3996 matches found
KLA11715 Use after free vulnerability in Opera
Use after free vulnerability was found in Opera. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories Chengelog for Opera 65 Stable Channel Update for Desktop Exploitation Malware exists for this vulnerability. Usually such malware...
KLA11577 Multiple vulnerability in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to spoof user interface, gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A cross-site-scripting XSS vulnerability Microsoft Office SharePoint can be...
KLA11573 SUI vulnerability in Mozilla Thunderbird
Unspecified vulnerability was found in Mozilla Thunderbird. Malicious users can exploit this vulnerability to spoof user interface. Original advisories mfsa2019-32 Related products Mozilla-Thunderbird CVE list CVE-2019-11755 warning Solution Update to the latest version Download Mozilla Thunderbi...
KLA11437 Multiple vulnerabilities in VMware products
Multiple vulnerabilities were found in VMware products. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities: 1. Vulnerability related to VMX process can be exploited remotely to gain privileges; 2. Vulnerability related to COM classes...
KLA11494 DOS vulnerability in Apache Tomcat
Incorrect requests handling int Apache HTTP/2. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Apache Tomcat 8.x Security Vulnerabilities Related products Apache-Tomcat CVE list CVE-2019-0199 warning Solution Update to the latest version Download...
KLA11856 ACE vulnerability in Microsoft Exchange Server
A remote code execution vulnerability was found in Microsoft Exchange Server. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2017-11940 Related products Microsoft-Exchange-Server CVE list CVE-2017-11940 critical KB list Solution Install necessary...
KLA11841 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in DirectX can be exploited remotely via specially...
KLA11018 Multuple vulnerabilities in VMware products
Multiple serious vulnerabilities have been found in VMware products. Malicious users can exploit these vulnerabilities to execute arbitrary code and cause a denial of service. Below is a complete list of vulnerabilities: 1. A heap-buffer overflow vulnerability can be exploited remotely to execute...
KLA10836 Multiple vulnerabilities in Foxit Reader and Foxit PhantomPDF
Multiple serious vulnerabilities have been found in multiple Foxit products. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Use-after-free vulnerability can be...
KLA11445 ACE vulnerability in PuTTY
Integer overflow vulnerability was found in PuTTY. Malicious users can exploit this vulnerability remotely to execute arbitrary code and cause denial of service. Original advisories PuTTY vulnerability vuln-ech-overflow Related products PuTTY CVE list CVE-2015-5309 warning Solution Update to the...
KLA10236 ACE vulnerability in Kerio Control
An SQL injection vulnerability was found in Kerio Control. By exploiting this vulnerability malicious users can execute arbitrary SQL. This vulnerability can be exploited remotely via a specially designed php call. Original advisories Release history Exploitation Public exploits exist for this...
KLA10175 DoS vulnerability in GnuPG
An unspecified vulnerability was found in GnuPG. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via specially designed packets. Original advisories - Related products GnuPG-gpg CVE list CVE-2014-4617 warning Solution Upda...
KLA10006 Multiple vulnerabilities in Google Chrome
Multiple serious vulnerabilities have been found in Google Chrome 35.0.1916.114 and earlier. Malicious users can exploit these vulnerabilities to cause denial of service or other possible issues. Below is a complete list of vulnerabilities 1. heap-based buffer overflow in...
KLA10214 DoS vulnerability in ICQ
A buffer overflow was found in ICQ. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed internet shortcut. Original advisories - Exploitation Public exploits exist f...
KLA10112 OSI vulnerability in Citrix
An unspecified vulnerability was found in Citrix products. By exploiting this vulnerability malicious users can obtain information. This vulnerability can be exploited locally at a point related to MSI logging. Original advisories Citrix bulletin Related products Citrix-Presentation-Server CVE li...
KLA10335 ACE vulnerability in SonicWall Global VPN client
Format string vulnerabilities were found in the SonicWall Global VPN client. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via specially designed format strings. Original advisories - Related products...
KLA10222 ACE vulnerabilities in player
A buffer overflow was found in Player. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via specially designed attributes. Original advisories - Related products InterActual-Player Roxio-CinePlayer CVE list CVE-2007-0348...
KLA10367 Vulnerability in Toshiba Bluetooth Stack
An unspecified vulnerability was found in Toshiba Bluetooth Stack. By exploiting this vulnerability malicious users can cause unknown impact. This vulnerability can be exploited remotely. Original advisories - Related products Toshiba-Bluetooth-Stack CVE list CVE-2006-5611 critical Solution Updat...
KLA10391 CI vulnerability in WebInspect
An XAS vulnerability was found in WebInspect. By exploiting this vulnerability malicious users can inject from one application to another. This vulnerability can be exploited remotely. Original advisories - Related products WebInspect CVE list CVE-2005-2442 warning Solution Update to latest versi...
KLA10272 ACE vulnerability in NetTerm
A buffer overflow was found in NetTerm. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed command. Original advisories - Related products NetTerm CVE list CVE-2005-1323 high Solution Update to latest...
KLA10302 DoS vulnerability in Eudora
A buffer overflow was found in Eudora. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed e-mail message. Original advisories Release note Related products Qualcom-Eudora CVE list CVE-2004-2301 warnin...
KLA79208 Multiple vulnerabilities in Oracle Java
Multiple vulnerabilities were found in Oracle Java. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability can be exploited remotely to execut...
KLA74117 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, spoof user interface, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Parce...
KLA71453 ACE vulnerability in PostgreSQL
Time-of-check Time-of-use TOCTOU race condition vulnerability was found in PostgreSQL. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories PostgreSQL: CVE-2024-7348: PostgreSQL relation replacement during pgdump executes arbitrary SQL Related products...
KLA70414 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in .NET and Visual Studio can ...
KLA67223 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Microsoft Edge Chromium-based can be...
KLA65313 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Type confusion vulnerability in WebAssembly can be exploited to cause denial of service. 2. U...
KLA65122 DoS vulnerability in Google Chrome
Use after free vulnerability was found in Google Chrome. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories Chrome Releases: Stable Channel Update for Desktop Exploitation Public exploits exist for this vulnerability. Related...
KLA65130 ACE vulnerability in Microsoft Exchange Server
A remote code execution vulnerability was found in Microsoft Exchange Server. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2024-26198 Exploitation Public exploits exist for this vulnerability. Related products Microsoft-Exchange-Server CVE list...
KLA63962 PE vulnerability in Microsoft System Center
An elevation of privilege vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2024-21315 Related products Microsoft-Windows Microsoft-Defender-for-Endpoint-for-Windows CVE list CVE-2024-21315 critical KB li...
KLA62825 SB vulnerability in Microsoft SQL Server
A security feature bypass vulnerability was found in Microsoft SQL Server. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2024-0056 Exploitation Public exploits exist for this vulnerability. Related products Microsoft-SQL-Server CVE list...
KLA62191 ACE vulnerability in Apache Tomcat
A improper input validation vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories Fixed in Apache Tomcat 9.0.83 Related products Apache-Tomcat CVE list CVE-2023-46589 critical Solution Update to the latest version...
KLA60813 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Out of bounds write vulnerability in PathOps can be exploited to cause denial of servic...
KLA60727 DoS vulnerability in Mozilla Firefox
Heap buffer overflow vulnerability was found in Mozilla Firefox. Malicious users can exploit this vulnerability to cause denial of service. Original advisories MFSA2023-40 Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such malware is...
KLA50365 ACE vulnerability in LibreOffice
Improper Input Validation vulnerability was found in LibreOffice. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories Arbitrary File Write in hsqldb 1.8.0 Related products LibreOffice CVE list CVE-2023-1183 high Solution Update to the latest version...
KLA49380 DoS vulnerability in Microsoft Browser
Type confusion vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to cause denial of service. Original advisories CVE-2023-3079 Exploitation Public exploits exist for this vulnerability. Related products Microsoft-Edge CVE list CVE-2023-3079 critical KB...
KLA49331 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. Out of bounds write vulnerability in Swiftshader can b...
KLA50364 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Out of bounds read vulnerability in GPU Video can be exploited to cause denial of service. 2. Use aft...
KLA48688 RCE vulnerability in LibreOffice
Remote code execution vulnerability was found in LibreOffice. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories Empty entry in Java class path risks arbitrary code execution Related products LibreOffice CVE list CVE-2022-38745 critical Solution Update t...
KLA20116 Multiple vulnerabilities in Apple iCloud
Multiple vulnerabilities were found in Apple iCloud. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Security vulnerability in WebKit can be exploited to bypass...
KLA20124 ACE vulnerability in Microsoft Dynamics
Code execution vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2022-41127 Related products Microsoft-Dynamics-365 CVE list CVE-2022-41127 critical KB list 5010202 5019239 5021671 5010910 5021670 50134...
KLA20010 Multiple vulnerabilities in Oracle VirtualBox
Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, gain privileges. Below is a complete list of vulnerabilities: 1. A denial of service in Core can be exploited to cause denial of...
KLA19266 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Data corruption vulnerability in matrix-js-sdk can be exploited via specially crafted...
KLA12574 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service, bypass security restrictions, gain privileges, spoof user interface. Below is a complete list of...
KLA12537 PE vulnerability in PostgreSQL
Escalation of privilege vulnerability was found in PostgreSQL. Malicious users can exploit this vulnerability to execute arbitrary code, gain privileges. Original advisories PostgreSQL News Related products PostgreSQL CVE list CVE-2022-1552 critical Solution Update to the latest version Download...
KLA12508 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to obtain sensitive information. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in Azure Site Recovery can be exploited remotely to obtain sensitive...
KLA12323 Multiple vulnerabilities in LibreOffice
Multiple vulnerabilities were found in LibreOffice. Malicious users can exploit this vulnerability to obtain sensitive information, bypass security restrictions. Original advisories Content Manipulation with Double Certificate Attack Timestamp Manipulation with Signature Wrapping Related products...
KLA12274 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A memory safety vulnerability can be exploited to execute arbitrary code. 2. A code execution vulnerability for...
KLA12238 Multiple vulnerabilities in Oracle VirtualBox
Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service. Below is a complete list of vulnerabilities: 1. Security vulnerability can be exploited to cause denial of service and obtain...
KLA12245 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Visual Studio Code can be...