3996 matches found
KLA11870 PE vulnerability in Microsoft Browser
An elevation of privilege vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2020-1341 Related products Microsoft-Edge CVE list CVE-2020-1341 unknown KB list Solution Install necessary updates from the Settings...
KLA12117 Use after free vulnerability in VMware Workstation and Player
A use after freevulnerability was found in VMware Workstation and Player. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories VMSA-2019-0009 Related products VMware-Workstation VMware-Player CVE list CVE-2019-5525 critical Solution Update to the latest...
KLA12116 PE vulnerability in VMware Workstation and Player
A DLL hijacking vulnerability was found in VMware Workstation and Player. Malicious users can exploit this vulnerability to gain privileges. Original advisories VMSA-2019-0007 Related products VMware-Workstation VMware-Player CVE list CVE-2019-5526 critical Solution Update to the latest version...
KLA11798 DoS vulnerability in Zoom
DoS vulnerability was found in Zoom. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Zoom Security CVE-2019-13449 CVE-2019-13449 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. Related...
KLA10713 Obsolete Adobe Flash Player for Windows
Obsolete version of Adobe Flash Player can be exploited via multiple vectors Technical details To read further details about this vulnerability you can look at KLA10711 Original advisories Microsoft Advisory Related products Microsoft-Windows CVE list KB list 3119147 Solution Install necessary...
KLA10366 OSI vulnerability in Titan FTP Server
A directory traversal vulnerability was found in Titan FTP Server. By exploiting this vulnerability malicious users can list usernames or home folder. This vulnerability can be exploited remotely via specially designed parameters. Original advisories Changelog Exploitation Public exploits exist f...
KLA10281 OSI vulnerability in OpenVPN
An unspecified vulnerability was found in OpenVPN. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a timing attack. Original advisories - Related products OpenVPN CVE list CVE-2013-2061 warning Solution Update to...
KLA11441 OSI vulnerability in PuTTy
A buffer overflow vulnerability was found in PuTTY. Malicious users can exploit this vulnerability locally to obtain sensitive information. Original advisories PuTTY vulnerability password-not-wiped Related products PuTTY CVE list CVE-2011-4607 warning Solution Update to the latest version Downlo...
KLA10049 CI vulnerability in APC PowerChute
A cross-site scripting vulnerability was found in PowerChute. By exploiting this vulnerability malicious users can inject arbitrary web script. This vulnerability can be exploited from the network at a point related to unknown vectors. Original advisories vulnerability description Related product...
KLA10126 ACE vulnerability in Connected Backup
An unspecified vulnerability was found in Connected Backup. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network via a specially designed request. Original advisories - Related products Connected-Backup CVE list...
KLA10402 ACE vulnerability in Vallen Zipper
A heap overflow was found in Vallen Zipper. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed ZIP file. Original advisories Xforce advisory Related products Vallen-Zipper CVE list KB list Solution...
KLA10328 ACE vulnerability in Skype
An untrusted path was found in Skype. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited locally and possibly remotely via a DLL hijack. Original advisories - Exploitation Public exploits exist for this vulnerability. Related products...
KLA10117 ACE vulnerability in Citrix XenApp Online plug-in
An unspecified vulnerability was found in the Citrix XenApp Online plug-in. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network via a specially designed web site Original advisories Citrix bulletin Related products...
KLA10409 ACE vulnerability in ZipGenius
A buffer overflow was found in ZipGenius. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed ZIP file. Original advisories - Exploitation Public exploits exist for this vulnerability. Related products...
KLA10140 ACE vulnerability in Download Accelerator Plus
A buffer overflow was found in Download Accelerator Plus. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed M3U file. Original advisories - Exploitation Public exploits exist for this vulnerability...
KLA10339 WLF vulnerability in SpeedProject
A directory traversal vulnerability was found in SpeedProject products. By exploiting this vulnerability malicious users can overwrite local files. This vulnerability can be exploited remotely at a point related to the JAR and ZIP archives. Original advisories - Related products...
KLA91025 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in the DOM: Networking component can be exploited...
KLA82886 DoS vulnerability in Apache Tomcat
Out of bounds memory read vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Denial of Service via invalid HTTP priority header Related products Apache-Tomcat CVE list CVE-2025-31650 critical Solution Update to...
KLA81938 SB vulnerability in Google Chrome
Security vulnerability was found in Google Chrome. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories Stable Channel Update for Desktop Related products Google-Chrome CVE list CVE-2025-2783 critical Solution Update to the latest version Download...
KLA78027 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in Microsoft SharePoint can ...
KLA77104 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Azure Database for PostgreSQL Flexible Server Extension...
KLA71043 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code, spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1...
KLA70405 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, perform cross-site scripting attack, bypass security restrictions, spoof user interface, gain privileges, obtain sensitive information...
KLA70178 ACE vulnerability in Microsoft Dynamics
ACE vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2024-35260 CVE list CVE-2024-35260 critical Solution Install necessary updates from the KB section, that are listed in your Windows Update Windows...
KLA68998 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Dawn can be exploited to cause denial of service or execute...
KLA68920 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Security vulnerability when...
KLA67583 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in V8 can be exploited to cause denial of service or execute...
KLA65691 SB vulnerability in Microsoft Browser
A security feature bypass vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2024-29991 Related products Microsoft-Edge CVE list CVE-2024-29991 warning KB list Solution Install necessary updates fro...
KLA65584 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Dawn can be exploited to cause denial of service or execu...
KLA64089 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, gain privileges, obtain sensitive information, bypass security restrictions, execute arbitrary code. Below is a complete list of...
KLA63137 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Out of bounds write vulnerability in V8 can be exploited to cause denial of service. 2. Type confusion...
KLA62070 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code, cause denial of service, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A spoofin...
KLA61730 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Blink History can be exploited to cause denial of service...
KLA49379 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service. Below is a complete list of vulnerabilities: 1. Click-jacking vulnerability can be exploited to cause...
KLA20226 Multiple vulnerabilities in Microsoft System Center
Multiple vulnerabilities were found in Microsoft System Center. Malicious users can exploit these vulnerabilities to bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: 1. A security feature bypass vulnerability in Microsoft Defender for Endpoint can be...
KLA15729 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to obtain sensitive information, spoof user interface, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Security UI vulnerability in...
KLA12420 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to perform cross-site scripting attack, spoof user interface. Below is a complete list of vulnerabilities: 1. Cross-site scripting XSS vulnerability in Microsoft Dynamics 365 Customer...
KLA20161 ACE vulnerability in Microsoft Apps
Remote code execution vulnerability was found in Microsoft Apps. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2023-21780 Related products 3D-Builder CVE list CVE-2023-21780 critical KB list Solution Install necessary updates from the KB section...
KLA12446 PE vulnerability in Zoom
Privilege escalation vulnerability was found in Zoom. Malicious users can exploit this vulnerability to gain privileges. Original advisories Zoom Security Bulletin Related products Zoom-MSI CVE list CVE-2021-34412 critical Solution Update to the latest version Download Zoom Impacts PE Privilege...
KLA12256 PE vulnerability in Microsoft System Center
An elevation of privilege vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2021-34471 Related products Microsoft-System-Center-Operations-Manager CVE list CVE-2021-34471 unknown Solution Install necessar...
KLA12244 Microsoft Advisory for Active Directory Certificate Services
Microsoft is aware of PetitPotam which can potentially be used in an attack on Windows domain controllers or other Windows servers.To prevent NTLM Relay Attacks on networks with NTLM enabled, domain administrators must ensure that services that permit NTLM authentication make use of protections...
KLA12185 Multiple vulnerabilities in Mozilla Thunderbird
Security bypass vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit this vulnerabilities to bypass security restrictions. Original advisories MFASA2021-22 Related products Mozilla-Thunderbird CVE list CVE-2021-29957 warning CVE-2021-29956 warning Solution Update to the...
KLA12140 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. An unsigned code execution vulnerability in Azure Sphere can be exploited remotely to execute...
KLA12113 OSI vulnerability in Microsoft SQL Server
An information disclosure vulnerability was found in Microsoft SQL Serverl. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2021-26859 Related products Microsoft-Power-BI CVE list CVE-2021-26859 critical KB list 5001285 5001284 Solution...
KLA12037 Security vulnerability in Microsoft Apps
A security bypass vulnerability was found in Microsoft Apps. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2021-1669 Related products Microsoft-Windows Microsoft-Windows-Server Microsoft-Windows-10 CVE list CVE-2021-1669 critical KB list...
KLA11673 Type confusion vulnerability was found in Adobe Flash Player
Type confusion vulnerability was found in Adobe Flash Player. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories APSB20-06 Related products Adobe-Flash-Player-ActiveX Adobe-Flash-Player-NPAPI Adobe-Flash-Player-PPAPI CVE list CVE-2020-3757 critical...
KLA11576 Spoofing vulnerability in Microsoft Dynamics
A cross-site-scripting XSS vulnerability was found in Microsoft Dynamics. Malicious users can exploit remotely via specially crafted web request to spoof user interface. Original advisories CVE-2019-1375 Related products Microsoft-Dynamics-365 CVE list CVE-2019-1375 warning KB list 4515519 Soluti...
KLA12119 Multiple vulnerabilities in VMware Workstation and Player
Multiple vulnerabilities were found in VMware Workstation and Player. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability can be exploited via special crafted packet...
KLA11761 Multiple vulnerabilities in VLC media player
Multiple vulnerabilities were found in VLC media player. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Integer Underflow vulnerability can be exploited to cause a denial of service; 2. Heap-based buffer over-read...
KLA11497 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player. For details look at KLA11496. Original advisories ADV190015 Related products Microsoft-Windows CVE list KB list 4503308 Solution Install necessary updates from the KB section, that are listed in your Windows Update Windows Upda...