3996 matches found
KLA10993 Arbitrary code execution vulnerabilities in Adobe Flash Player
Multiple serious vulnerabilities have been found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to execute arbitary code. Below is a complete list of vulnerabilities: 1. Use-after-free vulnerabilities in the sound class, in the internal script object and in the...
KLA11037 Arbitrary code execution vulnerability in VMware products
An out-of-bounds memory access vulnerability in the DnD drag-and-drop function was found in VMware Workstation Pro and VMware Workstation Player. By exploiting this vulnerability malicious users can execute arbitrary code on the operating system running VMware Workstation Pro or VMware Workstatio...
KLA10965 Denial of service vulnerabilities in Wireshark
Multiple serious vulnerabilities have been found in Wireshark 2.0.0 to 2.0.10 and 2.2.0 to 2.2.4. Malicious users can exploit these vulnerabilities possibly to cause a denial of service. Below is a complete list of vulnerabilities: 1. An LDSS dissector crash can be exploited remotely via packet...
KLA10814 Privilege escalation vulnerability in VMware Player and Workstation
An improper file access was found in VMware products. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally. Original advisories VMware advisory Related products VMware-Workstation VMware-Player CVE list CVE-2016-2077 critical Solution...
KLA10766 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service or possibly execute arbitrary code. Below is a complete list of vulnerabilities 1. An improper user agent shadow DOM implementation at Blink can be...
KLA10635 RCE vulnerability in Microsoft Font Driver
A remote code execution vulnerability was found in Microsoft products. By exploiting this vulnerability malicious users can take complete control of the affected system. This vulnerability can be exploited remotely via a specially crafted OpenType fonts. Original advisories CVE-2015-2426...
KLA10593 Multiple vulnerabilities in Adobe products
Multiple serious vulnerabilities have been found in Adobe products. Malicious users can exploit these vulnerabilities to bypass security restrictions, gain privileges, cause denial of service, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. A...
KLA10598 Multiple vulnerabilities in Microsoft Exchange Server
Multiple serious vulnerabilities have been found in Microsoft Exchange Server. Malicious users can exploit these vulnerabilities to gain privileges or obtain sensitive information. Below is a complete list of vulnerabilities 1. Improper same-origin policy handling can be exploited remotely via a...
KLA10573 Multiple vulnerabilities in Apple Safari
Multiple serious vulnerabilities have been found in Apple Safari. Malicious users can exploit these vulnerabilities to bypass security restrictions, read arbitrary files or cause denial of service. Below is a complete list of vulnerabilities 1. Improper page-loading and history implementations ca...
KLA10526 Multiple vulnerabilities in SAP products
Multiple serious vulnerabilities have been found in SAP products. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions or obtain sensitive information. Below is a complete list of vulnerabilities 1. Buffer overflow and improper access...
KLA10500 Multiple vulnerabilities in u5CMS
Multiple serious vulnerabilities have been found in u5CMS. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute or inject arbitrary code and write local files. Below is a complete list of vulnerabilities 1. Open redirect vulnerabilities can be exploited...
KLA10990 Vulnerability in VideoLAN VLC media player
A vulnerability in the transcode module was found in VLC media player versions before 2.1.5. By exploiting this vulnerability malicious users can cause a denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a non-malicious input. Technical details This...
KLA10238 ACE vulnerability in Kingsoft Writer
A buffer overflow was found in Kingsoft Writer. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed WPS file. Original advisories - Related products Kingsoft-Writer CVE list CVE-2013-3934 critical...
KLA10045 ACE vulnerability in Media Player Classic
Buffer overflow was found at mplayerc.exe in Media Player Classic & Windows Media Player. Malicious can use this vulnerability to execute arbitrary code via specially designed .mp4 file. Original advisories - Related products Media-Player-Classic CVE list CVE-2007-6402 critical Solution Update to...
KLA10187 CI vulnerability in HP Insight Diagnostics
XSS vulnerability was found in the HP Insight Diagnostics. By exploiting this vulnerability malicious users can inject web script. This vulnerability can be exploited from remote by unknown vectors. Original advisories - Related products HP-Insight-Diagnostics CVE list CVE-2010-4111 warning...
KLA10368 Multiple vulnerabilities in Trend Micro HouseCall
Multiple critical vulnerabilities have been found in Trend Micro HouseCall. Malicious users can exploit these vulnerabilities to execute arbitrary code or download arbitrary files. Below is a complete list of vulnerabilities 1. A use-after-free vulnerability can be exploited remotely via a...
KLA10093 Multiple vulnerabilities in CA software
Multiple serious vulnerabilities have been found in ARCserve Backup. Malicious users can exploit these vulnerabilities to execute arbitrary code or cause denial of service. Below is a complete list of vulnerabilities 1. A buffer overflow can be exploited remotely via specially designed RPC...
KLA10152 ACE vulnerability in SFTP
A format string was found in the multiple SFTP products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via unknown vectors. Original advisories - Related products SSH-Secure-Shell-for-Workstations F-Secure-SSH-for-Windows...
KLA68933 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, perform cross-site scripting attack, bypass security restrictions, spoof user interface, obtain sensitive information. Below is a...
KLA68921 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, cause denial of service, obtain sensitive information, perform cross-site scripting attack. Below is a complete list of vulnerabilitie...
KLA68913 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in PDFium can be exploited to caus...
KLA68206 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Heap buffer overflow vulnerability in Dawn can be exploited to cause denial of service 2...
KLA67403 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability can be exploited remotel...
KLA65256 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Remote code execution vulnerability can be exploited remotely to execute arbitrary code. 2...
KLA65278 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, spoof user interface, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Out of bounds read vulnerability in...
KLA60003 DoS vulnerability in Google Chrome
Heap buffer overflow vulnerability was found in Google Chrome. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Stable Channel Update for Desktop Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually...
KLA52675 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, spoof user interface, bypass security restrictions, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Memor...
KLA51267 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, spoof user interface, gain privileges. Below is a complete list of vulnerabilities: 1. Implementation vulnerability in Web API Permission...
KLA51719 Multiple vulnerabilities in Foxit PDF Reader
Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Out of bounds read vulnerability i...
KLA48814 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. Security UI vulnerability in Navigation can be...
KLA40221 DoS vulnerability in Apache Tomcat
Denial of service vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Fixed in Apache Tomcat 10.1.5 Fixed in Apache Tomcat 9.0.71 Exploitation Public exploits exist for this vulnerability. Related products...
KLA20119 SB vulnerability in Microsoft Azure
Security vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2022-44699 Related products Microsoft-Azure CVE list CVE-2022-44699 high KB list Solution Install necessary updates from the KB section, tha...
KLA20011 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Memory safety vulnerability can be exploited to execute...
KLA15731 DoS vulnerability in Opera
Use after free vulnerability was found in Opera. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories Changelog for 90 Stable Channel Update for Desktop Exploitation Malware exists for this vulnerability. Usually such malware is...
KLA19261 XSS vulnerability in Apache Tomcat
Cross-site scripting XSS vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to perform cross-site scripting attack. Original advisories Apache Tomcat 9.x vulnerabilities Related products Apache-Tomcat CVE list CVE-2022-34305 high Solution Update to the latest...
KLA12521 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, bypass security restrictions, spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Memory safety...
KLA12484 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions, spoof user interface. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in tex...
KLA12381 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, inject malicious code, spoof user interface, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Use after free...
KLA12299 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. A use after free vulnerability in Tab...
KLA12282 RCE vulnerability in Microsoft Products (ESU)
A remote code execution vulnerability was found in Microsoft Products Extended Security Update. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2021-36958 Related products Windows-Print-Spooler CVE list CVE-2021-36958 unknown KB list 5005633 50056...
KLA12239 PE vulnerability in Microsoft Windows
An elevation of privilege vulnerability was found in Microsoft Windows. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2021-36934 Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such malware is...
KLA12246 PE vulnerability in Microsoft Products (ESU)
An elevation of privilege vulnerability was found in Microsoft Products Extended Support Update. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2021-34481 Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability...
KLA12176 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, spoof user interface, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A use after free vulnerability in...
KLA12032 ACE vulnerability in LibreOffice
A code execution vulnerability was found in LibreOffice. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories LibreOffice 7.x vulnerabilities Related products LibreOffice CVE list CVE-2021-25631 critical Solution Upgrade to LibreOffice = 7.0.5 or = 7.1.2...
KLA12053 Multiple vulnerabilities in Apple iCloud
Multiple vulnerabilities were found in Apple iCloud. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An out-of-bounds read vulnerability in ImageIO can be exploited via special crafted imae to...
KLA11946 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: 1. Security UI vulnerability in eval function...
KLA11826 ACE vulnerabilities in Microsoft Windows
ACE vulnerabilities were found in Microsoft Windows. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2020-1457 CVE-2020-1425 Related products Microsoft-Windows Microsoft-Windows-10 CVE list CVE-2020-1457 high CVE-2020-1425 high KB list Solution...
KLA12098 Multiple vulnerabilities in VMware Workstation and Player
Multiple vulnerabilities were found in VMware Workstation and Player. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. A out-of-bound read vulnerability in Shader...
KLA11514 Multiple vulnerabilities in Microsoft Browsers
Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Scripting Engine can be exploited remotely via specially crafted website to...
KLA11478 Multiple vulnerabilities in Microsoft Browsers
Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, bypass security restrictions, gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A memory...