3996 matches found
KLA20173 SB vulnerability in Microsoft Browser
A security feature bypass vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2023-21719 Related products Microsoft-Edge CVE list CVE-2023-21719 high KB list Solution Install necessary updates from t...
KLA20170 PE vulnerability in Microsoft Browser
Elevation of privilege vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2023-21795 Related products Microsoft-Edge CVE list CVE-2023-21795 critical KB list Solution Install necessary updates from the Settings...
KLA20199 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Mojo IPC can be exploited to cause denial of service or execute...
KLA20144 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Blink Media can be exploited to cause denial of service o...
KLA20105 OSI vulnerability in Mozilla Thunderbird
Information disclosure vulnerability was found in Mozilla Thunderbird. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories MFSA2022-50 Related products Mozilla-Thunderbird CVE list CVE-2022-45414 critical Solution Update to the latest version Downlo...
KLA12593 Multiple vulnerabilities in LibreOffice
Multiple vulnerabilities were found in LibreOffice. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Security vulnerability can be exploited to bypass security restrictions. 2. Remote code...
KLA12585 OSI vulnerability in Microsoft Dynamics
An information disclosure vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2022-30187 Related products Microsoft-Azure CVE list CVE-2022-30187 warning KB list Solution Install necessary updates...
KLA12518 PE vulnerability in Zoom
Elevation of privilege vulnerability was found in Zoom. Malicious users can exploit this vulnerability to gain privileges. Original advisories Zoom Security Bulletin Related products Zoom-MSI CVE list CVE-2022-22782 high Solution Update to the latest version Download Zoom Impacts ACE Arbitrary co...
KLA12399 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Data validation vulnerability in Mojo can be exploited to bypass securi...
KLA12348 OSI vulnerability in Microsoft Azure
An information disclosure vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2021-42306 Related products Microsoft-Active-Directory Microsoft-Azure CVE list CVE-2021-42306 unknown Solution Install...
KLA12261 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service, gain privileges, spoof user interface. Below is a complete list of vulnerabilities: 1. A type confusion vulnerability in JIT...
KLA12195 PE vulnerability in Microsoft Browser
An elevation of privilege vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2021-33741 Related products Microsoft-Edge CVE list CVE-2021-33741 critical KB list Solution Install necessary updates from the Settin...
KLA12191 Buffer overflow vulnerability in Foxit Reader
A buffer overflow vulnerability was found in Foxit Reader. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories Foxit Security Bulletins Related products Foxit-Reader CVE list CVE-2021-31476 critical Solution Update to the latest...
KLA12162 DoS vulnerability in Mozilla Firefox ESR
A denial of service vulnerability was found in Mozilla Firefox ESR. Malicious users can exploit this vulnerability to cause denial of service. Original advisories MFSA2021-18 Related products Mozilla-Firefox-ESR CVE list CVE-2021-29951 high Solution Update to the latest version Download Firefox E...
KLA11998 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Azure DevOps Server and Team Foundation Services can be...
KLA11795 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Use after free vulnerabilit...
KLA11788 Multiple vulnerabilities in Mpmtp installer
Absolutely unique vulnerability was found in mpmtp system installer. Vulnerability can be exploited different ways, but the easiest way is running installer with /dos switch which leading to a blue screen of death and the need to reinstall Windows due to a failure of the system kernel driver. Thi...
KLA11801 Security vulnerability in Zoom
Security vulnerability was found in Zoom. Malicious users can exploit this vulnerability to bypass security restrictions, gain privileges. Original advisories Zoom Security CVE-2020-11443 CVE-2020-11443 Related products Zoom-MSI CVE list CVE-2020-11443 critical Solution Update to the latest versi...
KLA11740 Use after free vulnerability in Opera
Use after free vulnerability was found in Opera. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Changelog for Opera 63 Stable Channel Update for Desktop Related products Opera CVE list CVE-2019-5869 warning Solution Update to the latest version...
KLA11532 A PE vulnerability in Microsoft Dynamics 365 On-Premise v9
An elevation of privilege vulnerability in Dynamics On-Premise can be exploited remotely via specially crafted XAML script to gain privileges. Original advisories CVE-2019-1229 Related products Microsoft-Dynamics-365 CVE list CVE-2019-1229 high KB list 4508724 Solution Install necessary updates...
KLA11473 Multiple vulnerabilities in VMware Workstation and Fusion
Multiple vulnerabilities were found in VMware Workstation and Fusion. Malicious users can exploit these vulnerabilities to obtain sensitive information. Below is a complete list of vulnerabilities: 1. Out-of-bounds read vulnerability related to vertex shader can be exploited to obtain sensitive...
KLA11468 Multiple Arbitrary code execution vulnerabilities in Adobe Shockwave Player
Multiple Memory Corruption vulnerabilities was found in Adobe Shockwave Player. Malicious users can exploit these vulnerabilities to execute arbitrary code. Original advisories APSB19-20 Related products Adobe-Shockwave-Player CVE list CVE-2019-7098 critical CVE-2019-7099 critical CVE-2019-7100...
KLA10813 Privilege escalation vulnerability in Apple iTunes
An unspecified vulnerability was found in Apple iTunes setup. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally via a DLL hijack. Original advisories Apple advisory Related products Apple-iTunes CVE list CVE-2016-1742 high Solution...
KLA10781 Code execution vulnerability in pidgin-otr plugin.
Use-after-free vulnerability was found in Off-the-Record Messaging OTR pidgin-otr plugin. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via vectors related to the “Authenticate buddy” menu item. Technical details This...
KLA10726 Security bypass vulnerability in Dovetones AD Self Password Reset
An unspecified vulnerability was found in Dovestones AD Self Password Reset. By exploiting this vulnerability malicious users can reset arbitrary passwords. This vulnerability can be exploited remotely via a specially designed request. Technical details This vulnerability related to...
KLA10687 Code execution vulnerability in Adobe Shockwave Player
An unspecified vulnerability was found in Adobe Shockwave Player. By exploiting this vulnerability malicious users can execute arbitrary code. Original advisories Adobe bulletin Related products Adobe-Shockwave-Player CVE list CVE-2015-7649 critical Solution Update to the latest version Get...
KLA10670 Multiple vulnerabilities in Adobe products
Multiple serious vulnerabilities have been found in Adobe products. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Type confusion,...
KLA10522 Multiple vulnerabilities in Citrix CC
Multiple serious vulnerabilities have been found in Citrix Controle Center. Malicious users can exploit these vulnerabilities to execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Improper access restrictions can be exploited remotely via an...
KLA10499 Code execution vulnerability in NSIS
Lack of certificates verification was found in NSIS. By exploiting this vulnerability malicious users execute arbitrary code. This vulnerability can be exploited remotely via a specially designed certificate. Original advisories - Related products Nullsoft-Scriptable-Install-System CVE list...
KLA10454 PE vulnerabilities in MSCVMM
Improper user roles validating was found in MSCVMM. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited remotely via a specially designed credentials. Original advisories MS bulletin CVE-2015-0012 Related products...
KLA10421 DoS vulnerability in JetAudio
An unspecified vulnerability was found in JetAudio. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed OGG file. Original advisories - Exploitation Public exploits exist for this vulnerability. Relate...
KLA10307 LPE vulnerability in RealVNC
An unspecified vulnerability was found in RealVNC. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally via a specially designed argument. Original advisories - Related products RealVNC-Viewer CVE list CVE-2013-6886 high Solution Update...
KLA10204 DoS vulnerability in IBM Lotus Sametime
An unspecified vulnerability was found in the IBM Lotus Sametime. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially desgined AV session. Original advisories - Related products IBM-Lotus-Sametime CVE list...
KLA10218 DoS vulnerability in ImageMagick
An unspecified vulnerability was found in ImageMagick. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed GIF image. Original advisories - Related products ImageMagick CVE list CVE-2013-4298 warning...
KLA10034 Critical Vulnerabilities in Adobe Photoshop Elements
Multiple buffer overflow vulnerabilities have been found in Adobe Photoshop Elements. Malicious users can exploit these vulnerabilities to cause denial of service or execute arbitrary code via specially designed .grd & .abr files. Original advisories Adobe bulletin Exploitation Public exploits...
KLA10427 ACE vulnerability in ICQ
Insecure updates were found in ICQ 7. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely by spoofing the update server. Original advisories SecurityFocus xforce Related products ICQ CVE list CVE-2011-0487 critical Solution...
KLA10110 ACE vulnerability in Citrix
An unspecified vulnerability was found in Citrix products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely at a point related to the ICA graphics packet via a specially designed HTML or ICA document. Original advisories...
KLA10331 SB vulnerability in Snare
A CSRF vulnerability was found in Snare. By exploiting this vulnerability malicious users can hijack administrator auth. This vulnerability can be exploited remotely. Original advisories - Related products Snare-for-Windows Epilog-for-Windows CVE list CVE-2010-2594 high Solution Update to latest...
KLA10422 ACE vulnerability in ooVoo
A buffer overflow was found in ooVoo. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed URI. Original advisories - Exploitation Public exploits exist for this...
KLA10089 DoS vulnerability in Torrent
A buffer overflow was found in the BitTorrent & UTorrent. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. This vulnerability can be exploited remotely via a specially designed .torrent file. Original advisories - Related products...
KLA10224 DoS vulnerability in Ws FTP
An unspecified vulnerability was found in WS FTP. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via unknown vectors. Original advisories - Related products WSFTP-LE CVE list CVE-2007-2213 high Solution Update to latest...
KLA10338 ACE vulnerability in SpeedProject
Buffer overflows were found in SpeedProject products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed ACE file. Original advisories - Related products Speedproject-SpeedCommander Speedproject-Squeez...
KLA10144 DoS vulnerability in Secure FTP
An unspecified vulnerability was found in the Secure FTP Server. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network via a specially designed custom command Original advisories - Related products...
KLA10228 ACE vulnerability in WhatsUp Professional
An SQL injection vulnerability was found in WhatsUp Professional. By exploiting this vulnerability malicious users can execute arbitrary SQL commands. This vulnerability can be exploited remotely at points related to the logon screen. Original advisories - Related products...
KLA11125 Multiple vulnerabilities in Foxit Reader
Multiple buffer overflow vulnerabilities have been found in Foxit Reader. Malicious users can exploit these vulnerabilities locally via specially designed .xps file to cause a denial of service or execute arbitrary code. Technical details This vulnerabilities are related to: 1. “Data from Faultin...
KLA81542 Multiple vulnerabilities in Microsoft Developer Tools
Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: 1. Type confusion vulnerability in .N...
KLA80213 ACE vulnerability in Mozilla Firefox
Memory safety vulnerability was found in Mozilla Firefox. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories MFSA2025-12 Related products Mozilla-Firefox CVE list CVE-2025-1414 high Solution Update to the latest version Download Mozilla Firefox Impacts A...
KLA74646 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Out of bounds memory write vulnerability in Dawn can be exploited to cause denial of service...
KLA74056 OSI vulnerability in Microsoft Azure
Information disclosure vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2024-38204 Related products Microsoft-Azure CVE list CVE-2024-38204 high Solution Install necessary updates from the KB sectio...
KLA71454 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Type confusion vulnerability in V8 can be exploited to cause denial of service. 2. A memo...