3996 matches found
KLA11446 SB vulnerability in WinSCP
Argument injection vulnerability was found in WinSCP. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories Older Versions Related products WinSCP CVE list CVE-2006-3015 high Solution Update to the latest version Download WinSCP Impacts SB Security...
KLA10339 WLF vulnerability in SpeedProject
A directory traversal vulnerability was found in SpeedProject products. By exploiting this vulnerability malicious users can overwrite local files. This vulnerability can be exploited remotely at a point related to the JAR and ZIP archives. Original advisories - Related products...
KLA10418 ACE vulnerability in eMule
A buffer overflow was found in eMule. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely at a point related to IRC and web-server via a long string. Original advisories - Related products eMule CVE list CVE-2004-1892 high...
KLA91025 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in the DOM: Networking component can be exploited...
KLA82886 DoS vulnerability in Apache Tomcat
Out of bounds memory read vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Denial of Service via invalid HTTP priority header Related products Apache-Tomcat CVE list CVE-2025-31650 critical Solution Update to...
KLA82445 PE vulnerability in Microsoft Windows
An elevation of privilege vulnerability was found in Microsoft Windows. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2025-27732 Related products Microsoft-Windows Microsoft-Windows-Server Microsoft-Windows-10 Microsoft-Windows-Server-2016...
KLA78027 Multiple vulnerabilities in Microsoft Office
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in Microsoft SharePoint can ...
KLA77104 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Azure Database for PostgreSQL Flexible Server Extension...
KLA73912 ACE vulnerability in Mozilla Firefox
Use after free vulnerability was found in Mozilla Firefox ESR. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories MFSA2024-51 Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such malware is...
KLA73904 Multiple vulnerabilities in Microsoft System Center
Multiple vulnerabilities were found in Microsoft System Center. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Configuration Manager can be...
KLA65507 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in...
KLA64089 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, gain privileges, obtain sensitive information, bypass security restrictions, execute arbitrary code. Below is a complete list of...
KLA64090 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, gain privileges, obtain sensitive information, execute arbitrary code, bypass security restrictions. Below is a complete list of...
KLA63867 OSI vulnerability in PostgreSQL
Privilege escalation vulnerability was found in PostgreSQL. Malicious users can exploit this vulnerability to execute arbitrary code, obtain sensitive information, cause denial of service. Original advisories CVE-2024-0985: PostgreSQL non-owner REFRESH MATERIALIZED VIEW CONCURRENTLY executes...
KLA62386 DoS vulnerability in Microsoft System Center
A denial of service vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to cause denial of service. Original advisories CVE-2023-36010 Related products Windows-Defender CVE list CVE-2023-36010 critical KB list Solution Install necessary updates from...
KLA61946 PE vulnerability in Microsoft Browser
An elevation of privilege vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2023-36027 Related products Microsoft-Edge CVE list CVE-2023-36027 high KB list Solution Install necessary updates from the Settings a...
KLA61730 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Blink History can be exploited to cause denial of service...
KLA49379 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service. Below is a complete list of vulnerabilities: 1. Click-jacking vulnerability can be exploited to cause...
KLA48959 SB vulnerability in Microsoft System Center
A security feature bypass vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2023-24934 Related products Windows-Defender CVE list CVE-2023-24934 high KB list Solution Install necessary update...
KLA20226 Multiple vulnerabilities in Microsoft System Center
Multiple vulnerabilities were found in Microsoft System Center. Malicious users can exploit these vulnerabilities to bypass security restrictions, gain privileges. Below is a complete list of vulnerabilities: 1. A security feature bypass vulnerability in Microsoft Defender for Endpoint can be...
KLA15729 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to obtain sensitive information, spoof user interface, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Security UI vulnerability in...
KLA12476 Multiple vulnerabilities in Microsoft Apps
Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A security feature bypass vulnerability in Microsoft Intune Portal for iOS can be...
KLA12420 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to perform cross-site scripting attack, spoof user interface. Below is a complete list of vulnerabilities: 1. Cross-site scripting XSS vulnerability in Microsoft Dynamics 365 Customer...
KLA12446 PE vulnerability in Zoom
Privilege escalation vulnerability was found in Zoom. Malicious users can exploit this vulnerability to gain privileges. Original advisories Zoom Security Bulletin Related products Zoom-MSI CVE list CVE-2021-34412 critical Solution Update to the latest version Download Zoom Impacts PE Privilege...
KLA12256 PE vulnerability in Microsoft System Center
An elevation of privilege vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2021-34471 Related products Microsoft-System-Center-Operations-Manager CVE list CVE-2021-34471 unknown Solution Install necessar...
KLA12244 Microsoft Advisory for Active Directory Certificate Services
Microsoft is aware of PetitPotam which can potentially be used in an attack on Windows domain controllers or other Windows servers.To prevent NTLM Relay Attacks on networks with NTLM enabled, domain administrators must ensure that services that permit NTLM authentication make use of protections...
KLA12185 Multiple vulnerabilities in Mozilla Thunderbird
Security bypass vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit this vulnerabilities to bypass security restrictions. Original advisories MFASA2021-22 Related products Mozilla-Thunderbird CVE list CVE-2021-29957 warning CVE-2021-29956 warning Solution Update to the...
KLA12140 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. An unsigned code execution vulnerability in Azure Sphere can be exploited remotely to execute...
KLA12113 OSI vulnerability in Microsoft SQL Server
An information disclosure vulnerability was found in Microsoft SQL Serverl. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2021-26859 Related products Microsoft-Power-BI CVE list CVE-2021-26859 critical KB list 5001285 5001284 Solution...
KLA12037 Security vulnerability in Microsoft Apps
A security bypass vulnerability was found in Microsoft Apps. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2021-1669 Related products Microsoft-Windows Microsoft-Windows-Server Microsoft-Windows-10 CVE list CVE-2021-1669 critical KB list...
KLA11673 Type confusion vulnerability was found in Adobe Flash Player
Type confusion vulnerability was found in Adobe Flash Player. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories APSB20-06 Related products Adobe-Flash-Player-ActiveX Adobe-Flash-Player-NPAPI Adobe-Flash-Player-PPAPI CVE list CVE-2020-3757 critical...
KLA11576 Spoofing vulnerability in Microsoft Dynamics
A cross-site-scripting XSS vulnerability was found in Microsoft Dynamics. Malicious users can exploit remotely via specially crafted web request to spoof user interface. Original advisories CVE-2019-1375 Related products Microsoft-Dynamics-365 CVE list CVE-2019-1375 warning KB list 4515519 Soluti...
KLA12119 Multiple vulnerabilities in VMware Workstation and Player
Multiple vulnerabilities were found in VMware Workstation and Player. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability can be exploited via special crafted packet...
KLA11761 Multiple vulnerabilities in VLC media player
Multiple vulnerabilities were found in VLC media player. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Integer Underflow vulnerability can be exploited to cause a denial of service; 2. Heap-based buffer over-read...
KLA11497 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player. For details look at KLA11496. Original advisories ADV190015 Related products Microsoft-Windows CVE list KB list 4503308 Solution Install necessary updates from the KB section, that are listed in your Windows Update Windows Upda...
KLA11479 ACE vulnerabilities in Adobe Flash Player
An use-after-free vulnerability was found in Adobe Flash Player. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories APSB19-26 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. Related product...
KLA11480 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player. For details look at KLA11479. Original advisories ADV190012 Related products Microsoft-Windows CVE list KB list 4497932 Solution Install necessary updates from the KB section, that are listed in your Windows Update Windows Upda...
KLA11412 Elevation of Privilege Vulnerability in Microsoft Exchange Server
Unspecified vulnerability was found in Microsoft Exchange server. Malicious users can exploit this vulnerability via specially designed request to gain privileges. Original advisories ADV190007 Related products Microsoft-Exchange-Server CVE list KB list 4471391 4471392 4487052 4345836 Solution...
KLA11888 Multiple vulnerabilties in Microsoft SQL Server
An information disclosure vulnerabilities were found in Microsoft SQL Server. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2018-8527 CVE-2018-8532 CVE-2018-8533 Exploitation Public exploits exist for this vulnerability. Related products...
KLA11596 SB vulnerability in LibreOffice
Use after free vulnerability was found in Structured Storage parser. Malicious users can exploit this vulnerability via writing to recently freed data to bypass security restrictions. Original advisories CVE-2018-10119 Use After Free in Structured Storage parser Related products LibreOffice CVE...
KLA11838 ACE vulnerability in Microsoft Browser
A memory corruption vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2017-0223 Related products Microsoft-Edge CVE list CVE-2017-0223 critical KB list 4016871 Solution Install necessary updates from the...
KLA10938 Information disclosure and bypass security restrictions vulnerability in Foxit Reader
A large out-of-bounds read vulnerability was found in Foxit PDF Reader 8.0.2.805. By exploiting this vulnerability malicious users can possibly obtain sensitive information. In combination with another vulnerability, this one can be used to leak heap memory and in bypassing ASLR. This vulnerabili...
KLA10872 Code execution vulnerability in Microsoft Silverlight
An improper memory objects access was found in Microsoft Silverlight. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed Silverlight application. Original advisories CVE-2016-3367 Related products...
KLA10760 Security bypass vulnerabilities in Google Chrome
An unspecified vulnerability was found in Google Chrome. By exploiting this vulnerability malicious users can bypass same origin policy and sandbox mechanism protection. This vulnerability can be exploited remotely via an unknown vectors. Original advisories Google Chrome releases blog Related...
KLA10484 Interface spoofing vulnerability in McAfee Agent
An unspecified vulnerability was found in McAfee Agent. By exploiting this vulnerability malicious users conduct clicjacking attack. This vulnerability can be exploited remotely via a specially designed web page. Original advisories McAfee bulletin Related products McAfee-Agent CVE list...
KLA10262 PE vulnerability in McAfee
An unspecified vulnerability was found in McAfee products. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally. Original advisories McAfee bulletin Related products McAfee-Host-Intrusion-Prevention McAfee-VirusScan CVE list Solution...
KLA10046 ACE vulnerability in ACDSee PRO
A memory corruption vulnerability was found in the ACDSee Pro. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited at a point related to IDEACDStd.apl. via a specially designed .gif file. Original advisories report Related products...
KLA10126 ACE vulnerability in Connected Backup
An unspecified vulnerability was found in Connected Backup. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network via a specially designed request. Original advisories - Related products Connected-Backup CVE list...
KLA10022 DoS vulnerability in DAEMON Tools
An unspecified vulnerability was found in the DAEMON Tools. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network at a point related to DeviceIoControl via an invalid request. Original advisories NVD Related products...
KLA10096 ACE vulnerability in CAM UnZip
A buffer overflow was found in CAM UnZip. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed ZIP archive. Original advisories - Related products CAM-UnZip CVE list CVE-2006-2161 high Solution Update to...