4002 matches found
KLA11928 Microsoft Advisory for GRUB
Security vulnerability was found in the GRand Unified Boot Loader GRUB. The vulnerability could allow for Secure Boot bypass. For more information check the link below. Original advisories ADV200011 Related products Microsoft-Windows-Server Microsoft-Windows-Server-2012 Microsoft-Windows-8...
KLA11637 XSS vulnerability in Microsoft Dynamics
A cross-site-scripting XSS vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2020-0656 Related products Microsoft-Dynamics-365 CVE list CVE-2020-0656 warning KB list Solution Install necessary updates fro...
KLA11544 A PE vulnerability in Microsoft Developer Tools
An elevation of privilege vulnerability was found in Microsoft Developer Tools. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2019-1258 Related products Microsoft-Azure CVE list CVE-2019-1258 high KB list Solution Install necessary updates from the KB...
KLA11837 Microsoft Advisory for Adobe Flash
Original advisories ADV160003 APSB16-18 Related products Adobe-Flash CVE list KB list 3167685 Solution Install necessary updates from the KB section, that are listed in your Windows Update Windows Update usually can be accessed from the Control Panel Affected Products - Adobe Flash Player earlier...
KLA10564 Denial of service vulnerability in OS X
An unspecified vulnerability was found in Apple OS X. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed JPEG. NB: Vendor does not provide CVSS rating. This rating was calculated in Kaspersky Lab and...
KLA10437 RCE vulnerability in AMD Catalyst Control Center
An update spoofing vulnerability was found in AMD CCC. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via spoofing update server. Original advisories Charlie Eriksen AMD advisory Related products AMD-Catalyst-Control-Cente...
KLA10055 ACE & DoS vulnerability in OmniVista 4760
A buffer overflow vulnerability was found in OmniVista. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited from the network via a specially designed request. Original advisories Alcatel bulletin Related...
KLA10150 ACE vulnerability in Exceed
A buffer overflow was found in Hummingbird Exceed. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially formed ActiveX control property. Original advisories - Exploitation Public exploits exist for this...
KLA11447 ACE vulnerability in WinSCP
Interpretation conflict vulnerability was found in WinSCP. Malicious users can exploit this vulnerability remotely to execute arbitrary code. Original advisories - Related products WinSCP CVE list CVE-2007-4909 critical Solution Update to the latest version Download WinSCP Impacts ACE Arbitrary...
KLA91072 Multiple vulnerabilities in Microsoft Apps
Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in M365 Copilot can be exploited remotely to obta...
KLA91068 ACE vulnerability in Microsoft Office
A remote code execution vulnerability was found in Microsoft Office. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2026-45659 Exploitation Public exploits exist for this vulnerability. Related products Microsoft-SharePoint CVE list CVE-2026-4565...
KLA91039 ACE vulnerability in Microsoft SQL Server
A remote code execution vulnerability was found in Microsoft SQL Server. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2026-40370 Exploitation Related products Microsoft-SQL-Server Microsoft-Azure CVE list CVE-2026-40370 critical KB list 5090354...
KLA91043 Multiple vulnerabilities in Apache Tomcat
Multiple vulnerabilities were found in Apache Tomcat. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Security vulnerability can be exploited to bypass security...
KLA91022 Multiple vulnerabilities in Mozilla Thunderbird ESR
Multiple vulnerabilities were found in Mozilla Thunderbird ESR. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in the DOM: Networking component can be...
KLA91032 OSI vulnerabilities in Microsoft Apps
An information disclosure vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions. Original advisories CVE-2026-26129 CVE-2026-26164 Exploitation Related products Microsoft-365 CVE list...
KLA91053 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Codecs can be exploited remotely to execute arbitrary code. ...
KLA91056 DoS vulnerabilities in Wireshark
Denial of service vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in Wireshark dissector can be exploited remotely to cause denial of service. 2...
KLA90986 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, gain privileges, cause denial of service, spoof user interface, execute arbitrary code, read local files. Below is a complete...
KLA91054 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Out of bounds read vulnerability in WebCodecs can be exploited to cause denial of service. 2. Use aft...
KLA86589 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, execute arbitrary code, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. A denial of service...
KLA83529 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, bypass security restrictions, spoof user interface. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability i...
KLA83534 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability can be exploited remotely to cause denial of service. 2...
KLA82402 PE vulnerability in Microsoft SQL Server
An elevation of privilege vulnerability was found in Microsoft SQL Server. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2025-29803 Related products Microsoft-SQL-Server Microsoft-SQL-Server-Management-Studio CVE list CVE-2025-29803 high Solution Insta...
KLA82270 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Inappropriate implementation vulnerability in Custom Tabs can b...
KLA82138 SB vulnerability in Mozilla Firefox
Security vulnerability was found in Mozilla Firefox. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories MFSA2025-19 Related products Mozilla-Firefox CVE list CVE-2025-2857 critical Solution Update to the latest version Download Firefox Impacts SB...
KLA80109 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, bypass security restrictions, cause denial of service, spoof user interface. Below is a complete list of vulnerabilitie...
KLA77602 PE vulnerability in Microsoft Office
An elevation of privilege vulnerability was found in Microsoft Office. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2024-49038 Related products Microsoft-Copilot-Studio CVE list CVE-2024-49038 critical Solution Install necessary updates from the KB...
KLA73989 ACE vulnerability in Mozilla Thunderbird
Use after free vulnerability was found in Mozilla Thunderbird. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories MFSA2024-52 Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usual...
KLA77343 SB vulnerabilities in Apache Tomcat
Security vulnerabilities were found in Apache Tomcat. Malicious users can exploit these vulnerabilities to bypass security restrictions. Original advisories Apache Tomcat 9.0 vulnerabilities Exploitation Public exploits exist for this vulnerability. Related products Apache-Tomcat CVE list...
KLA73801 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. Inappropriate implementation vulnerability in V8 can be exploited to cause denial of service. 2...
KLA73805 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to bypass security restrictions, perform cross-site scripting attack, execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Cross-site scripting...
KLA73440 PE vulnerability in Microsoft Dynamics
An elevation of privilege vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2024-43460 Related products Microsoft-Dynamics-365 CVE list CVE-2024-43460 critical Solution Install necessary updates from the KB...
KLA71413 XSS vulnerability in Microsoft Dynamics
Cross-site-scripting XSS vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2024-38166 CVE list CVE-2024-38166 critical Solution Install necessary updates from the KB section, that are listed in your Windo...
KLA71398 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, spoof user interface, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Out o...
KLA70898 SUI vulnerability in Microsoft Browser
Spoof user interface vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2024-38156 Related products Microsoft-Edge CVE list CVE-2024-38156 high Solution Install necessary updates from the Settings and more...
KLA70406 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, perform cross-site scripting attack, bypass security restrictions, spoof user interface, gain privileges, obtain sensitive information. Bel...
KLA67224 Security vulnerability in PostgreSQL
Security vulnerability was found in PostgreSQL. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories PostgreSQL: CVE-2024-4317: Restrict visibility of “pgstatsext” and “pgstatsextexprs” entries to the table owner Related products PostgreSQL CVE list...
KLA67226 ACE vulnerability in Apple iTunes
File parsing vulnerability was found in iTunes. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories About the security content of iTunes 12.13.2 for Windows Related products Apple-iTunes CVE list CVE-2024-27793 critical Solution...
KLA12510 Spoofing vulnerability in Microsoft SQL Server
A spoofing vulnerability was found in Microsoft SQL Server. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2022-23292 Related products Microsoft-Power-BI CVE list CVE-2022-23292 warning KB list Solution Install necessary updates from the KB section...
KLA12560 DoS vulnerability in Apache Tomcat
Denial of service vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Fixed in Apache Tomcat 8.5.76 Related products Apache-Tomcat CVE list CVE-2022-25762 unknown Solution Update to the latest version Tomcat 8.5...
KLA12444 OSI vulnerability in Zoom
Information disclosure vulnerability was found in Zoom. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories Zoom Security Bulletin Related products Zoom-MSI CVE list CVE-2021-34408 critical Solution Update to the latest version Download Zoom Impacts...
KLA12445 RCE vulnerability in Zoom
Remote code execution vulnerability was found in Zoom. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories Zoom Security Bulletin Related products Zoom-MSI CVE list CVE-2021-33907 critical Solution Update to the latest version Download Zoom Impacts ACE...
KLA12248 Microsoft Advisory (ESU) for Active Directory Certificate Services
Microsoft is aware of PetitPotam which can potentially be used in an attack on Windows domain controllers or other Microsoft Products Extended Security Update.To prevent NTLM Relay Attacks on networks with NTLM enabled, domain administrators must ensure that services that permit NTLM authenticati...
KLA12074 PE vulnerabilities in Microsoft Azure
An elevation of privilege vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Azure IoT CLI extension can be exploited remotely to gain...
KLA12038 SUI vulnerability in Microsoft Azure
A spoofing vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2021-1677 Related products Microsoft-Azure CVE list CVE-2021-1677 high KB list Solution Install necessary updates from the KB section, that are...
KLA11755 Use after free vulnerability in Opera
Use after free vulnerability was found in Opera. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Changelog for Opera 68 Stable Channel Update for Desktop Related products Opera CVE list CVE-2020-6457 high Solution Update to the latest version Downloa...
KLA11426 DoS vulnerability in Microsoft Windows
Unspecified vulnerability were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to bypass security restrictions. Original advisories ADV190005 Related products Microsoft-Windows CVE list KB list 4487011 4487006 4487029 4487021 Solution Install necessary updates from t...
KLA11883 ACE vulnerability in Microsoft Azure
A cross-site-scripting XSS vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2018-8652 Related products Microsoft-Windows Microsoft-Azure CVE list CVE-2018-8652 warning KB list 4480788 Solution Install...
KLA11671 Security vulnerabilities for Adobe
This security update addresses the multiple vulnerabilities, which are described in Adobe Security Bulletin APSB18-19. Original advisories ADV180014 APSB18-19 Related products Adobe-Flash-Player-ActiveX Adobe-Flash-Player-NPAPI Adobe-Flash-Player-PPAPI CVE list ADV180014 unknown KB list 4287903...
KLA10832 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet explorer. For details look at KLA10830. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: disable Adobe Flash Player, prevent Adobe FP from...