site scripting attack. Below is a...
KLA20004 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, spoof user interface. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Azure Arc-enabled Kubernetes cluster Connect can be...
KLA15731 DoS vulnerability in Opera
Use after free vulnerability was found in Opera. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories Changelog for 90 Stable Channel Update for Desktop Exploitation Malware exists for this vulnerability. Usually such malware is...
KLA12566 RCE vulnerability in Microsoft Apps
Remote code execution vulnerability was found in Microsoft Apps. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2022-30168 Related products Microsoft-Photos CVE list CVE-2022-30168 unknown KB list Solution Install necessary updates from the KB...
KLA12557 RCE vulnerability in Microsoft Browser
A remote code execution vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2022-22021 Related products Microsoft-Edge CVE list CVE-2022-22021 critical KB list Solution Install necessary updates from the...
KLA12521 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, bypass security restrictions, spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Memory safety...
KLA12506 Multiple vulnerabilities in Microsoft System Center
Multiple vulnerabilities were found in Microsoft System Center. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in Microsoft Defender can be exploited remotely to cause...
KLA12381 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, inject malicious code, spoof user interface, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Use after free...
KLA12338 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges, spoof user interface. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in Azure RTOS can be exploited...