4026 matches found
KLA10051 ACE vulnerability in Axis Camera Control
A buffer overflow vulnerability was found in Axis Camera Control. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network at a point related to AxisCamControl.ocx via a specially designed imagepantilt property value. Origin...
KLA10074 Multiple vulnerabilities in Apple Bonjour
Multiple serious vulnerabilities have been found in Apple Bonjour. Malicious users can exploit these vulnerabilities to spoof DNS responses or cause denial of service Below is a complete list of vulnerabilities 1. Not exploiting random transaction ID’s can be exploited remotely by spoofing DNS...
KLA10125 ACE vulnerability in Compression Plus
A buffer overflow was found in the Compression Plus library. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed ZOO file. Original advisories BeCubed changelog Related products Compression-Plus CVE lis...
KLA10254 ACE vulnerabilities in Adobe Flash Player
Multiple unspecified vulnerabilities were found in Flash Player. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via a specially designed SWF file. Original advisories - Related products Adobe-Flash-Player-ActiveX...
KLA10267 ACE vulnerability in NJStar Word Processor
A buffer overflow was found in NJStar Word Processor. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via NJX documents. Original advisories - Related products NJStar-Chinese-Word-Processor NJStar-Japanese-Word-Processor CV...
KLA10399 Multiple vulnerabilities in Winmail
Multiple serious vulnerabilities have been found in Winmail Server. Malicious users can exploit these vulnerabilities to inject scripts or overwrite local files. Below is a complete list of vulnerabilities 1. A directory traversal can be exploited remotely via a side parameter; 2. An XSS...
KLA10410 ACE vulnerability in ZipGenius
Buffer overflows were found in ZipGenius. By exploiting these vulnerabilities malicious users can execute arbitrary code. This vulnerability can be exploited remotely via specially designed ZIP & ACE archives or UUE, XXE or MIM files with specially designed filenames. Original advisories...
KLA10092 LPE vulnerability in Borland Interbase
A buffer overflow was found in Borland Interbase. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally at a point related to gdslockmgr via specially designed environment variables. Original advisories - Related products Borland-Interba...
KLA78032 Multiple vulnerabilities in Adobe Acrobat Reader
Multiple vulnerabilities were found in Adobe Acrobat Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in media can be exploited t...
KLA77105 Multiple vulnerabilities in Microsoft SQL Server
Multiple vulnerabilities were found in Microsoft SQL Server. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in SQL Server Native Client can be exploited remotely to execute arbitrar...
KLA71709 Multiple vulnerability in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Heap buffer overflow vulnerability in Fonts can be exploited to...
KLA65638 Multiple vulnerabilities in Oracle VirtualBox
Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Information disclosure vulnerability in Core can be exploit...
KLA65530 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Dawn can be exploited to cause denial of service or execute...
KLA62549 DoS vulnerability in Microsoft Browser
Heap buffer overflow vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to cause denial of service. Original advisories CVE-2023-7024 Exploitation Public exploits exist for this vulnerability. Related products Microsoft-Edge CVE list CVE-2023-7024 critica...
KLA61973 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Garbage Collection can be exploited to cause denial of servic...
KLA61568 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, cause denial of service, spoof user interface. Below is a complete list of vulnerabilities: 1. Information disclosure vulnerability ca...
KLA61311 DoS vulnerability in Opera
Use after free vulnerability was found in Opera. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories Opera 102.0.4880.33 Stable update Stable Channel Update for Desktop Related products Opera CVE list CVE-2023-4572 critical Soluti...
KLA60730 Multiple vulnerabilities in Microsoft Apps
Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Autodesk® FBX® SDK 20...
KLA49049 Multiple vulnerabilities in VMware Workstation
Multiple vulnerabilities were found in VMware Workstation. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Information disclosure vulnerability in bluetooth device-sharing functionality can ...
KLA49015 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Out of bounds memory access vulnerability in Service Worker API can be exploited to cause...
KLA49274 DoS vulnerability in Apache Tomcat
Denial of service vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Fixed in Apache Tomcat 8.5.88 Fixed in Apache Tomcat 10.1.8 Related products Apache-Tomcat CVE list CVE-2023-28709 critical Solution Update to...
KLA48837 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in Azure Machine Learning can be exploit...
KLA48635 OSI vulnerability in Apache Tomcat
Information disclosure vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories Fixed in Apache Tomcat 8.5.86 Fixed in Apache Tomcat 10.1.6 Related products Apache-Tomcat CVE list CVE-2023-28708 warning Solution...
KLA20174 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. Security bypass vulnerability in libusrsctp can be exploited...
KLA20171 ACE vulnerability in Foxit PDF Reader
Use after free vulnerability was found in Foxit PDF Reader. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories Security updates available in Foxit PDF Reader 12.1 and Foxit PDF Editor 12.1 Related products Foxit-Reader...
KLA20120 Multiple vulnerabilities in Microsoft Apps
Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Windows Terminal can be exploited remotely to execute...
KLA20115 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Memory safety vulnerability can be exploited to execute...
KLA20043 PE vulnerability in Microsoft Open Source Software
Elevation of privilege vulnerability was found in Microsoft Open Source Software. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2022-38014 Related products Microsoft-Windows CVE list CVE-2022-38014 high KB list Solution Install necessary updates from t...
KLA20101 Multiple vulnerabilities in Foxit PDF Reader
Multiple vulnerabilities were found in Foxit PDF Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in U3D File Parsing can be...
KLA19999 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Out of bounds write vulnerability in V8 can be exploited to cause denial of service. 2. U...
KLA19247 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to execute arbitrary code. Original advisories CVE-2022-34700 CVE-2022-35805 Related products Microsoft-Dynamics-AX Microsoft-Dynamics-365 CVE list CVE-2022-34700 critical CVE-2022-35805...
KLA12546 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, cause denial of service, spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Denia...
KLA12490 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. Use after free in Extensions can be exploited to cause denial of service...
KLA12449 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, execute arbitrary code, bypass security restrictions, cause denial of service. Below is a complete list of vulnerabilities: 1. Elevation ...
KLA12452 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Dynamics GP can be...
KLA12451 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Edge Chromium-based can be exploited...
KLA12424 Multiple vulnerabilities in Oracle VirtualBox
Security bypass vulnerabilities was found in Oracle VirtualBox. Malicious users can exploit this vulnerability to obtain sensitive information, bypass security restrictions. Original advisories Oracle Critical Patch Update Advisory – January 2022 Related products Oracle-VirtualBox CVE list...
KLA12410 DoS vulnerability in Wireshark
Denial of service vulnerability was found in Wireshark. Malicious users can exploit this vulnerability to cause denial of service. Original advisories pcapng file parser crash Related products Wireshark CVE list CVE-2021-4183 high Solution Update to the latest version Download Wireshark Impacts D...
KLA12262 OSI vulnerability in PostgreSQL
A memory disclosure vulnerability was found in PostgreSQL. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories PostgreSQL News Related products PostgreSQL CVE list CVE-2021-3677 unknown Solution Update to the latest version Download PostgreSQL Impac...
KLA12200 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in ASP.NET can be exploited remotely to cause denial o...
KLA12166 Multiple vulnerabilities in Foxit Reader
Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A use after free vulnerability can be exploited remotely via...
KLA12093 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Downloads can be exploited to cause denial of service or...
KLA12025 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. An elevation...
KLA11968 Multiple vulnerabilities in Foxit Reader
Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to . Below is a complete list of vulnerabilities: 1. Out of bounds read vulnerability can be exploited remotely to execute arbitrary code and cause denial of service. 2. Elevation of privilege...
KLA11945 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: 1. Security UI vulnerability in eval function...
KLA11936 ACE vulnerability in Microsoft Dynamics
A remote code execution vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2020-1182 Related products Microsoft-Dynamics-365 CVE list CVE-2020-1182 critical KB list Solution Install necessary updates fro...
KLA12131 ACE vulnerability in PostgreSQL
A code execution vulnerability was found in PostgreSQL. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories PostgreSQL News Related products PostgreSQL CVE list CVE-2020-10733 high KB list 5003228 5003233 5003210 5003165 5003225 Solution Update to the...
KLA11759 Multiple vulnerabilities in VLC media player
Multiple vulnerabilities were found in VLC media player. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Vulnerability related to parsing compressed labels in mDNS messages can be exploited to...
KLA12094 Multiple vulnerabilities in VMware Workstation and Player
Multiple vulnerabilities were found in VMware Workstation and Player. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. A code execution vulnerability in VMware USB arbitration...
KLA11652 A faulting address control vulnerability in IrfanView
A faulting address control vulnerability was found in IrfanView. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories - Related products IrfanView CVE list CVE-2019-16887 high Solution Update to the latest version Download IrfanView Impacts OSI Obtai...