3996 matches found
KLA78282 Multiple vulnerabilities in Foxit Reader
Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. Use after free vulnerability can be exploited to cause denial of service or...
KLA77114 ACE vulnerability in Microsoft Mariner
Remote code execution vulnerability was found in Microsoft Mariner. Malicious users can exploit this vulnerability to execute arbitrary code, bypass security restrictions. Original advisories CVE-2024-5535 Related products CBL-Mariner-2.0 CVE list CVE-2024-5535 unknown Solution Install necessary...
KLA74055 Multiple vulnerabilities in Microsoft Dynamics
Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Dataverse can be exploited remotely t...
KLA74037 Multiple vulnerabilities in Oracle VirtualBox
Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Security vulnerability in Core can be exploited to...
KLA73802 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to spoof user interface, bypass security restrictions, perform cross-site scripting attack, execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1...
KLA73578 Multiple vulnerabilities in Foxit Reader
Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. Implementation vulnerability in FoxitPDFReaderUpdater.exe can be exploited to...
KLA73472 RCE vulnerability in Microsoft Office
A remote code execution vulnerability was found in Microsoft Office. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2024-38016 Related products Microsoft-Office-Visio Microsoft-Office CVE list CVE-2024-38016 critical KB list 5002634 Solution...
KLA71071 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Out of bounds read vulnerability in WebTransport can be exploited to cause denial of...
KLA65125 SUI vulnerability in Microsoft Dynamics
A cross-site-scripting XSS vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2024-21419 Related products Microsoft-Dynamics-365 CVE list CVE-2024-21419 high KB list 5035697 Solution Install necessary...
KLA62089 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, spoof user interface, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Out o...
KLA62069 OSI vulnerability in Microsoft Developer Tools
An information disclosure vulnerability was found in Microsoft Developer Tools. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2023-36013 Related products PowerShell CVE list CVE-2023-36013 high KB list Solution Install necessary updates fr...
KLA61098 DoS vulnerability in Google Chrome
Type confusion vulnerability was found in Google Chrome. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Stable Channel Update for Desktop Related products Google-Chrome CVE list CVE-2023-5346 critical Solution Update to the latest version Download...
KLA52323 Multiple vulnerabilities in Microsoft Office
A spoofing vulnerability was found in Microsoft Office. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2023-36769 Related products Microsoft-Office CVE list CVE-2023-36769 high KB list 4484434 4022167 Solution Install necessary updates from the KB...
KLA50777 ACE vulnerability in Mozilla Firefox
Use after free vulnerability was found in Mozilla Firefox. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories MFSA2023-26 Related products Mozilla-Firefox CVE list CVE-2023-3600 critical Solution Update to the latest version...
KLA49284 Multiple vulnerabilities in Apple iTunes
An elevation of privilege vulnerabilities were found in Apple iTunes. Malicious users can exploit these vulnerabilities to gain privileges. Original advisories About the security content of iTunes 12.12.9 for Windows Exploitation Malware exists for this vulnerability. Usually such malware is...
KLA61755 Multiple vulnerabilities in Wireshark
Multiple vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in LISP dissector can be exploited to cause denial of service. 2. Denial of service...
KLA20159 PE vulnerability in Microsoft Azure
Elevation of privilege vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2023-21531 Related products Microsoft-Azure CVE list CVE-2023-21531 high KB list Solution Install necessary updates from the KB section, th...
KLA12412 ACE vulnerability in VMware Workstation
Heap overflow vulnerability was found in VMware Workstation. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories VMSA-2022-0001 Related products VMware-Workstation VMware-Player CVE list CVE-2021-22045 critical Solution Update to the latest version Downlo...
KLA62329 ACE vulnerability in Microsoft Mariner
A spoofing vulnerability was found in Microsoft Mariner. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2021-43896 Related products CBL-Mariner-2.0 PowerShell CVE list CVE-2021-43896 warning Solution Install necessary updates from the KB section,...
KLA12344 SUI vulnerability in Microsoft SQL Server
A spoofing vulnerability was found in Microsoft SQL Server. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2021-41372 Related products Microsoft-Power-BI CVE list CVE-2021-41372 critical KB list 5007903 Solution Install necessary updates from the K...
KLA12312 SB vulnerability in Microsoft Apps
A security feature bypass vulnerability was found in Microsoft Apps. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2021-41363 Related products Intune-Management-Extension CVE list CVE-2021-41363 high KB list Solution Install necessary...
KLA12305 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. A memory safety vulnerability can b...
KLA12356 RCE vulnerability in Apple iTunes
Remote code execution vulnerability was found in Apple iTunes U for iOS and iPadOS. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories About the security content of iTunes U 3.8.3 Related products Apple-iTunes CVE list CVE-2021-30862 high Solution Update...
KLA11802 Security vulnerability in Zoom
Security vulnerability was found in Zoom. Malicious users can exploit this vulnerability to obtain sensitive information, bypass security restrictions. Original advisories CVE-2020-11500 Related products Zoom-MSI CVE list CVE-2020-11500 warning Solution Update to the latest version Download Zoom...
KLA11665 SB vulnerability in Microsoft Device
A security feature bypass vulnerability was found in Microsoft Device. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2020-0702 Related products Microsoft-Surface CVE list CVE-2020-0702 warning KB list 4537765 Solution Install necessary...
KLA11643 SB vulnerability in Microsoft Device
A security feature bypass vulnerability was found in Microsoft Device. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2019-1314 Related products Microsoft-Windows Microsoft-Windows-10 CVE list CVE-2019-1314 warning KB list Solution Install...
KLA11657 An elevation of privilege vulnerability in Microsoft Developer Tools
An elevation of privilege vulnerability was found in Microsoft Developer Tools. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2019-1211 Related products Microsoft-Visual-Studio CVE list CVE-2019-1211 warning KB list Solution Install necessary updates...
KLA11797 Security vulnerability in Zoom
Security vulnerability was found in Zoom. Malicious users can exploit this vulnerability to obtain sensitive information, bypass security restrictions, spoof user interface. Original advisories Zoom Security CVE-2018-15715 CVE-2018-15715 Exploitation Malware exists for this vulnerability. Usually...
KLA10937 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet Explorer. For details look at KLA10936. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: disable Adobe Flash Player, prevent Adobe FP from...
KLA10102 OSI vulnerability in Cerberus FTP Server
An unspecified vulnerability was found in the Cerberus FTP Server. By exploiting this vulnerability malicious users can obtain information about user accounts. This vulnerability can be exploited from the network at a point related to SSH auth via login result analysis. Original advisories Cerber...
KLA10155 CI vulnerability in FeedDemon
XSS vulnerability was found in FeedDemon. By exploiting this vulnerability malicious users can inject arbitrary script. This vulnerability can be exploited remotely at a point related to the feed. Original advisories - Related products FeedDemon CVE list CVE-2012-2634 warning Solution Update to...
KLA10085 SUI vulnerability in Avant
An unspecified vulnerability was found in the Avant browser. By exploiting this vulnerability malicious users can spoof the address bar. This vulnerability can be exploited from the network at a point related to opening windows via a specially designed URI. Original advisories Blog record Related...
KLA10127 ACE vulnerability in CoolPreviews
An unspecified vulnerability was found in CoolPreviews. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited from the network via a specially designed link. Original advisories security-assessment advisory Related products CoolPreviews C...
KLA91070 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Tab Groups can be...
KLA91069 ACE vulnerability in Microsoft Dynamics
A remote code execution vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2026-23652 Exploitation CVE list CVE-2026-23652 critical KB list Solution Install necessary updates from the KB section, that ar...
KLA91041 Multiple vulnerabilities in Microsoft Apps
Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to spoof user interface, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Microsoft 365 Copilot for Android can be exploited remotely t...
KLA83531 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability can be exploited remotely to...
KLA81175 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, spoof user interface, inject malicious code. Below is a complete list of vulnerabilities: 1. Out of bound...
KLA81181 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, bypass security restrictions, spoof user interface, inject malicious code. Below is a complete list of vulnerabilities: 1. Use after fr...
KLA79158 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, gain privileges, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Security UI...
KLA78813 DoS vulnerability in Google Chrome
Denial of service vulnerability was found in Google Chrome. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Stable Channel Update for Desktop Exploitation Public exploits exist for this vulnerability. Related products Google-Chrome CVE list...
KLA77342 XSS vulnerability in Apache Tomcat
Cross-site scripting XSS vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to perform cross-site scripting attack. Original advisories Apache Tomcat 9.0 vulnerabilities Exploitation Public exploits exist for this vulnerability. Related products Apache-Tomcat...
KLA73911 ACE vulnerability in Mozilla Firefox ESR
Use after free vulnerability was found in Mozilla Firefox ESR. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories MFSA2024-51 Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such malware is...
KLA73880 DoS vulnerabilities in Google Chrome
Type confusion vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service. Original advisories Stable Channel Update for Desktop Related products Google-Chrome CVE list CVE-2024-9603 warning CVE-2024-9602 warning Solution Update to th...
KLA73804 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, gain privileges, spoof user interface, perform cross-site scripting attack, execute arbitrary code. Below is a complete list of...
KLA71649 PE vulnerability in Microsoft Browser
An elevation of privilege vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2024-43472 Related products Microsoft-Edge CVE list CVE-2024-43472 high Solution Install necessary updates from the Settings and more...
KLA71412 OSI vulnerability in Microsoft Office
Information disclosure vulnerability was found in Microsoft Office. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2024-38206 CVE list CVE-2024-38206 critical Solution Install necessary updates from the KB section, that are listed in your...
KLA71014 PE vulnerabilities in Microsoft Apps
Elevation of privilege vulnerabilities were found in Microsoft Apps. Malicious users can exploit this vulnerabilities to gain privileges. Original advisories CVE-2024-38176 CVE-2024-38164 CVE list CVE-2024-38176 high CVE-2024-38164 critical Solution Install necessary updates from the KB section,...
KLA70449 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in Dawn can be exploited to cause denial of service or execute arbitrary...
KLA70210 SB vulnerability in Apache HTTP Server
Security bypass vulnerability was found in Apache HTTP Server. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories Fixed in Apache HTTP Server 2.4.61 Related products Apache-HTTP-Server CVE list CVE-2024-39884 unknown Solution Update to the latest...