3996 matches found
KLA83573 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Excel can be...
KLA70989 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Inappropriate implementation vulnerability in HTML can be...
KLA70468 DoS vulnerabilities in Oracle VirtualBox
An unspecified vulnerabilities were found in Oracle VirtualBox. None of these vulnerabilities may be remotely exploitable without authentication, i.e., none may be exploited over a network without requiring user credentials. Original advisories Oracle Critical Patch Update Advisory – July 2024...
KLA62539 DoS vulnerability in Google Chrome
Heap buffer overflow vulnerability was found in Google Chrome. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Chrome Releases: Stable Channel Update for Desktop Exploitation Public exploits exist for this vulnerability. Related products Google-Chrom...
KLA62433 SUI vulnerability in Microsoft Azure
A spoofing vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2023-21751 Related products Microsoft-Azure CVE list CVE-2023-21751 high KB list Solution Install necessary updates from the KB section, that are...
KLA61978 Multiple vulnerabilities in Microsoft Server Software
Multiple vulnerabilities were found in Microsoft Server Software. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Exchange Server can be exploited...
KLA61354 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Office Graphics can be exploited remotely to...
KLA52240 RCE vulnerability in PostgreSQL
Remote code execution vulnerability was found in PostgreSQL. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories PostgreSQL: CVE-2023-39417: Extension script @substitutions@ within quoting allow SQL injection Related products PostgreSQL CVE list...
KLA49158 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to bypass security restrictions, gain privileges, execute arbitrary code, cause denial of service, spoof user interface. Below is a complete list of vulnerabilities: 1. A security feature...
KLA48975 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Out of bounds memory access vulnerability in Service Worker API can be exploited to cause...
KLA48840 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, execute arbitrary code, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1...
KLA48551 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in JIT...
KLA40224 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Video can be exploited to execute arbitrary code or cause...
KLA20039 Multiple vulnerabilities in Foxit PDF Reader
Use after free vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to cause denial of service. Original advisories Security updates available in Foxit PDF Reader 12.0.2 and Foxit PDF Editor 12.0.2 Exploitation Public exploits exist for this vulnerability...
KLA15734 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Implementation vulnerability in Pointer Lock can be exploited to cause denial of service...
KLA19260 XSS vulnerability in Apache Tomcat
Cross-site scripting XSS vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to perform cross-site scripting attack. Original advisories Apache Tomcat 8.5.x vulnerabilities Related products Apache-Tomcat CVE list CVE-2022-34305 high Solution Update to the late...
KLA12573 PE vulnerability in Microsoft Browser
An elevation of privilege vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2022-33639 Related products Microsoft-Edge CVE list CVE-2022-33639 critical KB list Solution Install necessary updates from the Settin...
KLA12515 Multiple vulnerabilities in Oracle VirtualBox
Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to bypass security restrictions, gain privileges, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Security vulnerability can be...
KLA12450 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Web Search can be exploited...
KLA12357 Multiple vulnerabilities in Apple iCloud
Multiple vulnerabilities were found in Apple iCloud. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A code execution vulnerability in ImageIO can be exploited via special crafted image to...
KLA12302 Use after free vulnerability in Opera
Use after free vulnerability was found in Opera. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories Changelog for Opera 80 Stable Channel Update for Desktop Related products Opera CVE list CVE-2021-37973 unknown Solution Update t...
KLA12321 DoS vulnerability in Apache Tomcat
A memory leak vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Apache Tomcat 9.x vulnerabilities Apache Tomcat 10.0.x vulnerabilities Related products Apache-Tomcat CVE list CVE-2021-42340 critical Solution...
KLA12218 SB vulnerability in Apache Tomcat
A security bypass vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories Apache Tomcat 8.5.x vulnerabilities Apache Tomcat 9.x vulnerabilities Apache Tomcat 10.0.x vulnerabilities Related products Apache-Tomcat...
KLA12170 RCE vulnerability in Microsoft Open Source Software
A remote code execution vulnerability was found in Microsoft Open Source Software. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2021-31200 Related products Yammer-Desktop-App CVE list CVE-2021-31200 high KB list Solution Install necessary updat...
KLA12325 SB vulnerability in Apache Tomcat
A security bypass vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories Apache Tomcat 7.x vulnerabilities Related products Apache-Tomcat CVE list CVE-2021-30640 unknown Solution Update to the latest version...
KLA12001 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. An elevation of...
KLA11938 Security vulnerability in PostgreSQL
Security vulnerability was found in PostgreSQL. Malicious users can exploit this vulnerability to obtain sensitive information, bypass security restrictions. Original advisories PostgreSQL News Related products PostgreSQL CVE list CVE-2020-14349 high Solution Update to the latest version Download...
KLA11860 PE vulnerability in Microsoft System Center
An elevation of privilege vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2020-1461 Related products Microsoft-Forefront-Protection Windows-Defender CVE list CVE-2020-1461 warning KB list Solution Insta...
KLA11672 Security vulnerabilities for Adobe
This security update addresses the multiple vulnerability, which is described in Adobe Security Bulletin APSB20-06. Original advisories ADV200003 APSB20-06 Related products Adobe-Flash CVE list ADV200003 unknown KB list 4537759 Solution Install necessary updates from the KB section, that are list...
KLA11741 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, cause denial of service, spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Policy enforcement...
KLA11584 Multiple vulnerabilities in Oracle VirtualBox
Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to bypass security restrictions. Below is a complete list of vulnerabilities: 1. Vulnerability in Core component of Oracle VM VirtualBox can be exploited to bypass security restrictions; 2...
KLA11561 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, execute arbitrary code, perform cross-site scripting attack. Below is a complete list of vulnerabilities: 1. Unspecified...
KLA11505 Incorrect parameters parsing vulnerability in Mozilla Firefox ESR
Vulnerability, related to insufficient vetting of parameters passed with the Prompt:Open IPC message was found in Mozilla Firefox. Malicious users can exploit this vulnerability via specially designed website to bypass security restrictions. Original advisories mfsa2019-19 Related products...
KLA11404 Multiple vulnerabilities in Microsoft Development Tools
Multiple vulnerabilities were found in Microsoft Development Tools. Malicious users can exploit these vulnerabilities to obtain sensitive information, perform cross-site scripting attacks. Below is a complete list of vulnerabilities: 1. A cross-site-scripting XSS vulnerability in Team Foundation...
KLA12056 XSS vulnerability in Cisco Jabber
A cross-site scripting XSS vulnerability was found in Cisco Jabber. Malicious users can exploit this vulnerability to perform cross-site scripting attack. Original advisories Cisco Jabber Client Framework Instant Message Cross-Site Scripting Vulnerability Related products Cisco-Jabber CVE list...
KLA11223 Multiple vulnerabilities in Adobe Flash Player
Multiple serious vulnerabilities have been found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to execute arbitrary code and obtain sensitive information. 1. Use-After-Free vulnerability can be exploited remotely to execute arbitrary code; 2. Out-of-bounds reading...
KLA11128 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service or execute arbitrary code. Below is a complete list of vulnerabilities: 1. An incorrect assumption about block structure in Blink can be exploited remote...
KLA10991 Privilege escalation vulnerability in Adobe Shockwave Player
An unspecified vulnerability was found in the Adobe Shockwave Player. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited remotely via a DLL hijacking. Original advisories Adobe Security Bulletin Related products Adobe-Shockwave-Player CVE lis...
KLA10948 Denial of service and code execution vulnerability in Foxit Reader and Foxit PhantomPDF
Out-of bounds read vulnerability was found in the ConvertToPDF plugin in Foxit Reader and PhantomPDF. By exploiting this vulnerability malicious users can cause a denial of service, possibly obtain sensitive information or execute arbitrary code in the context of the current process. This...
KLA10895 Denial of service vulnerability in RealNetworks RealPlayer
An improper data handling was found in RealNetworks RealPlayer. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed .QCP file. NB: This vulnerability have no public CVSS rating so rating can be changed...
KLA10860 Code execution vulnerability in GIMP
Use-after-free vulnerability was found in GIMP. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed XCF file. Technical details This vulnerability related to xcfloadimage...
KLA10812 Privilege escalation vulnerabilities in Lenovo Solution Center
Multiple serious vulnerabilities have been found in Lenovo Solution Center. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities 1. An unknown vulnerability at SystemService can be exploited locally to terminate arbitrary process via...
KLA10942 Multiple vulnerabilities in Pidgin
Multiple serious vulnerabilities have been found in Pidgin. Malicious users can exploit these vulnerabilities to cause a denial of sevice, obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Null pointer derefence vulnerabilities and...
KLA10797 Multiple vulnerabilities in Foxit Reader
Multiple vulnerabilities have been found in Foxit Reader and Foxit PhantomPDF. Malicious users can exploit these vulnerabilities to execute arbitrary code or cause denial of service. Below is a complete list of vulnerabilities 1. An unknown vulnerability in ConvertToPDF plugin can be exploited...
KLA10750 Data manipulations vulnerability in cURL
Lack of data sanitization was found in cURL command line tool for Windows. By exploiting this vulnerability malicious users can write arbitrary local file. This vulnerability can be exploited remotely via a specially designed file name. Technical details cURL does not sanitize colons in a remote...
KLA10730 Denial of service vulnerabilities in Wireshark
Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities 1. Improper data validation and lack of restrictions can be exploited remotely via a specially designed packet o...
KLA10658 Multiple vulnerabilities in Microsoft Exchange Server
Multiple serious vulnerabilities have been found in Microsoft Exchange Server. Malicious users can exploit these vulnerabilities to spoof user interface or obtain sensitive information. Below is a complete list of vulnerabilities 1. Improper web request handling at Outlook Web Access can be...
KLA10650 Multiple vulnerabilities in Adobe products
Multiple serious vulnerabilities have been found in Adobe products. Malicious users can exploit these vulnerabilities to cause denial of service or execute arbitrary code. Below is a complete list of vulnerabilities 1. Type confusion, use-after-free, multiple overflows and memory corruption could...
KLA10571 Denial of service vulnerability in Foxit products
An unspecified vulnerability was found in Foxit products. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed GIF in PDF file or vectors related to digital signatures. Original advisories Foxit bulleti...
KLA10555 Denial of service vulnerability in Hyper-V
An unspecified vulnerability was found in Microsoft products. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed application. Original advisories MS advisory CVE-2015-1647 Related products...