3996 matches found
KLA20046 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Azure RTOS GUIX Studio can be exploited remotely to execut...
KLA20015 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Peer Connection can be exploited to cause denial of service or execut...
KLA20008 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Heap buffer overflow vulnerability in WebSQL can be exploit...
KLA19258 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, cause denial of service. Below is a complete list of vulnerabilities: 1. Memory safety vulnerability can be exploited to execute...
KLA15733 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, obtain sensitive information, cause denial of service. Below is a complete list of vulnerabilities: 1. Security bypass vulnerabili...
KLA12565 PE vulnerability in Microsoft System Center
Elevation of privilege vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2022-29149 Related products Microsoft-System-Center-Operations-Manager CVE list CVE-2022-29149 unknown KB list Solution Install...
KLA12563 OSI vulnerability in Microsoft Developer Tools
Information disclosure vulnerability was found in Microsoft Developer Tools. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2022-30184 Related products Microsoft-Visual-Studio CVE list CVE-2022-30184 unknown KB list 5015429 5015424 Solution...
KLA12522 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to spoof user interface, obtain sensitive information, bypass security restrictions, gain privileges, cause denial of service, execute arbitrary code. Below is a complete list of...
KLA12441 DoS vulnerability in VMware Workstation
A denial of service vulnerability was found in VMware Workstation. Malicious users can exploit this vulnerability to cause denial of service. Original advisories VMSA-2022-0002 Related products VMware-Workstation VMware-Player CVE list CVE-2022-22938 high Solution Update to the latest version...
KLA12424 Multiple vulnerabilities in Oracle VirtualBox
Security bypass vulnerabilities was found in Oracle VirtualBox. Malicious users can exploit this vulnerability to obtain sensitive information, bypass security restrictions. Original advisories Oracle Critical Patch Update Advisory – January 2022 Related products Oracle-VirtualBox CVE list...
KLA12425 Multiple vulnerabilities in Oracle Java and Oracle GraalVM
Multiple vulnerabilities were found in Oracle Java and GraalVM. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Oracle Critical Patch Update Advisory – January 2022 Related products Oracle-Java-JRE-1.8.x CVE list CVE-2022-21366 high CVE-2022-21277 hi...
KLA12406 RCE vulnerability in Apache Log4j
Remote code execution vulnerability was found in Apache Log4j. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories Fixed in Log4j 2.17.1 Java 8, 2.12.4 Java 7 and 2.3.2 Java 6 Related products Apache-Log4j CVE list CVE-2021-44832 unknown Solution Update t...
KLA12267 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in ANGLE can be exploited to cause denial of service or...
KLA12225 Multiple vulnerabilities in Microsoft System Center
Multiple vulnerabilities were found in Microsoft System Center. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2021-34522 CVE-2021-34464 Related products Windows-Defender CVE list CVE-2021-34522 critical CVE-2021-34464 critical KB list Solution...
KLA12190 Multiple vulnerabilities in VMware Workstation and VMware Player
Multiple out-of-bounds read vulnerabilities were found in VMware Workstation and VMware Player. Malicious users can exploit this vulnerability to obtain sensitive information, cause denial of service. Original advisories VMSA-2021-0009 Related products VMware-Workstation VMware-Player CVE list...
KLA12186 ACE vulnerability in LibreOffice
A code execution vulnerability was found in LibreOffice. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories fileloc extension added to macOS executable denylist Related products LibreOffice CVE list CVE-2021-25632 unknown Solution Update to the latest...
KLA12172 OSI vulnerability in Microsoft Azure
An information disclosure vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2021-31936 Related products Microsoft-Access CVE list CVE-2021-31936 high KB list Solution Install necessary updates from t...
KLA12157 SB vulnerability in Mozilla Thunderbird
A security bypass vulnerability was found in Mozilla Thunderbird. Malicious users can exploit this vulnerability to obtain sensitive information, bypass security restrictions. Original advisories MFSA2021-17 Related products Mozilla-Thunderbird CVE list CVE-2021-29950 critical Solution Update to...
KLA12059 Multiple vulnerabilities in Cisco Jabber
Multiple vulnerabilities were found in Cisco Jabber. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A command injection vulnerability in Cisco Jabber can be...
KLA11619 ACE vulnerability in Microsoft Internet Explorer
A remote code execution vulnerability was found in Microsoft Internet Explorer. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2019-1485 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More...
KLA11717 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Bluetooth component can be exploited remotely via specially designed webpage to execute...
KLA11585 Visual Studio Code Elevation of Privilege Vulnerability
An elevation of privilege vulnerability in Visual Studio Code can be exploited remotely to gain privileges. Original advisories CVE-2019-1414 Related products Microsoft-Visual-Studio CVE list CVE-2019-1414 high KB list Solution Install necessary updates from the KB section, that are listed in you...
KLA11739 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Out of bounds read vulnerability in V8 component can be exploited remotely via special crafted webpage to potentially cause...
KLA11506 Buffer overflow vulnerability in PostgreSQL
Buffer overflow vulnerability was found in PostgreSQL. Malicious users can exploit this vulnerability via special payload during password changing process to cause denial of service. Original advisories PostgreSQL 11.4, 10.9, 9.6.14, 9.5.18, 9.4.23, and 12 Beta 2 Released Exploitation Malware...
KLA11467 Multiple vulnerabilities in Microsoft Exchange Server
Unspecified vulnerability was found in Microsoft Exchange Server. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2019-0858 CVE-2019-0817 Related products Microsoft-Exchange-Server CVE list CVE-2019-0817 high CVE-2019-0858 warning KB list 4491413...
KLA11451 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code and bypass security restrictions. Below is a complete list of vulnerabilities: 1. Buffer overflow vulnerability in IonMonkey JIT compiler can be exploited remote...
KLA11854 ACE vulnerability in Microsoft System Center
A remote code execution vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2017-11937 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details...
KLA11134 ACE vulnerability in Adobe Shockwave Player
A memory corruption vulnerability was found in Adobe Shockwave Player versions earlier than 12.3.1.201. By exploiting this vulnerability malicious users can execute arbitrary code. Original advisories Security update available for Shockwave Player | APSB17-40 Related products Adobe-Shockwave-Play...
KLA10974 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet Explorer. For details look at KLA10973. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: disable Adobe Flash Player, prevent Adobe FP from...
KLA10741 Denial of service vulnerability in FireBird
Improper commands usage at RDBMS was found in FireBird. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via vectors related to gbak utility. Technical details This vulnerability related to unhandled case exception at...
KLA10625 Code execution vulnerability in Adobe Shockwave Player
An unspecified vulnerability was found in Adobe Shockwave Player. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via an unknown vectors. Original advisories Adobe advisory Related products Adobe-Shockwave-Player CVE list...
KLA10279 DoS vulnerability in iPrint
An unspecified vulnerability was found in Novell iPrint. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via unknown vectors. Original advisories - Related products Novell-iPrint-Client CVE list CVE-2013-3708 warning...
KLA10025 DoS vulnerability in GOM Media Player
An unspecified vulnerability was found in the GOM Media Player. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network at a point related to an unknown application via a specially designed .WAV file. Original advisories N...
KLA10069 DoS vulnerability in Apache Subversion
An assertion failure vulnerability was found in Apache Subversion. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network at a point related to moddavsvn via a specially designed URL. Original advisories Apache bulletin...
KLA10220 OSI vulnerability in Inkscape
A wrong directory reading was found in Inkscape. By exploiting this vulnerability malicious users can obtain sensitive information or possibly conduct other attacks. This vulnerability can be exploited locally via file operations. Original advisories - Related products Inkscape CVE list...
KLA10106 ACE vulnerability in Cisco Secure Desktop
An improperly downloaded files verification vulnerability was found in Cisco Security Desktop. By exploiting this vulnerability malicious users can Execute Arbitrary Code. This vulnerability can be exploited from the network at a point related to Web Install via a specially designed web page...
KLA10286 WLF vulnerability in Orbit Downloader
An argument injection vulnerability was found in Orbit Downloader. By exploiting this vulnerability malicious users can overwrite arbitrary files. This vulnerability can be exploited remotely via a specially designed method call. Original advisories - Exploitation Public exploits exist for this...
KLA10395 LPE vulnerability in WinPcap
Array index errors were found in WinPcap. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally via a specially designed IOCTL request. Original advisories WinPcap changelog Related products WinPcap CVE list CVE-2007-5756 high Solution...
KLA10268 Multiple vulnerabilities in ESET NOD32
Multiple serious vulnerabilities have been found in ESET NOD32. Malicious users can exploit these vulnerabilities to cause denial of service or execute arbitrary code. Below is a complete list of vulnerabilities 1. Division by zero can be exploited remotely via a specially designed packet 2. An...
KLA10270 OSI vulnerability in NetOp
An unspecified vulnerability was found in NetOp. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a specially designed request. Original advisories - Related products NetOp CVE list CVE-2004-0950 warning Solution...
KLA10863 Multiple cross-site scripting (XSS) vulnerabilities in Zimbra Collaboration
Multiple serious vulnerabilities have been found in Zimbra Collaboration. Malicious users can exploit these vulnerabilities to inject arbitrary code. Technical details To exploit this vulnerabilities remote attackers to inject arbitrary web script or HTML via unspecified vectors. Original...
KLA71482 Multiple vulnerabilities in Microsoft Mariner
Multiple vulnerabilities were found in Microsoft Mariner. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, spoof user interface. Below is a complete list of vulnerabilities: 1. An out of bounds write vulnerability in grub can be exploited to exploited...
KLA71456 RCE vulnerability in Microsoft Azure
Race condition vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability remotely to execute arbitrary code. Original advisories CVE-2024-6387 Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such malware is...
KLA70177 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Dawn can be exploited to cause denial of service or execu...
KLA68204 DoS vulnerability in Opera
Type confusion vulnerability was found in Opera. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Opera 110.0.5130.39 Stable update Stable Channel Update for Desktop Exploitation Public exploits exist for this vulnerability. Related products Opera CVE...
KLA67588 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, spoof user interface, gain privileges, perform cross-site scripting attack. Below is a complete list of...
KLA66125 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Type confusion vulnerability in ANGLE can be exploited to cause denial of service. 2. Out of...
KLA65257 ACE vulnerability in Mozilla Firefox ESR
Remote code execution vulnerability was found in Mozilla Firefox ESR. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories MFSA2024-16 Related products Mozilla-Firefox-ESR CVE list CVE-2024-29944 critical Solution Update to the latest version Download...
KLA63619 PE vulnerability in Microsoft Browser
An elevation of privilege vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2024-21388 Exploitation Public exploits exist for this vulnerability. Related products Microsoft-Edge CVE list CVE-2024-21388 high KB...
KLA62829 ACE vulnerability in Microsoft Mariner
A array-bounds overflow vulnerability was found in Microsoft Mariner. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2022-35737 Exploitation Public exploits exist for this vulnerability. Related products CBL-Mariner-2.0 CVE list CVE-2022-35737...