3996 matches found
KLA12358 OSI vulnerability in Zoom
Information disclosure vulnerability was found in Zoom. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories Zoom Security Bulletin Related products Zoom-MSI CVE list CVE-2021-28133 unknown Solution Update to the latest version Download Zoom Impacts...
KLA12125 Buffer overflow vulnerability in Mozilla Firefox ESR
A buffer overflow vulnerability was found in Mozilla Firefox ESR. Malicious users can exploit this vulnerability to obtain sensitive information, cause denial of service. Original advisories MFSA2021-06 Related products Mozilla-Firefox-ESR CVE list CVE-2020-16048 unknown Solution Update to the...
KLA12178 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, spoof user interface. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in WebRTC can be...
KLA12052 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A security bypass...
KLA12051 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A security bypass...
KLA12020 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Azure DevOps Server can be...
KLA12015 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Implementation vulnerability in V8 can be exploited to potentially cause denial of service. 2. Use...
KLA12099 Multiple vulnerabilities in VMware Workstation and Player
Multiple vulnerabilities were found in VMware Workstation and Player. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. A out of bounds read vulnerability in Cortado ThinPrin...
KLA12057 Multiple vulnerabilities in Cisco Jabber
Multiple vulnerabilities were found in Cisco Jabber. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. OSI vulnerability in Cisco Jabber can be exploited remotely via special crafted message t...
KLA11913 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to bypass security restrictions, spoof user interface, obtain sensitive information, execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. URI...
KLA11818 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, cause denial of service, spoof user interface. Below is a complete list of vulnerabilities: 1. Policy enforcement vulnerability in developer too...
KLA11781 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Type confusion vulnerability in Blink component can be exploited to potentially cause denial of service. 2. Stack buffer...
KLA11918 Security vulnerabilities in Foxit Reader
Security vulnerabilities was found in Foxit Reader. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories Foxit Security Bulletins Related products Foxit-Reader CVE list CVE-2020-9596 critical CVE-2020-9592 critical Solution Update to the latest versi...
KLA11558 Bypass security restrictions vulnerability in Mozilla Firefox
Security vulnerability was found in Mozilla Firefox. Malicious users can exploit this vulnerability via specially designed website to bypass security restrictions. Original advisories Mozilla Foundation Security Advisory 2019-31 Related products Mozilla-Firefox CVE list CVE-2019-11754 warning...
KLA11557 Multiple vulnerabilities in Microsoft Browsers
Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Chakra Scripting...
KLA11736 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to bypass security restrictions, spoof user interface, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Policy enforcement in Extensions component...
KLA11509 Multiple vulnerabilities in VLC media player
Multiple vulnerabilities were found in VLC media player. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Heap buffer overflow vulnerability in VLC media player can be exploited to cause...
KLA11496 ACE vulnerabilities in Adobe Flash Player
Multiple vulnerabilities was found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to execute arbitrary code and obtain sensitive information. Below is a complete list of vulnerabilities: 1. A use-after-free vulnerability can be exploited remotely to execute arbitrary cod...
KLA11571 DoS vulnerability in Apache Tomcat
Thread exhaustion vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Apache Tomcat 9.x Security Vulnerabilities Apache Tomcat 8.x Security Vulnerabilities Related products Apache-Tomcat CVE list CVE-2019-10072...
KLA12551 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service, bypass security restrictions, gain privileges, spoof user interface, execute arbitrary code. Below is a...
KLA11202 PE vulnerabilities in PostgreSQL
A vulnerabilyty was found in PostgreSQL. This vulnerability allow a user to modify the behavior of a query for other users and can be exploited to execute code with the permissions of superuser in the database. Original advisories Security Update Release Related products PostgreSQL CVE list...
KLA11853 ACE vulnerability in Microsoft Exchange Server
A remote code execution vulnerability was found in Microsoft Exchange Server. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2017-11937 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More detail...
KLA11114 Multiple vulnerabilities in Wireshark 2.4.x
Multiple serious vulnerabilities have been found in Wireshark 2.4.x. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. An infinite loop in the DOCSIS dissector can be exploited remotely via a malformed packet to cause a...
KLA11110 Multiple vulnerabilities in VMware products
Multiple serious vulnerabilities have been found in VMware products. Malicious users can exploit these vulnerabilities to cause denial of service, privelege escalation, cross site scripting and arbitary code execution. Below is a complete list of vulnerabilities : 1. Out-of-bounds write...
KLA10950 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome earlier than 54.0.2840.99. Malicious users can exploit these vulnerabilities to make privilege escalation, possibly cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities 1. Heap corrupti...
KLA10898 Code execution vulnerabilities in Adobe Flash Player
Multiple type confusion and use-after-free vulnerabilities were found in Adobe Flash Player. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely. Technical details To update Adobe Flash Player ActiveX detected as Flash.oc...
KLA10834 Arbitrary code execution vulnerability in Opera Mail
An unspecified vulnerability was found in Opera Mail. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed e-mail message. Original advisories Opera advisory Related products Opera-Mail CVE list...
KLA10932 Multiple vulnerabilities in Pidgin
Multiple serious vulnerabilities have been found in Pidgin. Malicious users can exploit these vulnerabilities to overwrite arbitrary files, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A directory traversal vulnerability in the handling of...
KLA10821 Arbitrary code execution vulnerability in Lenovo Accelerator Application
Improper implementation of update mechanism was found in Lenovo Accelerator Application. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via spoofing an update response by man-in-the-middle attack. Technical details To...
KLA10808 Multiple vulnerabilities in Apache Subversion
Multiple serious vulnerabilities have been found in Apache Subversion. Malicious users can exploit these vulnerabilities to cause denial of service or bypass security restrictions. Below is a complete list of vulnerabilities 1. Null pointer dereference can be exploited by authenticated attacker t...
KLA10721 Multiple vulnerabilities in Apple iTunes
Multiple serious vulnerabilities have been found in Apple iTunes. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Multiple memory corruption issues could be exploit...
KLA10690 Multiple vulnerabilities in Adobe products
Multiple serious vulnerabilities have been found in Adobe products. Malicious users can exploit these vulnerabilities to bypass security restrictions or execute arbitrary code. Below is a complete list of vulnerabilities 1. Type confusion vulnerability can be exploited to execute arbitrary code; ...
KLA10538 Multiple vulnerabilities in McAfee ATD
Multiple serious vulnerabilities have been found in McAfee ATD. Malicious users can exploit these vulnerabilities to obtain sensitive information or bypass security restrictions. Below is a complete list of vulnerabilities 1. Improper access restrictions and other unknown vulnerabilities can be...
KLA10528 Code injection vulnerability in pfsense
Cross-site scripting vulnerabilities were found in pfSense. By exploiting these vulnerabilities malicious users can enject arbitrary sctip or HTML. These vulnerabilities can be exploited remotely via a specially designed parameters for web interface. Original advisories pfSense advisory...
KLA10501 Code execution Redaxscript vulnerability
SQL injection vulnerability was found in Redaxscript. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a searchterms parameters. Original advisories - Exploitation Public exploits exist for this vulnerability. Related...
KLA10028 ACE vulnerability in Adobe Illustrator
An unspecified vulnerability was found in Adobe Illustrator CS6. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network at a point related to an unspecified application. Original advisories Adobe bulletin Related products...
KLA10588 Multiple vulnerabilities in Wireshark
Buffer overflow vulnerabilities were found in Wireshark. By exploiting these vulnerabilities malicious users can cause denial of service or execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed packet trace. Original advisories WNPA advisory Exploitation...
KLA10229 ACE vulnerabilities in IrfanView
A buffer overflow was found in IrfanView. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed GIF file or a specially designed thumbnail in the file. Original advisories IrfanView changelog Related...
KLA10403 ACE vulnerability in XnView
A buffer overflow was found in XnView. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed PCT file. Original advisories - Exploitation Public exploits exist for this vulnerability. Related products...
KLA10274 ACE vulnerability in Nitro PDF
Improper memory writing was found in Nitro PDF. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed PDF. Original advisories Microsoft research Related products Nitro-PDF-Reader Nitro-Pro CVE list...
KLA10167 DoS vulnerabilities in GIMP
Multiple serious vulnerabilities have been found in GIMP. Malicious can use these vulnerabilities to cause denial of service and possibly execute arbitrary code. Below is a complete list of vulnerabilities 1. An integer overflow can be exploited remotely via a specially designed GIF; 2. A buffer...
KLA10043 LPE vulnerability in 010 Editor
An untrusted path vulnerability was found at 010 Editor. Malicious users can exploit this vulnerability to gain privileges via a DLL hijack. Original advisories Vulnerability description Release note Related products 010-Editor CVE list CVE-2010-5229 high Solution Update to latest version Impacts...
KLA10198 Multiple vulnerabilities in IBM Director
Multiple serious vulnerabilities have been found in IBM Director. Malicious users can exploit these vulnerabilities to cause denial of service or execute arbitrary code. Below is a complete list of vulnerabilities 1. Vectors related to CIM server can be exploited remotely via a specially designed...
KLA10247 Vulnerability in MailMArshal SMTP
An unspecified vulnerability was found in MailMarshal SMTP. By exploiting this vulnerability malicious users can modify arbitrary account information. This vulnerability can be exploited remotely via a specially designed UserId variable. Original advisories - Related products M86-MailMarshal-SMTP...
KLA10412 ACE vulnerability in ZoneAlarm
A lack of argument validation was found in ZoneAlarm. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited locally via specially designed arguments. Original advisories - Related products ZoneAlarm-Pro...
KLA10234 Multiple vulnerabilities in Kaspersky products
Multiple critical vulnerabilities have been found in Kaspersky Anti-Virus and Kaspersky Internet Security. Malicious users can exploit these vulnerabilities to execute arbitrary code or read & overwrite local files. Below is a complete list of vulnerabilities 1. An integer overflow can be exploit...
KLA77436 RCE vulnerability in 7-Zip
Remote code execution vulnerability was found in 7-Zip. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2024-11477 ZDI-24-1532 Related products 7-Zip CVE list CVE-2024-11477 critical Solution Update to the latest version Download 7-Zip Impacts ACE...
KLA73908 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to spoof user interface, obtain sensitive information, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Microsoft Office c...
KLA68919 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Office can be exploited remotely to execute arbitrary code. 2. A...
KLA65127 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Office can be...