3996 matches found
KLA12235 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in WebSerial can be exploited to cause denial of service or...
KLA12177 Multiple vulnerabilities in PostgreSQL
Multiple vulnerabilities were found in PostgreSQL. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability can be exploited to obtain sensitive information. 2...
KLA11925 Multiple vulnerabilites in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in WebUSB can be exploited to cause denial of service. 2. Heap buffer...
KLA11858 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in Skype for Business via Microsoft Edge...
KLA11803 Path traversal vulnerabilities in Zoom
Path traversal vulnerabilities were found in Zoom. Malicious users can exploit this vulnerabilities to execute arbitrary code. Original advisories Talos Blog for Zoom CVE-2020-6109 CVE-2020-6110 Related products Zoom-MSI CVE list CVE-2020-6109 critical CVE-2020-6110 high Solution Update to the...
KLA11648 Multiple vulnerabilities in Foxit PDF Reader
A multiple use-after-free vulnerabilities in the JavaScript engine can be exploited by a specially crafted PDF document to execute arbitrary code. Original advisories Foxit Security Bulletins Related products Foxit-Reader Foxit-Phantom-PDF Foxit-Reader-Enterprise CVE list CVE-2019-5130 high...
KLA11897 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to gain privileges, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Diagnostics Hub...
KLA11103 Multiple arbitrary code execution vulnerabilities in Adobe Flash Player
Multiple serious memory corruption vulnerabilities have been found in Adobe Flash Player versions earlier than 27.0.0.130. Malicious users can exploit these vulnerabilities to execute arbitrary code. NB: These vulnerabilities does not have any public CVSS ratings, so overall rating can be changed...
KLA11095 Denial of service vulnerability in Wireshark
A buffer overflow vulnerability was found in the Profinet I/O dissector in Wireshark. By exploiting this vulnerability malicious users can cause a denial of service. This vulnerability can be exploited remotely via a specially designed packet, which is injected onto the wire, or by convincing a...
KLA10841 OSI vulnerability in Microsoft Developer Tools
Information disclosure vulnerability was found in Microsoft Developer Tools. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2016-3255 Related products Microsoft-.NET-Framework CVE list CVE-2016-3255 critical KB list 3172985 3163912 3164024...
KLA10896 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet Explorer & Edge. For details look at KLA10830. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: don’t click a link in an email message or...
KLA10815 Security bypass vulnerability in cURL
An improper TLS connections handling was found in cURL. By exploiting this vulnerability malicious users can bypass sec. This vulnerability can be exploited remotely via TLS certificate manipulations. Technical details Libcurl affected only if mbedTLS or PolarSSL as TLS backend. Original advisori...
KLA10787 Code execution vulnerability in Micrsoft XML Core Services
An improper user input processing was found in Microsoft XML Core Services. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed content. Original advisories CVE-2016-0147 Related products...
KLA10753 Multiple vulnerabilities in Microsoft .NET Framework
Multiple serious vulnerabilities have been found in Microsoft .NET Framework. Malicious users can exploit these vulnerabilities to cause denial of service or obtain sensitive information. Below is a complete list of vulnerabilities 1. An improper handling of XSLT can be exploited remotely via a...
KLA10749 Multiple vulnerabilities in MariaDB
Multiple serious vulnerabilities have been found in MariaDB. Malicious users can exploit these vulnerabilities to cause denial of service, affect integrity, bypass security restrictions or execute arbitrary code. Below is a complete list of vulnerabilities 1. Improper server hostname verification...
KLA10699 Multiple vulnerabilities in LibreOffice
Multiple serious vulnerabilities have been found in LibreOffice. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Lack of configuration restrictions at LinkUpdateMod...
KLA10673 Security bypass vulnerabilties at Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to bypass security restrictions. Below is a complete list of vulnerabilities 1. Improper method restrictions at Google V8 can be exploited remotely via a specially designed method...
KLA10541 Multiple vulnerabilities in Juniper Junos
Multiple serious vulnerabilities have been found in Juniper Junos. Malicious users can exploit these vulnerabilities to gainprivileges, execute arbitrary code orspoof user interface. Below is a complete list of vulnerabilities 1. XSS vulnerability can be exploited remotely via unspecified vectors...
KLA10520 Multiple vulnerabilities in HP Operations Orchestration
An unspecified vulnerabilities were found in HP Operations Orchestration. By exploiting these vulnerabilities malicious users can bypass authentication,obtain sensitive information or modify data. These vulnerabilities can be exploited remotely via an unknown vector. Original advisories HP securi...
KLA10497 Security bypass vulnerability in IBM Rational ClearQuest
Cross site reference forgery was found in IBM Rational ClearQuest. By exploiting this vulnerability malicious users can bypass security restrictions. This vulnerability can be exploited remotely via a auth hijack. Original advisories - Related products IBM-Rational-ClearQuest CVE list CVE-2014-89...
KLA10459 Security bypass vulnerability in Microsoft Windows
Improper TLS restriction was found in Microsoft products. By exploiting this vulnerability malicious users bypass security. This vulnerability can be exploited remotely via a specially designed TLS traffic. Original advisories MS bulletin CVE-2015-1637 Related products Microsoft-Windows-Vista...
KLA10590 Multiple vulnerabilities in Microsoft Office
An unspecified vulnerabilities were found in Microsoft Office. By exploiting these vulnerabilities malicious users can cause denial of service or execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed Office document. Original advisories CVE-2015-0064...
KLA10609 Multiple vulnerabilities in Microsoft Lync Server
Multiple serious vulnerabilities have been found in Microsoft Lync Server. Malicious users can exploit these vulnerabilities to inject arbitrary code or cause denial of service. Below is a complete list of vulnerabilities 1. XSS vulnerability can be exploited remotely via a specially designed URL...
KLA10098 Vulnerability in CVSNT
An unspecified vulnerability was found in CVSNT. By exploiting this vulnerability malicious users can bypass permission checks, modify directories and execute arbitrary code. This vulnerability can be exploited remotely via specially designed branching. Original advisories March Hare bulletin...
KLA10129 ACE vulnerability in Core FTP
A buffer overflow was found in Core FTP. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network via a specially designed server reply. Original advisories Core FTP changelog Related products Core-FTP-client...
KLA10337 DoS vulnerability in Sophos UTM
A memory leak was found in Sophos UTM. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via unspecified vectors. Original advisories - Related products Sophos-Unified-Threat-Management CVE list CVE-2014-2537 high Solution...
KLA10078 DoS vulnerability in B-e-soft Artweaver
A buffer overflow vulnerability was found in Artweaver. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. This vulnerability can be exploited from the network at a point related to unknown applications via a specially designed AWD...
KLA10146 OSI vulnerability in EMC NetWorker
An unspecified vulnerability was found in EMC NetWorker. By exploiting this vulnerability malicious users can obtain configuration information. This vulnerability can be exploited locally. Original advisories - Related products EMC-NetWorker CVE list CVE-2013-0943 warning Solution Update to lates...
KLA10431 LPE vulnerability in KeePass Password Safe
An untrusted path vulnerability was found in KeePass Password Safe. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally via a DLL hijack. Original advisories - Related products KeePass-Password-Safe CVE list CVE-2010-5200 high Solution...
KLA10389 ACE vulnerability in Warcraft III
An unspecified vulnerability was found in Warcraft III. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed map. Original advisories - Related products Warcraft-III:-The-Frozen-Throne CVE list...
KLA10358 ACE vulnerability in multiple products
Buffer overflows were found in multiple products. By exploiting these vulnerabilities malicious users can execute arbitrary code. This vulnerability can be exploited remotely via specially designed tabs. Original advisories - Related products TSC2-Help-Desk ComponentOne-Studio-Enterprise-2005...
KLA10365 DoS vulnerability in Timbuktu
An unspecified vulnerability was found in Timbuktu. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed message. Original advisories - Related products Timbuktu-Pro CVE list CVE-2008-1337 warning...
KLA10251 DoS vulnerability in Clearswift MIMEsweeper
An unspecified vulnerability was found in Clearswift MIMEsweeper. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed RAR file. Original advisories - Related products MIMEsweeper-for-Web CVE list...
KLA10378 DoS vulnerability in Veritas Backup Exec Remote Agent
An unspecified vulnerability was found in Veritas Backup Exec Remote Agent. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited locally. Original advisories Symantec advisory Related products VERITAS-Backup-Exec-Remote-Agent CVE list...
KLA10215 DoS vulnerability in IDA pro
An unspecified vulnerability was found in IDA Pro. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed dll name. Original advisories - Related products IDA-Pro CVE li...
KLA83573 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Excel can be...
KLA70989 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Inappropriate implementation vulnerability in HTML can be...
KLA70468 DoS vulnerabilities in Oracle VirtualBox
An unspecified vulnerabilities were found in Oracle VirtualBox. None of these vulnerabilities may be remotely exploitable without authentication, i.e., none may be exploited over a network without requiring user credentials. Original advisories Oracle Critical Patch Update Advisory – July 2024...
KLA62433 SUI vulnerability in Microsoft Azure
A spoofing vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2023-21751 Related products Microsoft-Azure CVE list CVE-2023-21751 high KB list Solution Install necessary updates from the KB section, that are...
KLA61978 Multiple vulnerabilities in Microsoft Server Software
Multiple vulnerabilities were found in Microsoft Server Software. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Exchange Server can be exploited...
KLA61354 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Office Graphics can be exploited remotely to...
KLA52240 RCE vulnerability in PostgreSQL
Remote code execution vulnerability was found in PostgreSQL. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories PostgreSQL: CVE-2023-39417: Extension script @substitutions@ within quoting allow SQL injection Related products PostgreSQL CVE list...
KLA49158 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to bypass security restrictions, gain privileges, execute arbitrary code, cause denial of service, spoof user interface. Below is a complete list of vulnerabilities: 1. A security feature...
KLA48975 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Out of bounds memory access vulnerability in Service Worker API can be exploited to cause...
KLA48840 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, execute arbitrary code, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1...
KLA48551 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in JIT...
KLA40224 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Video can be exploited to execute arbitrary code or cause...
KLA20039 Multiple vulnerabilities in Foxit PDF Reader
Use after free vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to cause denial of service. Original advisories Security updates available in Foxit PDF Reader 12.0.2 and Foxit PDF Editor 12.0.2 Exploitation Public exploits exist for this vulnerability...
KLA15734 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Implementation vulnerability in Pointer Lock can be exploited to cause denial of service...
KLA12573 PE vulnerability in Microsoft Browser
An elevation of privilege vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2022-33639 Related products Microsoft-Edge CVE list CVE-2022-33639 critical KB list Solution Install necessary updates from the Settin...