3996 matches found
KLA11739 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Out of bounds read vulnerability in V8 component can be exploited remotely via special crafted webpage to potentially cause...
KLA11525 SB vulnerability in Microsoft Developer Tools
A security feature bypass vulnerability was found in Windows Defender Application Control Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2019-1167 Related products Windows-Defender CVE list CVE-2019-1167 warning KB list Solution Install...
KLA11506 Buffer overflow vulnerability in PostgreSQL
Buffer overflow vulnerability was found in PostgreSQL. Malicious users can exploit this vulnerability via special payload during password changing process to cause denial of service. Original advisories PostgreSQL 11.4, 10.9, 9.6.14, 9.5.18, 9.4.23, and 12 Beta 2 Released Exploitation Malware...
KLA11467 Multiple vulnerabilities in Microsoft Exchange Server
Unspecified vulnerability was found in Microsoft Exchange Server. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2019-0858 CVE-2019-0817 Related products Microsoft-Exchange-Server CVE list CVE-2019-0817 high CVE-2019-0858 warning KB list 4491413...
KLA11451 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code and bypass security restrictions. Below is a complete list of vulnerabilities: 1. Buffer overflow vulnerability in IonMonkey JIT compiler can be exploited remote...
KLA11854 ACE vulnerability in Microsoft System Center
A remote code execution vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2017-11937 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details...
KLA11134 ACE vulnerability in Adobe Shockwave Player
A memory corruption vulnerability was found in Adobe Shockwave Player versions earlier than 12.3.1.201. By exploiting this vulnerability malicious users can execute arbitrary code. Original advisories Security update available for Shockwave Player | APSB17-40 Related products Adobe-Shockwave-Play...
KLA10974 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet Explorer. For details look at KLA10973. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: disable Adobe Flash Player, prevent Adobe FP from...
KLA10779 Privilege escalation vulnerability at Cogent DataHub
An unspecified vulnerability was found in Cogent DataHub. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally via files manipulations. Original advisories ICS-CERT advisory Exploitation Public exploits exist for this vulnerability...
KLA10741 Denial of service vulnerability in FireBird
Improper commands usage at RDBMS was found in FireBird. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via vectors related to gbak utility. Technical details This vulnerability related to unhandled case exception at...
KLA10625 Code execution vulnerability in Adobe Shockwave Player
An unspecified vulnerability was found in Adobe Shockwave Player. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via an unknown vectors. Original advisories Adobe advisory Related products Adobe-Shockwave-Player CVE list...
KLA10025 DoS vulnerability in GOM Media Player
An unspecified vulnerability was found in the GOM Media Player. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network at a point related to an unknown application via a specially designed .WAV file. Original advisories N...
KLA10069 DoS vulnerability in Apache Subversion
An assertion failure vulnerability was found in Apache Subversion. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network at a point related to moddavsvn via a specially designed URL. Original advisories Apache bulletin...
KLA10220 OSI vulnerability in Inkscape
A wrong directory reading was found in Inkscape. By exploiting this vulnerability malicious users can obtain sensitive information or possibly conduct other attacks. This vulnerability can be exploited locally via file operations. Original advisories - Related products Inkscape CVE list...
KLA10330 Vulnerability in SmartFTP
An unspecified vulnerability was found in SmartFTP. By exploiting this vulnerability malicious users can conduct unknown vulnerability. This vulnerability can be exploited via a specially designed filename. Original advisories SmartFTP changelog Related products SmartFTP CVE list CVE-2010-4871...
KLA10288 ACE vulnerability in PGP Desktop
An untrusted path vulnerability was found in PGP Desktop. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited locally via a DLL hijack. Original advisories - Related products PGP-Desktop CVE list CVE-2010-3397 critical Solution Update t...
KLA10106 ACE vulnerability in Cisco Secure Desktop
An improperly downloaded files verification vulnerability was found in Cisco Security Desktop. By exploiting this vulnerability malicious users can Execute Arbitrary Code. This vulnerability can be exploited from the network at a point related to Web Install via a specially designed web page...
KLA10286 WLF vulnerability in Orbit Downloader
An argument injection vulnerability was found in Orbit Downloader. By exploiting this vulnerability malicious users can overwrite arbitrary files. This vulnerability can be exploited remotely via a specially designed method call. Original advisories - Exploitation Public exploits exist for this...
KLA10047 ACE vulnerability in AOL AIM
Lack of special tag filtering was found in the AIM. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network at a point related to an embedded Internet Explorer server control via a specially designed message. Original...
KLA10270 OSI vulnerability in NetOp
An unspecified vulnerability was found in NetOp. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a specially designed request. Original advisories - Related products NetOp CVE list CVE-2004-0950 warning Solution...
KLA81543 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges, execute arbitrary code, bypass security restrictions, spoof user interface, cause denial of service. Below is a...
KLA79080 PE vulnerability in Microsoft Windows
An elevation of privilege vulnerability was found in Microsoft Windows. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2025-21325 Related products Microsoft-Windows Microsoft-Windows-Server Microsoft-Windows-10 Microsoft-Windows-11 CVE list CVE-2025-213...
KLA73223 Multiple vulnerabilities in Microsoft SQL Server
Multiple vulnerabilities were found in Microsoft SQL Server. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in Microsoft SQL Server...
KLA71482 Multiple vulnerabilities in Microsoft Mariner
Multiple vulnerabilities were found in Microsoft Mariner. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, spoof user interface. Below is a complete list of vulnerabilities: 1. An out of bounds write vulnerability in grub can be exploited to exploited...
KLA71456 RCE vulnerability in Microsoft Azure
Race condition vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability remotely to execute arbitrary code. Original advisories CVE-2024-6387 Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such malware is...
KLA65638 Multiple vulnerabilities in Oracle VirtualBox
Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Information disclosure vulnerability in Core can be exploit...
KLA65334 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in ANGLE can be exploited to...
KLA65227 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Implementation vulnerability in Downloads can be exploited to cause...
KLA65143 ACE vulnerability in Microsoft SQL Server
A remote code execution vulnerability was found in Microsoft SQL Server. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2024-26164 Related products Microsoft-SQL-Server CVE list CVE-2024-26164 critical KB list Solution Install necessary updates...
KLA64752 OSI vulnerability in Mozilla Thunderbird
Information disclosure vulnerability was found in Mozilla Thunderbird. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories MFSA2024-11 Related products Mozilla-Thunderbird CVE list CVE-2024-1936 critical Solution Update to the latest version Downloa...
KLA62930 DoS vulnerability in Google Chrome
Data validation vulnerability was found in Google Chrome. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Chrome Releases: Stable Channel Update for Desktop Related products Google-Chrome CVE list CVE-2024-0333 high Solution Update to the latest...
KLA65335 DoS vulnerability in Wireshark
Denial of service vulnerability was found in Wireshark. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Wireshark • wnpa-sec-2024-05 DOCSIS dissector crash Related products Wireshark CVE list CVE-2024-0211 critical Solution Update to the latest versi...
KLA62391 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in Microsoft Outlook can be exploited remotely ...
KLA62193 ACE vulnerability in Apache Tomcat
A improper input validation vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories Fixed in Apache Tomcat 10.1.16 Related products Apache-Tomcat CVE list CVE-2023-46589 critical Solution Update to the latest version...
KLA61504 Multiple vulnerabilities in Apache HTTP Server
Multiple vulnerabilities were found in Apache HTTP Server. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Out of memory crash vulnerability in HTTP/2 stream memory can be exploited to cause denial of service 2. Out of...
KLA49330 Multiple vulnerabilities in LibreOffice
Multiple vulnerabilities were found in LibreOffice. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Improper Access Control vulnerability in IFrame can be exploited to bypass security...
KLA61756 Multiple vulnerabilities in Wireshark
Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in NetScaler file parser can be exploited to cause denial of service. 2. Denial of servic...
KLA49268 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Edge. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Guest View can be exploited to cause denial of service or...
KLA49166 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in Content proce...
KLA48558 SB vulnerability in Microsoft Apps
A security feature bypass vulnerability was found in Microsoft Apps. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2023-24890 Related products OneDrive-for-iOS CVE list CVE-2023-24890 high KB list Solution Install necessary updates from th...
KLA48552 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in...
KLA48571 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Security UI vulnerability in...
KLA20234 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges, execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in Azur...
KLA20048 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Heap buffer overflow vulnerability in Crashpad can be...
KLA20014 Multiple vulnerabilities in Oracle VirtualBox
Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, cause denial of service. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Core can be exploited...
KLA19244 PE vulnerability in Microsoft Azure
An elevation of privilege vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2022-38007 Related products Microsoft-Azure CVE list CVE-2022-38007 critical KB list Solution Install necessary updates from the KB...
KLA12558 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Out of bounds memory access vulnerability in WebGL can be exploited to cause denial of...
KLA12456 Spoofing vulnerability in Microsoft Azure
A spoofing vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2022-23256 Related products Microsoft-Azure CVE list CVE-2022-23256 warning KB list Solution Install necessary updates from the KB section, that a...
KLA12433 Security UI vulnerability in Microsoft Browser
Spoofing vulnerability was found in Microsoft Edge for Android. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2022-23258 Related products Microsoft-Edge CVE list CVE-2022-23258 warning KB list Solution Install necessary updates from the KB section...
KLA12425 Multiple vulnerabilities in Oracle Java and Oracle GraalVM
Multiple vulnerabilities were found in Oracle Java and GraalVM. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Oracle Critical Patch Update Advisory – January 2022 Related products Oracle-Java-JRE-1.8.x CVE list CVE-2022-21366 high CVE-2022-21277 hi...