3996 matches found
KLA11479 ACE vulnerabilities in Adobe Flash Player
An use-after-free vulnerability was found in Adobe Flash Player. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories APSB19-26 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. Related product...
KLA11480 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player. For details look at KLA11479. Original advisories ADV190012 Related products Microsoft-Windows CVE list KB list 4497932 Solution Install necessary updates from the KB section, that are listed in your Windows Update Windows Upda...
KLA11412 Elevation of Privilege Vulnerability in Microsoft Exchange Server
Unspecified vulnerability was found in Microsoft Exchange server. Malicious users can exploit this vulnerability via specially designed request to gain privileges. Original advisories ADV190007 Related products Microsoft-Exchange-Server CVE list KB list 4471391 4471392 4487052 4345836 Solution...
KLA11888 Multiple vulnerabilties in Microsoft SQL Server
An information disclosure vulnerabilities were found in Microsoft SQL Server. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2018-8527 CVE-2018-8532 CVE-2018-8533 Exploitation Public exploits exist for this vulnerability. Related products...
KLA11596 SB vulnerability in LibreOffice
Use after free vulnerability was found in Structured Storage parser. Malicious users can exploit this vulnerability via writing to recently freed data to bypass security restrictions. Original advisories CVE-2018-10119 Use After Free in Structured Storage parser Related products LibreOffice CVE...
KLA11838 ACE vulnerability in Microsoft Browser
A memory corruption vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2017-0223 Related products Microsoft-Edge CVE list CVE-2017-0223 critical KB list 4016871 Solution Install necessary updates from the...
KLA10938 Information disclosure and bypass security restrictions vulnerability in Foxit Reader
A large out-of-bounds read vulnerability was found in Foxit PDF Reader 8.0.2.805. By exploiting this vulnerability malicious users can possibly obtain sensitive information. In combination with another vulnerability, this one can be used to leak heap memory and in bypassing ASLR. This vulnerabili...
KLA10872 Code execution vulnerability in Microsoft Silverlight
An improper memory objects access was found in Microsoft Silverlight. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed Silverlight application. Original advisories CVE-2016-3367 Related products...
KLA10760 Security bypass vulnerabilities in Google Chrome
An unspecified vulnerability was found in Google Chrome. By exploiting this vulnerability malicious users can bypass same origin policy and sandbox mechanism protection. This vulnerability can be exploited remotely via an unknown vectors. Original advisories Google Chrome releases blog Related...
KLA10484 Interface spoofing vulnerability in McAfee Agent
An unspecified vulnerability was found in McAfee Agent. By exploiting this vulnerability malicious users conduct clicjacking attack. This vulnerability can be exploited remotely via a specially designed web page. Original advisories McAfee bulletin Related products McAfee-Agent CVE list...
KLA10262 PE vulnerability in McAfee
An unspecified vulnerability was found in McAfee products. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally. Original advisories McAfee bulletin Related products McAfee-Host-Intrusion-Prevention McAfee-VirusScan CVE list Solution...
KLA10046 ACE vulnerability in ACDSee PRO
A memory corruption vulnerability was found in the ACDSee Pro. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited at a point related to IDEACDStd.apl. via a specially designed .gif file. Original advisories report Related products...
KLA10022 DoS vulnerability in DAEMON Tools
An unspecified vulnerability was found in the DAEMON Tools. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited from the network at a point related to DeviceIoControl via an invalid request. Original advisories NVD Related products...
KLA10107 ACE vulnerability in Cisco Security Agent
A buffer overflow was found in Cisco Security Agent. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed SMB packet. Original advisories Cisco bulletin Related products Cisco-Security-Agent-CSA/ CVE lis...
KLA10096 ACE vulnerability in CAM UnZip
A buffer overflow was found in CAM UnZip. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed ZIP archive. Original advisories - Related products CAM-UnZip CVE list CVE-2006-2161 high Solution Update to...
KLA10088 ACE vulnerability in BitComet
A buffer overflow was found in the BitComet. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network via a specially designed publisher URI. Original advisories - Related products BitComet-Client CVE list CVE-2006-0339 high...
KLA10311 ACE vulnerability in multiple software
A buffer overflow was found in the WinACE compression utility, which is used in multiple products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed ACE filename. Original advisories - Related product...
KLA10405 ACE vulnerability in Xpand Rally
A format string vulnerability was found in Xpand Rally. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially defined message. Original advisories - Related products Xpand-Rally CVE list CVE-2005-0729 high Solutio...
KLA10294 WLF vulnerability in Pine
A race condition was found in Pine. By exploiting this vulnerability malicious users can overwrite arbitrary files. This vulnerability can be exploited locally via a symlink attack. Original advisories - Related products Pine CVE list CVE-2005-1066 warning Solution Update to latest version Impact...
KLA91046 SUI vulnerability in Microsoft Server Software
A spoofing vulnerability was found in Microsoft Server Software. Malicious users can exploit this vulnerability to perform cross-site scripting attack, spoof user interface. Original advisories CVE-2026-42897 Exploitation Public exploits exist for this vulnerability. Related products...
KLA85525 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, execute arbitrary code, bypass security restrictions, cause denial of service, spoof user interface. Below is a complete list of...
KLA83650 SB vulnerabilities in Google Chrome
Security vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to bypass security restrictions. Original advisories Stable Channel Update for Desktop Exploitation Public exploits exist for this vulnerability. Related products Google-Chrome CVE list...
KLA82885 SB vulnerability in Apache Tomcat
Security vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories Rewrite rule bypass Related products Apache-Tomcat CVE list CVE-2025-31651 critical Solution Update to the latest version Tomcat 9.0 Software...
KLA82403 OSI vulnerability in Microsoft Dynamics
Information disclosure vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to obtain sensitive information, bypass security restrictions. Original advisories CVE-2025-29821 Related products Microsoft-Dynamics-365 CVE list CVE-2025-29821 high KB list 50567...
KLA82399 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, bypass security restrictions, cause denial of service, obtain sensitive information. Below is a complete list of...
KLA74613 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Type confusion vulnerability in V8 can be exploited to cause denial of service. 2. Inappropriate implementation...
KLA74036 Multiple vulnerabilities in Oracle VirtualBox
Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Security vulnerability in Core can be exploited to...
KLA72042 Multiple vulnerability in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in WebAudio can be exploited to cause denial of service or execu...
KLA71400 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, obtain sensitive information, bypass security restrictions, spoof user interface. Below is a complete list of vulnerabilities: 1. Out o...
KLA70479 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, perform cross-site scripting attack, bypass security restrictions, spoof user interface, gain privileges, obtain sensitive information...
KLA66484 Multiple vulnerabilities in Foxit Reader
Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in ComboBox widget can be exploited to cause denial of service or...
KLA66426 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Out of bounds read vulnerability in V8 API can be exploited to cause denial of service. 2...
KLA65599 OSI vulnerability in PuTTY
Information disclosure vulnerability was found in PuTTY. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories oss-security ā CVE-2024-31497: Secret Key Recovery of NIST P-521 Private Keys Through Biased ECDSA Nonces in PuTTY Client Exploitation Publi...
KLA65600 OSI vulnerability in FileZilla
Information disclosure vulnerability was found in FileZilla. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories oss-security ā CVE-2024-31497: Secret Key Recovery of NIST P-521 Private Keys Through Biased ECDSA Nonces in PuTTY Client Exploitation...
KLA64772 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Out of bounds memory access vulnerability in V8 can be exploited to cause denial of service. ...
KLA52661 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, spoof user interface, bypass security restrictions, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Memor...
KLA52662 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Memory corruption vulnerability in IPC CanvasTranslator can be exploited remotely to...
KLA50770 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to spoof user interface. Below is a complete list of vulnerabilities: 1. A cross-site-scripting XSS vulnerability Microsoft Dynamics 365 on-premises can be exploited remotely to spoof user...
KLA50778 ACE vulnerability in Mozilla Firefox ESR
Use after free vulnerability was found in Mozilla Firefox ESR. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories MFSA2023-26 Related products Mozilla-Firefox-ESR CVE list CVE-2023-3600 critical Solution Update to the latest...
KLA50500 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Guest View can be exploited to cause denial of service or...
KLA20106 ACE vulnerability in Cisco Jabber
XMPP message smuggling vulnerability was found in Cisco Jabber. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories Cisco Jabber Client Software Extensible Messaging and Presence Protocol Stanza Smuggling Vulnerability Related products Cisco-Jabber CVE li...
KLA12597 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to spoof user interface, obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Security UI vulnerability in cursor can be exploited to spoo...
KLA12463 Out of bounds write vulnerability in Mozilla Thunderbird
Out of bounds write vulnerability was found in Mozilla Thunderbird. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories MFSA2022-07 Related products Mozilla-Thunderbird CVE list CVE-2022-0566 critical Solution Update to the latest...
KLA12443 RCE vulnerability in Zoom
Remote code execution vulnerability was found in Zoom. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories Zoom Security Bulletin Related products Zoom-MSI CVE list CVE-2021-34420 high Solution Update to the latest version Download Zoom Impacts ACE...
KLA12266 DoS vulnerability in Mozilla Thunderbird
Header splitting vulnerability was found in Mozilla Thunderbird. Malicious users can exploit this vulnerability to cause denial of service. Original advisories MFSA2021-37 Related products Mozilla-Thunderbird CVE list CVE-2021-29991 unknown Solution Update to the latest version Download Thunderbi...
KLA12359 Heap buffer overflow vulnerability in Zoom
Heap buffer overflow vulnerability was found in Zoom. Malicious users can exploit this vulnerability to execute arbitrary code or cause denial of service. Original advisories Zoom Security Bulletin Related products Zoom-MSI CVE list CVE-2021-30480 unknown Solution Update to the latest version...
KLA12222 SUI vulnerability in Microsoft Bing Search
A spoofing vulnerability was found in Microsoft Bing Search. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2021-33753 Related products Microsoft-Edge CVE list CVE-2021-33753 high KB list Solution Install necessary updates from the KB section, that...
KLA12070 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in Microsoft Dataverse can be exploited...
KLA11981 ACE vulnerability in Microsoft Windows
A remote code execution vulnerability was found in Microsoft Windows. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2020-17022 Related products Microsoft-Windows Microsoft-Windows-10 CVE list CVE-2020-17022 critical KB list Solution Install...
KLA11814 Use after free vulnerability in Adobe Flash Player
Use after free vulnerability was found in Adobe Flash Player. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories APSB20-30 Related products Adobe-Flash-Player-ActiveX Adobe-Flash-Player-NPAPI Adobe-Flash-Player-PPAPI CVE list CVE-2020-9633 critical...