Lucene search
K
KasperskyMost viewed

3996 matches found

Kaspersky
Kaspersky
added 2021/04/15 12:0 a.m.43 views

KLA12032 ACE vulnerability in LibreOffice

A code execution vulnerability was found in LibreOffice. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories LibreOffice 7.x vulnerabilities Related products LibreOffice CVE list CVE-2021-25631 critical Solution Upgrade to LibreOffice = 7.0.5 or = 7.1.2...

9.3CVSS9.2AI score0.0417EPSS
Exploits1References3
Kaspersky
Kaspersky
added 2021/02/03 12:0 a.m.43 views

KLA12178 Multiple vulnerabilities in Opera

Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, spoof user interface. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in WebRTC can be...

9.6CVSS9.8AI score0.23406EPSS
Exploits4References4
Kaspersky
Kaspersky
added 2021/01/26 12:0 a.m.43 views

KLA12053 Multiple vulnerabilities in Apple iCloud

Multiple vulnerabilities were found in Apple iCloud. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An out-of-bounds read vulnerability in ImageIO can be exploited via special crafted imae to...

7.8CVSS8.3AI score0.01029EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2020/08/25 12:0 a.m.43 views

KLA11948 Multiple vulnerabilities in Opera

Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, spoof user interface. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in media component c...

9.3CVSS9.7AI score0.29292EPSS
Exploits1References5
Kaspersky
Kaspersky
added 2020/08/25 12:0 a.m.43 views

KLA11946 Multiple vulnerabilities in Mozilla Thunderbird

Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: 1. Security UI vulnerability in eval function...

9.3CVSS9.3AI score0.02716EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2020/06/30 12:0 a.m.43 views

KLA11826 ACE vulnerabilities in Microsoft Windows

ACE vulnerabilities were found in Microsoft Windows. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2020-1457 CVE-2020-1425 Related products Microsoft-Windows Microsoft-Windows-10 CVE list CVE-2020-1457 high CVE-2020-1425 high KB list Solution...

7.8CVSS8.2AI score0.123EPSS
Exploits0References5
Kaspersky
Kaspersky
added 2020/06/23 12:0 a.m.43 views

KLA12098 Multiple vulnerabilities in VMware Workstation and Player

Multiple vulnerabilities were found in VMware Workstation and Player. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. A out-of-bound read vulnerability in Shader...

8.2CVSS7.8AI score0.00587EPSS
Exploits4References4
Kaspersky
Kaspersky
added 2019/08/07 12:0 a.m.43 views

KLA11737 Multiple vulnerabilities in Opera

Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. DoS vulnerability in V8 component can be exploited remotely via special crafted webpage. 2. OSI...

9.8CVSS8.1AI score0.01109EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2019/06/19 12:0 a.m.43 views

KLA11736 Multiple vulnerabilities in Opera

Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to bypass security restrictions, spoof user interface, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Policy enforcement in Extensions component...

8.8CVSS8.3AI score0.01985EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2019/06/13 12:0 a.m.43 views

KLA11509 Multiple vulnerabilities in VLC media player

Multiple vulnerabilities were found in VLC media player. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Heap buffer overflow vulnerability in VLC media player can be exploited to cause...

9.8CVSS9.1AI score0.05295EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2019/05/14 12:0 a.m.43 views

KLA11478 Multiple vulnerabilities in Microsoft Browsers

Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, bypass security restrictions, gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A memory...

9CVSS9.1AI score0.23102EPSS
Exploits0References38
Kaspersky
Kaspersky
added 2019/05/13 12:0 a.m.43 views

KLA11571 DoS vulnerability in Apache Tomcat

Thread exhaustion vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Apache Tomcat 9.x Security Vulnerabilities Apache Tomcat 8.x Security Vulnerabilities Related products Apache-Tomcat CVE list CVE-2019-10072...

7.5CVSS6.4AI score0.72988EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2019/04/08 12:0 a.m.43 views

KLA11463 Multiple vulnerabilities in Wireshark

Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Infinite loop vulnerability in GSUP dissector can be exploited remotely via specially designed packet to cause denial of...

7.5CVSS8AI score0.04664EPSS
Exploits4References6
Kaspersky
Kaspersky
added 2019/02/13 12:0 a.m.43 views

KLA11424 PE vulnerability in Microsoft Dynamics 365

An elevation of privilege vulnerability was found in Microsoft Dynamics 365 Server. Malicious users can exploit this vulnerability remotely via specially crafted request to gain privileges. Original advisories CVE-2018-8654 Related products Microsoft-Dynamics-365 CVE list CVE-2018-8654 warning KB...

6.5CVSS7.4AI score0.01763EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2018/05/21 12:0 a.m.43 views

KLA11030 Speculative Store Bypass and Rogue System Register Read vulnerabilities in Microsoft Surface Products

On January 3, 2018, Microsoft released advisories and security updates related to a recently discovered class of hardware vulnerabilities known as Spectre and Meltdown that affect AMD, ARM, and Intel CPUs. On May 21, 2018, Intel announced the Rogue System Registry Read vulnerability. Also a new...

5.5CVSS7.3AI score0.60631EPSS
Exploits2References2
Kaspersky
Kaspersky
added 2018/04/03 12:0 a.m.43 views

KLA11216 ACE vulnerability in Microsoft Exchange Server

A remote code execution vulnerability was found in Microsoft Exchange Server. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially crafted file. Original advisories CVE-2018-0986 Exploitation Public exploits exis...

9.3CVSS9.6AI score0.61482EPSS
Exploits2References4
Kaspersky
Kaspersky
added 2018/01/03 12:0 a.m.43 views

KLA11202 PE vulnerabilities in PostgreSQL

A vulnerabilyty was found in PostgreSQL. This vulnerability allow a user to modify the behavior of a query for other users and can be exploited to execute code with the permissions of superuser in the database. Original advisories Security Update Release Related products PostgreSQL CVE list...

8.8CVSS8.2AI score0.14142EPSS
Exploits1References3
Kaspersky
Kaspersky
added 2017/10/10 12:0 a.m.43 views

KLA11114 Multiple vulnerabilities in Wireshark 2.4.x

Multiple serious vulnerabilities have been found in Wireshark 2.4.x. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. An infinite loop in the DOCSIS dissector can be exploited remotely via a malformed packet to cause a...

7.8CVSS8.3AI score0.02697EPSS
Exploits0References7
Kaspersky
Kaspersky
added 2017/05/05 12:0 a.m.43 views

KLA11031 Multiple vulnerabilities in Foxit Reader

Multiple serious vulnerabilities have been found in Foxit Reader and Foxit Phantom PDF. Malicious users can exploit these vulnerabilities to obtain sensitive information or execute arbitary code. Below is a complete list of vulnerabilities: 1. Multiple vulnerabilities related to an improper parsi...

8.8CVSS9.4AI score0.04079EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2017/01/19 12:0 a.m.43 views

KLA10950 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome earlier than 54.0.2840.99. Malicious users can exploit these vulnerabilities to make privilege escalation, possibly cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities 1. Heap corrupti...

8.8CVSS9AI score0.01561EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2016/11/08 12:0 a.m.43 views

KLA10898 Code execution vulnerabilities in Adobe Flash Player

Multiple type confusion and use-after-free vulnerabilities were found in Adobe Flash Player. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely. Technical details To update Adobe Flash Player ActiveX detected as Flash.oc...

9.3CVSS9.8AI score0.07301EPSS
Exploits0References7
Kaspersky
Kaspersky
added 2016/09/13 12:0 a.m.43 views

KLA10868 Multiple vulnerabilities in Adobe Flash Player

Multiple serious vulnerabilities have been found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. An integer overflow, memory corruption and use-after-free...

9.3CVSS9.4AI score0.19443EPSS
Exploits2References6
Kaspersky
Kaspersky
added 2016/07/21 12:0 a.m.43 views

KLA10855 Memory corruption vulnerability in Apache OpenOffice

An unspecified vulnerability was found in Apache OpenOffice Impress. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed .ODP and .OTP files. Technical details An exploitable...

7.8CVSS8.1AI score0.04484EPSS
Exploits1References4
Kaspersky
Kaspersky
added 2016/07/12 12:0 a.m.43 views

KLA10842 Multiple code execution vulnerabilities in Microsoft Office

An improper memory objects handling and XLA files handling were found in Microsoft Office. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed files. Technical details To mitigate some of these...

9.3CVSS7.7AI score0.26291EPSS
Exploits0References37
Kaspersky
Kaspersky
added 2015/12/12 12:0 a.m.43 views

KLA10721 Multiple vulnerabilities in Apple iTunes

Multiple serious vulnerabilities have been found in Apple iTunes. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Multiple memory corruption issues could be exploit...

6.8CVSS9.7AI score0.02795EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2015/12/08 12:0 a.m.43 views

KLA10717 Multiple vulnerabilities in Microsoft Silverlight

Multiple serious vulnerabilities have been found in Microsoft Silverlight. Malicious users can exploit these vulnerabilities to execute arbitrary code or bypass security restrictions. Below is a complete list of vulnerabilities 1. Improper requests handling can be exploited remotely via a special...

9.3CVSS7.8AI score0.19485EPSS
Exploits0References6
Kaspersky
Kaspersky
added 2015/11/10 12:0 a.m.43 views

KLA10690 Multiple vulnerabilities in Adobe products

Multiple serious vulnerabilities have been found in Adobe products. Malicious users can exploit these vulnerabilities to bypass security restrictions or execute arbitrary code. Below is a complete list of vulnerabilities 1. Type confusion vulnerability can be exploited to execute arbitrary code; ...

10CVSS8.1AI score0.40682EPSS
Exploits4References7
Kaspersky
Kaspersky
added 2015/11/10 12:0 a.m.43 views

KLA10700 Code execution vulnerability in LibreOffice

Lack of bookmarks restrictions was found in LibreOffice & OpenOffice. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed DOC file. Technical details To exploit this...

6.8CVSS8AI score0.09554EPSS
Exploits0References2
Kaspersky
Kaspersky
added 2015/02/11 12:0 a.m.43 views

KLA10501 Code execution Redaxscript vulnerability

SQL injection vulnerability was found in Redaxscript. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a searchterms parameters. Original advisories - Exploitation Public exploits exist for this vulnerability. Related...

7.5CVSS8.2AI score0.02397EPSS
Exploits5References2
Kaspersky
Kaspersky
added 2015/02/10 12:0 a.m.43 views

KLA10456 SB vulnerability in MS Office

An use-after-free vulnerability was found in Microsoft Office. By exploiting this vulnerability malicious users can bypass ASLR protection. This vulnerability can be exploited remotely via a specially designed document. Original advisories MS bulletin CVE-2014-6362 Related products Microsoft-Offi...

4.3CVSS6.4AI score0.1616EPSS
Exploits0References8
Kaspersky
Kaspersky
added 2014/08/12 12:0 a.m.43 views

KLA10340 Multiple vulnerabilities in Splunk

Multiple serious vulnerabilities have been found in Splunk. Malicious users can exploit these vulnerabilities to inject arbitrary script or read local files. Below is a complete list of vulnerabilities 1. An XSS vulnerability can be exploited remotely via specially designed HTPP headers; 2. A...

4.3CVSS6.5AI score0.02217EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2014/05/18 12:0 a.m.43 views

KLA10077 WLF vulnerability in Apple iTunes

A permissions vulnerability was found in Apple iTunes. By exploiting this vulnerability malicious users can modify local files. This vulnerability can be exploited locally via standard file system operations. Original advisories Apple bulletin Related products Apple-iTunes CVE list CVE-2014-1347...

4.4CVSS6AI score0.00389EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2014/05/07 12:0 a.m.43 views

KLA10212 DoS vulnerability in IBM WebSphere MQ

An unspecified vulnerability was found in IBM WebSphere MQ. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via unspecified vectors. Original advisories - Related products IBM-WebSphere-MQ CVE list CVE-2014-0911 warning...

4.3CVSS6.5AI score0.01321EPSS
Exploits0References2
Kaspersky
Kaspersky
added 2013/12/16 12:0 a.m.43 views

KLA10229 ACE vulnerabilities in IrfanView

A buffer overflow was found in IrfanView. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed GIF file or a specially designed thumbnail in the file. Original advisories IrfanView changelog Related...

7.6CVSS7.7AI score0.05749EPSS
Exploits1References3
Kaspersky
Kaspersky
added 2013/06/07 12:0 a.m.43 views

KLA10587 Denial of service vulnerability in Wireshark

Lack of length validation was found in Wireshark. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed packet. Original advisories WNPA security advisory Related products Wireshark CVE list CVE-2013-408...

5CVSS7.6AI score0.03279EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2012/09/07 12:0 a.m.43 views

KLA10099 LPE vulnerability in Camtasia Studio

An untrusted path vulnerability was found in Camtasia Studio. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally via DLL hijacking. Original advisories - Related products Camtasia-Studio CVE list CVE-2010-5234 high Solution Update to...

6.9CVSS6.7AI score0.00493EPSS
Exploits0References2
Kaspersky
Kaspersky
added 2012/04/02 12:0 a.m.43 views

KLA10292 Multiple vulnerabilities in PcVue

Multiple critical vulnerabilities have been found in PcVue. Malicious users can exploit these vulnerabilities to execute arbitrary code, modify local files or cause denial of service. Below is a complete list of vulnerabilities 1. Unspecified vectors can be exploited remotely; 2. A buffer overflo...

9.3CVSS7.9AI score0.26732EPSS
Exploits2References2
Kaspersky
Kaspersky
added 2009/06/05 12:0 a.m.43 views

KLA10317 ACE vulnerability in SafeNet SoftRemote

A buffer overflow was found in SoftRemote. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed request. Original advisories - Related products SafeNet-SoftRemote CVE list CVE-2009-1943 critical Solution...

10CVSS7.8AI score0.7221EPSS
Exploits4References2
Kaspersky
Kaspersky
added 2007/04/17 12:0 a.m.43 views

KLA10412 ACE vulnerability in ZoneAlarm

A lack of argument validation was found in ZoneAlarm. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited locally via specially designed arguments. Original advisories - Related products ZoneAlarm-Pro...

6.9CVSS7.9AI score0.00773EPSS
Exploits0References2
Kaspersky
Kaspersky
added 2007/02/12 12:0 a.m.43 views

KLA10239 Multiple vulnerabilities in KIWI CatTools

A buffer overflow was found in Kingsoft Writer. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed WPS file. Below is a complete list of vulnerabilities 1. A directory traversal vulnerability can be...

10CVSS7.2AI score0.04971EPSS
Exploits0References2
Kaspersky
Kaspersky
added 2007/01/24 12:0 a.m.43 views

KLA10252 ACE vulnerability in multiple software

A buffer overflow was found in multiple products, exploiting NCTAudioFile2.AudioFile. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed call. Original advisories - Related products...

9.3CVSS7.7AI score0.35162EPSS
Exploits4References2
Kaspersky
Kaspersky
added 2005/11/16 12:0 a.m.43 views

KLA10134 DoS vulnerability in IBM DB2

An unspecified vulnerability was found in the IBM DB2 Universal Database. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network at a point related to INSO services or db2fmp processes. Original advisories - Related...

5CVSS6.3AI score0.01399EPSS
Exploits0References2
Kaspersky
Kaspersky
added 2004/12/31 12:0 a.m.43 views

KLA10264 LPE vulnerability in PsTools

An improper disconnection was found in PsTools. By exploiting this vulnerability malicious users can gain privileged access to shares. This vulnerability can be exploited locally. Original advisories - Related products Microsoft-PsSuspend Microsoft-PsExec Microsoft-PsInfo Microsoft-PsGetSid...

4.6CVSS6.7AI score0.01507EPSS
Exploits0References11
Kaspersky
Kaspersky
added 2024/08/22 12:0 a.m.42 views

KLA71827 Multiple vulnerabilities in Microsoft Browser

Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, bypass security restrictions, gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Inappropriate...

9.6CVSS10AI score0.19272EPSS
Exploits4References27
Kaspersky
Kaspersky
added 2024/08/13 12:0 a.m.42 views

KLA71478 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in .NET and Visua...

7.5CVSS8.5AI score0.02701EPSS
Exploits0References9
Kaspersky
Kaspersky
added 2024/05/14 12:0 a.m.42 views

KLA67434 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, bypass security restrictions, cause denial of service, obtain sensitive information. Below is a complete list of...

8.8CVSS9.7AI score0.11471EPSS
Exploits2References37
Kaspersky
Kaspersky
added 2024/03/19 12:0 a.m.42 views

KLA65225 Multiple vulnerabilities in Mozilla Firefox ESR

Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, obtain sensitive information, bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: 1. Out of...

8.8CVSS9.8AI score0.01285EPSS
Exploits4References3
Kaspersky
Kaspersky
added 2024/01/23 12:0 a.m.42 views

KLA63323 Multiple vulnerabilities in Google Chrome

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, spoof user interface, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Integer underflow vulnerability in WebUI...

9.8CVSS8.7AI score0.00579EPSS
Exploits2References3
Kaspersky
Kaspersky
added 2024/01/09 12:0 a.m.42 views

KLA62822 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. A security feature bypass vulnerability in NET, .NET...

9.8CVSS8.4AI score0.03913EPSS
Exploits1References29
Kaspersky
Kaspersky
added 2024/01/09 12:0 a.m.42 views

KLA63964 ACE vulnerability in Microsoft Apps

A remote code execution vulnerability was found in Microsoft 3D Viewer. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2024-20677 Related products 3D-Viewer CVE list CVE-2024-20677 critical KB list Solution Install necessary updates from the KB...

7.8CVSS8.5AI score0.0326EPSS
Exploits0References3
Total number of security vulnerabilities3996