3996 matches found
KLA20159 PE vulnerability in Microsoft Azure
Elevation of privilege vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2023-21531 Related products Microsoft-Azure CVE list CVE-2023-21531 high KB list Solution Install necessary updates from the KB section, th...
KLA12412 ACE vulnerability in VMware Workstation
Heap overflow vulnerability was found in VMware Workstation. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories VMSA-2022-0001 Related products VMware-Workstation VMware-Player CVE list CVE-2021-22045 critical Solution Update to the latest version Downlo...
KLA62329 ACE vulnerability in Microsoft Mariner
A spoofing vulnerability was found in Microsoft Mariner. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2021-43896 Related products CBL-Mariner-2.0 PowerShell CVE list CVE-2021-43896 warning Solution Install necessary updates from the KB section,...
KLA12344 SUI vulnerability in Microsoft SQL Server
A spoofing vulnerability was found in Microsoft SQL Server. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2021-41372 Related products Microsoft-Power-BI CVE list CVE-2021-41372 critical KB list 5007903 Solution Install necessary updates from the K...
KLA12312 SB vulnerability in Microsoft Apps
A security feature bypass vulnerability was found in Microsoft Apps. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2021-41363 Related products Intune-Management-Extension CVE list CVE-2021-41363 high KB list Solution Install necessary...
KLA12305 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. A memory safety vulnerability can b...
KLA12356 RCE vulnerability in Apple iTunes
Remote code execution vulnerability was found in Apple iTunes U for iOS and iPadOS. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories About the security content of iTunes U 3.8.3 Related products Apple-iTunes CVE list CVE-2021-30862 high Solution Update...
KLA11802 Security vulnerability in Zoom
Security vulnerability was found in Zoom. Malicious users can exploit this vulnerability to obtain sensitive information, bypass security restrictions. Original advisories CVE-2020-11500 Related products Zoom-MSI CVE list CVE-2020-11500 warning Solution Update to the latest version Download Zoom...
KLA11665 SB vulnerability in Microsoft Device
A security feature bypass vulnerability was found in Microsoft Device. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2020-0702 Related products Microsoft-Surface CVE list CVE-2020-0702 warning KB list 4537765 Solution Install necessary...
KLA11643 SB vulnerability in Microsoft Device
A security feature bypass vulnerability was found in Microsoft Device. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2019-1314 Related products Microsoft-Windows Microsoft-Windows-10 CVE list CVE-2019-1314 warning KB list Solution Install...
KLA11657 An elevation of privilege vulnerability in Microsoft Developer Tools
An elevation of privilege vulnerability was found in Microsoft Developer Tools. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2019-1211 Related products Microsoft-Visual-Studio CVE list CVE-2019-1211 warning KB list Solution Install necessary updates...
KLA11797 Security vulnerability in Zoom
Security vulnerability was found in Zoom. Malicious users can exploit this vulnerability to obtain sensitive information, bypass security restrictions, spoof user interface. Original advisories Zoom Security CVE-2018-15715 CVE-2018-15715 Exploitation Malware exists for this vulnerability. Usually...
KLA10937 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet Explorer. For details look at KLA10936. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: disable Adobe Flash Player, prevent Adobe FP from...
KLA10894 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet explorer. For details look at KLA10892. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: disable Adobe Flash Player, prevent Adobe FP from...
KLA10102 OSI vulnerability in Cerberus FTP Server
An unspecified vulnerability was found in the Cerberus FTP Server. By exploiting this vulnerability malicious users can obtain information about user accounts. This vulnerability can be exploited from the network at a point related to SSH auth via login result analysis. Original advisories Cerber...
KLA10155 CI vulnerability in FeedDemon
XSS vulnerability was found in FeedDemon. By exploiting this vulnerability malicious users can inject arbitrary script. This vulnerability can be exploited remotely at a point related to the feed. Original advisories - Related products FeedDemon CVE list CVE-2012-2634 warning Solution Update to...
KLA10085 SUI vulnerability in Avant
An unspecified vulnerability was found in the Avant browser. By exploiting this vulnerability malicious users can spoof the address bar. This vulnerability can be exploited from the network at a point related to opening windows via a specially designed URI. Original advisories Blog record Related...
KLA10127 ACE vulnerability in CoolPreviews
An unspecified vulnerability was found in CoolPreviews. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network via a specially designed link. Original advisories security-assessment advisory Related products CoolPreviews C...
KLA10130 ACE vulnerability in CuteFTP
A buffer overflow was found in CuteFTP. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network via a specially designed server response. Original advisories - Related products CuteFTP-5-XP CVE list CVE-2003-1260 high...
KLA91070 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Tab Groups can be...
KLA91041 Multiple vulnerabilities in Microsoft Apps
Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to spoof user interface, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Microsoft 365 Copilot for Android can be exploited remotely t...
KLA83716 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Out of bounds memory read or write vulnerability can be exploited to cause denial of service. 2. Out of bounds...
KLA81175 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, spoof user interface, inject malicious code. Below is a complete list of vulnerabilities: 1. Out of bound...
KLA78282 Multiple vulnerabilities in Foxit Reader
Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. Use after free vulnerability can be exploited to cause denial of service or...
KLA77114 ACE vulnerability in Microsoft Mariner
Remote code execution vulnerability was found in Microsoft Mariner. Malicious users can exploit this vulnerability to execute arbitrary code, bypass security restrictions. Original advisories CVE-2024-5535 Related products CBL-Mariner-2.0 CVE list CVE-2024-5535 unknown Solution Install necessary...
KLA74037 Multiple vulnerabilities in Oracle VirtualBox
Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Security vulnerability in Core can be exploited to...
KLA73802 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to spoof user interface, bypass security restrictions, perform cross-site scripting attack, execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1...
KLA73578 Multiple vulnerabilities in Foxit Reader
Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. Implementation vulnerability in FoxitPDFReaderUpdater.exe can be exploited to...
KLA73472 RCE vulnerability in Microsoft Office
A remote code execution vulnerability was found in Microsoft Office. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2024-38016 Related products Microsoft-Office-Visio Microsoft-Office CVE list CVE-2024-38016 critical KB list 5002634 Solution...
KLA73521 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions, spoof user interface. Below is a complete list of vulnerabilities: 1. Type confusion vulnerability in V8 ca...
KLA73122 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to execute arbitrary code, perform cross-site scripting attack, cause denial of service, bypass security restrictions, spoof user interface. Below is a complete list of vulnerabilities: 1...
KLA71401 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, execute arbitrary code, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1...
KLA71071 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Out of bounds read vulnerability in WebTransport can be exploited to cause denial of...
KLA71014 PE vulnerabilities in Microsoft Apps
Elevation of privilege vulnerabilities were found in Microsoft Apps. Malicious users can exploit this vulnerabilities to gain privileges. Original advisories CVE-2024-38176 CVE-2024-38164 CVE list CVE-2024-38176 high CVE-2024-38164 critical Solution Install necessary updates from the KB section,...
KLA65125 SUI vulnerability in Microsoft Dynamics
A cross-site-scripting XSS vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2024-21419 Related products Microsoft-Dynamics-365 CVE list CVE-2024-21419 high KB list 5035697 Solution Install necessary...
KLA62089 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, spoof user interface, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Out o...
KLA60567 SB vulnerability in Microsoft System Center
A security feature bypass vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2023-38163 Related products Windows-Defender CVE list CVE-2023-38163 critical KB list Solution Install necessary...
KLA61755 Multiple vulnerabilities in Wireshark
Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in LISP dissector can be exploited to cause denial of service. 2. Denial of service...
KLA19248 PE vulnerability in Microsoft System Center
An elevation of privilege vulnerability was found in Microsoft System Center. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2022-35828 Related products Windows-Defender CVE list CVE-2022-35828 critical KB list Solution Install necessary updates from th...
KLA12275 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A code execution vulnerability for Windows can be exploited to execute arbitrary code. 2. A memory safety...
KLA11567 ACE vulnerability in LibreOffice
Vulnerability related to macros was found in LibreOffice. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2019-9853 Related products LibreOffice CVE list CVE-2019-9853 high Solution Update to the latest version Download LibreOffice Impacts ACE...
KLA11476 PE vulnerability in LibreOffice
Unspecified vulnerability was found in LibreOffice. Malicious users can exploit this vulnerability via hyperlink processing to gain privileges. Original advisories CVE-2019-9847 Executable hyperlink targets executed unconditionally on activation Related products LibreOffice CVE list CVE-2019-9847...
KLA10742 Security bypass vulnerability in Gajim
An unspecified vulnerability was found in Gajim. By exploiting this vulnerability malicious users can modify roster and intercept messages. This vulnerability can be exploited remotely via a specially designed roster-push IQ stanza. Original advisories - Related products Gajim CVE list...
KLA10496 Denial of service vulnerability in Apache Xerces
An unspecified vulnerability was found in Apache Xerces-C. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed XML data. Original advisories Apache bulletin Exploitation Public exploits exist for this...
KLA10273 ACE vulnerabilities in NetworkMiner
An unspecified vulnerability was found in NetworkMiner. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed file. Original advisories Netresec bulletin Related products NetworkMiner CVE list Solution...
KLA10276 DoS vulnerability in Nokia PC Suite
A buffer overflow was found in the Nokia PC Suite. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed MP4 file. Original advisories - Exploitation Public exploits exist for this vulnerability. Related...
KLA10205 ACE vulnerability in IBM Lotus Symphony
Multiple integer overflows were found in IBM Lotus Symphony. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed Symphony document. Original advisories - Related products IBM-Lotus-Symphony CVE list...
KLA10166 ACE vulnerability in FrontRange HEAT
An SQL injection vulnerability was found in FrontRange HEAT. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely at a point related to Call Logging. Original advisories - Related products FrontRange-HEAT CVE list CVE-2009-3642...
KLA10050 SB vulnerability in AVG
An unspecified vulnerability was found in AVG Anti-virus. By exploiting this vulnerability malicious users can bypass security restrictions. This vulnerability can be exploited at a point related to the AVG parsing engine via a specially designed RAR or ZIP archive. Original advisories...
KLA10095 Vulnerability in CA Antivirus WebScan
An nnspecified vulnerability was found in CA Antivirus WebScan. By exploiting this vulnerability malicious users can c cause an undefined impact. This vulnerability can be exploited remotely. Original advisories - Related products CA-eTrust-Antivirus-WebScan-ActiveX-Control CVE list CVE-2006-3977...