3996 matches found
KLA12607 PE vulnerability in Microsoft System Center
An elevation of privilege vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2022-33640 Related products Microsoft-System-Center-Operations-Manager CVE list CVE-2022-33640 critical KB list Solution Install...
KLA12567 RCE vulnerability in Zoom
Remote code execution vulnerability was found in Zoom. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories Zoom Security Bulletin CVE list CVE-2022-22788 unknown Solution Update to the latest version Download Zoom Impacts ACE Arbitrary code execution...
KLA12570 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Out of bounds memory access vulnerability in WebGL can be exploited to cause denial of service. 2. Us...
KLA19263 OSI vulnerability in Apache Tomcat
Information disclosure vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories Apache Tomcat 10.x vulnerabilities Apache Tomcat 9.x vulnerabilities Apache Tomcat 8.x vulnerabilities Related products Apache-Tomca...
KLA12498 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to spoof user interface, bypass security restrictions, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in iframe...
KLA12469 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in XSLT parameter processing can be exploited to cause...
KLA12460 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, bypass security restrictions, gain privileges, cause denial of service. Below is a complete list of vulnerabilities: 1. Memory...
KLA12452 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Dynamics GP can be...
KLA12197 Multiple vulnerabilities in Microsoft System Center
Multiple vulnerabilities were found in Microsoft System Center. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in Microsoft Defender can be exploited remotely t...
KLA12166 Multiple vulnerabilities in Foxit Reader
Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A use after free vulnerability can be exploited remotely via...
KLA11968 Multiple vulnerabilities in Foxit Reader
Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to . Below is a complete list of vulnerabilities: 1. Out of bounds read vulnerability can be exploited remotely to execute arbitrary code and cause denial of service. 2. Elevation of privilege...
KLA11988 OSI vulnerability in Mozilla Firefox for Android
OSI vulnerability was found in Mozilla Firefox for Android. Malicious users can exploit this vulnerability to obtain sensitive information, bypass security restrictions. Original advisories MFSA2020-27 Related products Mozilla-Firefox-for-Android CVE list CVE-2020-15647 high Solution Update to th...
KLA12097 OSI vulnerability in VMware Workstation and Player
Out of bounds read vulnerability vulnerability was found in VMware Workstation and Player. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories VMSA-2020-0012 Related products VMware-Workstation VMware-Player CVE list CVE-2020-3960 unknown Solution...
KLA12096 Multiple vulnerabilities in VMware Workstation and Player
Multiple vulnerabilities were found in VMware Workstation and Player. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. A memory leak vulnerability in VMCI module can be exploited locally to cause denial of service. 2. A...
KLA12131 ACE vulnerability in PostgreSQL
A code execution vulnerability was found in PostgreSQL. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories PostgreSQL News Related products PostgreSQL CVE list CVE-2020-10733 high KB list 5003228 5003233 5003210 5003165 5003225 Solution Update to the...
KLA12058 SB vulnerability in Cisco Jabber
A security vulnerability was found in. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories Cisco Intelligent Proximity SSL Certificate Validation Vulnerability Related products Cisco-Jabber CVE list CVE-2020-3155 high Solution Update to the latest...
KLA11666 PE vulnerability in Microsoft System Center
An elevation of privilege vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2020-0733 Related products Microsoft-Windows CVE list CVE-2020-0733 warning KB list Solution Install necessary updates from the ...
KLA11565 DoS vulnerability in MS Windows
Unspecified vulnerability was found in MS Windows. Malicious users can exploit this vulnerability to cause denial of service. Original advisories CVE-2019-1255 Related products Microsoft-Windows Windows-Defender CVE list CVE-2019-1255 unknown KB list Solution Install necessary updates from the KB...
KLA11525 SB vulnerability in Microsoft Developer Tools
A security feature bypass vulnerability was found in Windows Defender Application Control Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2019-1167 Related products Windows-Defender CVE list CVE-2019-1167 warning KB list Solution Install...
KLA11821 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Azure Automation can be exploited remotely to gain privileges. 2. An elevation o...
KLA11482 SB vulnerability in Microsoft Dynamics
A security feature bypass vulnerability was found in Microsoft Dynamics On-Premise. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2019-1008 Related products Microsoft-Dynamics-365 CVE list CVE-2019-1008 warning KB list 4494412 4498363...
KLA11600 OSI vulnerability in LibreOffice
Unspecified vulnerability was found in LibreOffice. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2018-10583 Exploitation Public exploits exist for this vulnerability. Related products LibreOffice CVE list CVE-2018-10583 warning Solution...
KLA12054 Multiple vulnerabilities in Cisco Jabber
Multiple vulnerabilities were found in Cisco Jabber. Malicious users can exploit these vulnerabilities to perform cross-site scripting attack, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A cross-site scripting vulnerability in Cisco Jabber Client Framework JCF can be...
KLA11849 ACE vulnerability in Microsoft Developer Tools
A memory corruption vulnerability was found in Microsoft Developer Tools. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2017-11767 Related products ChakraCore CVE list CVE-2017-11767 critical KB list Solution Install necessary updates from the K...
KLA11063 Denial of service vulnerabilities in Wireshark
Multiple serious vulnerabilities have been found in Wireshark version 2.2.7. Malicious users can exploit these vulnerabilities to cause a denial of service. Below is a complete list of vulnerabilities: 1. A stack exhaustion vulnerability in the DAAP dissector can be exploited remotely via a...
KLA11839 Multiple vulnerabilities in Microsoft Exchange Server
Multiple vulnerabilities were found in Microsoft Exchange Server. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Malware Protection Engine can ...
KLA10966 Multiple vulnerabilities in qBittorrent
CVSS: 4.3 Detect date: 03/04/2017 Severity: Warning Description: Multiple serious vulnerabilities have been found in qBittorrent before 3.3.11. Malicious users can exploit these vulnerabilities to cause XSS. Affected products: qBittorrent before 3.3.11 Solution: Update to the latest version...
KLA10820 Privilege escalation vulnerability in Docker
An improper treating of a numeric UID was found in Docker. By exploiting this vulnerability malicious users can escalate privileges. This vulnerability can be exploited locally via a numeric username in the password file. Technical details This vulnerability is related to libcontainer/user/user.g...
KLA10811 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet explorer. For details look at KLA10810. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: disable Adobe Flash Player, prevent Adobe FP from...
KLA10778 arbitrary code execution vulnerability in Autodesk Backburner
An unspecified vulnerability was found in Autodesk Backburner. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed command. Original advisories CERT vulnerability Related...
KLA11454 Multiple vulnerabilities in SeaMonkey
Multiple vulnerabilities were found in SeaMonkey. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions and spoof user interface. Below is a complete list of vulnerabilities: 1. Multiple memory corruption vulnerabilities...
KLA10557 Security bypass vulnerability in Active Directory
Improper logoff handling was found in Microsoft Active Directory. By exploiting this vulnerability malicious users can bypass security restrictions. This vulnerability can be exploited remotely via workstation manipulations. Original advisories MS15-040 CVE-2015-1638 Related products...
KLA10534 Sensitive information obtain vulnerabilities in Siemens SIMATIC STEP
Improper password store and other uncnown vulnerability were found in SIMATIC STEP 7. By exploiting these vulnerabilities malicious users can obtain sensitive information. These vulnerabilities can be exploited remotely via an unknown vectors. Original advisories Siemens advisory Related products...
KLA11444 OSI vulnerability in PuTTY
Information exposure vulnerability was found in PuTTY. Malicious users can exploit this vulnerability locally to obtain sensitive information. Original advisories PuTTY vulnerability private-key-not-wiped-2 Related products PuTTY CVE list CVE-2015-2157 warning Solution Update to the latest versio...
KLA10613 Denial of service vulnerability in Microsoft Service Bus
An unspecified vulnerability was found in Microsoft Service Bus. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed AMQP messages. Original advisories CVE-2014-2814 Related products...
KLA10008 Denial of Service in VideoLAN VLC Media Player
An unspecified vulnerability was found in VLC versions 2.1.3 and earlier. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network through a specially designed .png file. It is caused by codeclibpngplugin.dll. Original...
KLA10608 Security bypass vulnerability in Microsoft Silverlight
An unspecified vulnerability was found in Microsoft Silverlight. By exploiting this vulnerability malicious users can bypass DEP and ASLR protection. This vulnerability can be exploited remotely via an unspecified vectors. Original advisories CVE-2014-0319 Related products Microsoft-Silverlight C...
KLA10217 ACE vulnerability in Ichitaro
An unspecified vulnerability was found in JustSystem Ichitaro. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed document. Original advisories JustSystems bulletin Related products Ichitaro-viewer...
KLA10188 Multiple vulnerabilities in HP Insight Diagnostics
Multiple critical vulnerabilities have been found in HP Insight Diagnostics. Malicious users can exploit these vulnerabilities to inject code or write local files. Below is a complete list of vulnerabilities 1. Improper PHP include restrictions can be exploited via a path parameter; 2. A path...
KLA10227 CI vulnerability in WhatsUp Gold
An XSS vulnerability was found in WhatsUp Gold. By exploiting this vulnerability malicious users can inject arbitrary web script. This vulnerability can be exploited remotely via unspecified vectors. Original advisories - Exploitation Public exploits exist for this vulnerability. Related products...
KLA10232 ACE vulnerability in KMPlayer
An untrusted path vulnerability was found in KMPlayer. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited locally via dll hijacking. Original advisories - Related products KMPlayer CVE list CVE-2012-3841 critical Solution Update to...
KLA10157 ACE vulnerability in Final Draft
A buffer overflow was found in Final Draft. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely a via specially designed file. Original advisories - Exploitation Public exploits exist for this vulnerability. Related products...
KLA10322 RLF & WLF vulnerabilities in Serv-U
A directory traversal was found in Serv-U FTP Server. By exploiting this vulnerability malicious users can read and write arbitrary files. This vulnerability can be exploited remotely via a specially designed path. Original advisories - Exploitation Public exploits exist for this vulnerability...
KLA10031 Critical vulnerabilities in Adobe Flash Media Server
An unspecified vulnerability was found in the Adobe FMS. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network at a point related to an unknown application via memory corruption. Original advisories Adobe bulletin Relate...
KLA10246 LPE vulnerability in Lunascape
An untrusted path vulnerability was found in Lunascape. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally via DLL hijacking. Original advisories - Related products Lunascape CVE list CVE-2011-0452 high Solution Update to latest versi...
KLA10305 ACE vulnerabilities in RealPage Module Upload
A buffer overflow was found in RealPlayer. By exploiting this vulnerability malicious users can execute arbitrary files. This vulnerability can be exploited remotely via a specially designed MP4 file. Original advisories - Related products...
KLA10288 ACE vulnerability in PGP Desktop
An untrusted path vulnerability was found in PGP Desktop. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited locally via a DLL hijack. Original advisories - Related products PGP-Desktop CVE list CVE-2010-3397 critical Solution Update t...
KLA10094 DoS vulnerabilities in CA products
An unspecified vulnerability was found in CA products. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited from the network at a point related to arclib via a specially designed RAR archive. Original...
KLA10164 DoS vulnerability in Foxit Reader
Improper string handling was found in Foxit Reader. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed PDF file. Original advisories - Related products Foxit-Reader...
KLA10151 DoS vulnerability in F-Prot antivirus
An unspecified vulnerability was found in F-Prot antivirus. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely at a point related to the scanning engine. Original advisories Release notes Related products...