3996 matches found
KLA82402 PE vulnerability in Microsoft SQL Server
An elevation of privilege vulnerability was found in Microsoft SQL Server. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2025-29803 Related products Microsoft-SQL-Server Microsoft-SQL-Server-Management-Studio CVE list CVE-2025-29803 high Solution Insta...
KLA82270 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Inappropriate implementation vulnerability in Custom Tabs can b...
KLA82138 SB vulnerability in Mozilla Firefox
Security vulnerability was found in Mozilla Firefox. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories MFSA2025-19 Related products Mozilla-Firefox CVE list CVE-2025-2857 critical Solution Update to the latest version Download Firefox Impacts SB...
KLA81937 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Security vulnerability can be exploited to bypass securi...
KLA81540 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Azure Agent can be exploit...
KLA77602 PE vulnerability in Microsoft Office
An elevation of privilege vulnerability was found in Microsoft Office. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2024-49038 Related products Microsoft-Copilot-Studio CVE list CVE-2024-49038 critical Solution Install necessary updates from the KB...
KLA73989 ACE vulnerability in Mozilla Thunderbird
Use after free vulnerability was found in Mozilla Thunderbird. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories MFSA2024-52 Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usual...
KLA77343 SB vulnerabilities in Apache Tomcat
Security vulnerabilities were found in Apache Tomcat. Malicious users can exploit these vulnerabilities to bypass security restrictions. Original advisories Apache Tomcat 9.0 vulnerabilities Exploitation Public exploits exist for this vulnerability. Related products Apache-Tomcat CVE list...
KLA73801 Multiple vulnerabilities in Google Chrome
Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. Inappropriate implementation vulnerability in V8 can be exploited to cause denial of service. 2...
KLA73805 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to bypass security restrictions, perform cross-site scripting attack, execute arbitrary code, cause denial of service. Below is a complete list of vulnerabilities: 1. Cross-site scripting...
KLA73183 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, perform cross-site scripting attack, spoof user interface. Below is a complete list of vulnerabilities: 1. Type confusion...
KLA73124 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, perform cross-site scripting attack, cause denial of service, bypass security restrictions, spoof user interface. Below is a complete list of vulnerabilities: 1...
KLA71413 XSS vulnerability in Microsoft Dynamics
Cross-site-scripting XSS vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2024-38166 CVE list CVE-2024-38166 critical Solution Install necessary updates from the KB section, that are listed in your Windo...
KLA71397 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to bypass security restrictions, spoof user interface, cause denial of service, obtain sensitive information, execute arbitrary code, perform cross-site scripting attack, gain privileges. Bel...
KLA71398 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, spoof user interface, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. Out o...
KLA70898 SUI vulnerability in Microsoft Browser
Spoof user interface vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2024-38156 Related products Microsoft-Edge CVE list CVE-2024-38156 high Solution Install necessary updates from the Settings and more...
KLA70406 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, perform cross-site scripting attack, bypass security restrictions, spoof user interface, gain privileges, obtain sensitive information. Bel...
KLA67224 Security vulnerability in PostgreSQL
Security vulnerability was found in PostgreSQL. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories PostgreSQL: CVE-2024-4317: Restrict visibility of “pgstatsext” and “pgstatsextexprs” entries to the table owner Related products PostgreSQL CVE list...
KLA12510 Spoofing vulnerability in Microsoft SQL Server
A spoofing vulnerability was found in Microsoft SQL Server. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2022-23292 Related products Microsoft-Power-BI CVE list CVE-2022-23292 warning KB list Solution Install necessary updates from the KB section...
KLA12560 DoS vulnerability in Apache Tomcat
Denial of service vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Fixed in Apache Tomcat 8.5.76 Related products Apache-Tomcat CVE list CVE-2022-25762 unknown Solution Update to the latest version Tomcat 8.5...
KLA12447 DoS vulnerability in Zoom
Denial of service vulnerability was found in Zoom. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Zoom Security Bulletin Related products Zoom-MSI CVE list CVE-2022-22780 unknown Solution Update to the latest version Download Zoom Impacts DoS Denial...
KLA12444 OSI vulnerability in Zoom
Information disclosure vulnerability was found in Zoom. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories Zoom Security Bulletin Related products Zoom-MSI CVE list CVE-2021-34408 critical Solution Update to the latest version Download Zoom Impacts...
KLA12248 Microsoft Advisory (ESU) for Active Directory Certificate Services
Microsoft is aware of PetitPotam which can potentially be used in an attack on Windows domain controllers or other Microsoft Products Extended Security Update.To prevent NTLM Relay Attacks on networks with NTLM enabled, domain administrators must ensure that services that permit NTLM authenticati...
KLA12074 PE vulnerabilities in Microsoft Azure
An elevation of privilege vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Azure IoT CLI extension can be exploited remotely to gain...
KLA12038 SUI vulnerability in Microsoft Azure
A spoofing vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2021-1677 Related products Microsoft-Azure CVE list CVE-2021-1677 high KB list Solution Install necessary updates from the KB section, that are...
KLA11755 Use after free vulnerability in Opera
Use after free vulnerability was found in Opera. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Changelog for Opera 68 Stable Channel Update for Desktop Related products Opera CVE list CVE-2020-6457 high Solution Update to the latest version Downloa...
KLA11426 DoS vulnerability in Microsoft Windows
Unspecified vulnerability were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to bypass security restrictions. Original advisories ADV190005 Related products Microsoft-Windows CVE list KB list 4487011 4487006 4487029 4487021 Solution Install necessary updates from t...
KLA11883 ACE vulnerability in Microsoft Azure
A cross-site-scripting XSS vulnerability was found in Microsoft Azure. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2018-8652 Related products Microsoft-Windows Microsoft-Azure CVE list CVE-2018-8652 warning KB list 4480788 Solution Install...
KLA11671 Security vulnerabilities for Adobe
This security update addresses the multiple vulnerabilities, which are described in Adobe Security Bulletin APSB18-19. Original advisories ADV180014 APSB18-19 Related products Adobe-Flash-Player-ActiveX Adobe-Flash-Player-NPAPI Adobe-Flash-Player-PPAPI CVE list ADV180014 unknown KB list 4287903...
KLA10832 Obsolete Adobe Flash Player for Windows
Microsoft released update to address vulnerabilities in Flash Player for Internet explorer. For details look at KLA10830. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: disable Adobe Flash Player, prevent Adobe FP from...
KLA10332 OSI vulnerability in Snare
Weak keying material was found in Snare Agent. By exploiting this vulnerability malicious users can obtain and modify sensitive information. This vulnerability can be exploited remotely via MITM, at a point related to OpenSSL. Original advisories Snare Agent changelog Related products Snare CVE...
KLA10150 ACE vulnerability in Exceed
A buffer overflow was found in Hummingbird Exceed. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially formed ActiveX control property. Original advisories - Exploitation Public exploits exist for this...
KLA11447 ACE vulnerability in WinSCP
Interpretation conflict vulnerability was found in WinSCP. Malicious users can exploit this vulnerability remotely to execute arbitrary code. Original advisories - Related products WinSCP CVE list CVE-2007-4909 critical Solution Update to the latest version Download WinSCP Impacts ACE Arbitrary...
KLA10316 ACE vulnerability in Sacred
A buffer overflow was found in Sacred. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via unknown vectors. Original advisories - Related products Sacred CVE list CVE-2005-0906 high Solution Update to latest version Impacts...
KLA91072 Multiple vulnerabilities in Microsoft Apps
Multiple vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in M365 Copilot can be exploited remotely to obta...
KLA91067 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Entra ID can be...
KLA91068 ACE vulnerability in Microsoft Office
A remote code execution vulnerability was found in Microsoft Office. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2026-45659 Exploitation Public exploits exist for this vulnerability. Related products Microsoft-SharePoint CVE list CVE-2026-4565...
KLA91061 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in the Audio/Video: Web...
KLA91058 Multiple vulnerabilities in Mozilla Thunderbird
Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, execute arbitrary code, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. Denia...
KLA91059 Multiple vulnerabilities in Mozilla Thunderbird ESR
Multiple vulnerabilities were found in Mozilla Thunderbird ESR. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability...
KLA91045 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions, spoof user interface, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Denial ...
KLA91048 SUI vulnerability in Microsoft Products (ESU)
A spoofing vulnerability was found in Microsoft Microsoft Products Extended Security Update. Malicious users can exploit this vulnerability to perform cross-site scripting attack, spoof user interface. Original advisories CVE-2026-42897 Exploitation Public exploits exist for this vulnerability...
KLA91049 DoS vulnerability in PostgreSQL
Heap buffer overflow vulnerability was found in PostgreSQL. Malicious users can exploit this vulnerability to cause denial of service. Original advisories PostgreSQL pgrestoreattributestats accepts values that cause query planning to read past end of stats array Exploitation Related products...
KLA91039 ACE vulnerability in Microsoft SQL Server
A remote code execution vulnerability was found in Microsoft SQL Server. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories CVE-2026-40370 Exploitation Related products Microsoft-SQL-Server Microsoft-Azure CVE list CVE-2026-40370 critical KB list 5090354...
KLA91043 Multiple vulnerabilities in Apache Tomcat
Multiple vulnerabilities were found in Apache Tomcat. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Security vulnerability can be exploited to bypass security...
KLA91022 Multiple vulnerabilities in Mozilla Thunderbird ESR
Multiple vulnerabilities were found in Mozilla Thunderbird ESR. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in the DOM: Networking component can be...
KLA91032 OSI vulnerabilities in Microsoft Apps
An information disclosure vulnerabilities were found in Microsoft Apps. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions. Original advisories CVE-2026-26129 CVE-2026-26164 Exploitation Related products Microsoft-365 CVE list...
KLA91056 DoS vulnerabilities in Wireshark
Denial of service vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. Denial of service vulnerability in Wireshark dissector can be exploited remotely to cause denial of service. 2...
KLA91054 Multiple vulnerabilities in Opera
Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Out of bounds read vulnerability in WebCodecs can be exploited to cause denial of service. 2. Use aft...
KLA82699 OSI vulnerability in Microsoft Dynamics
An information disclosure vulnerability was found in Microsoft Dynamics. Malicious users can exploit this vulnerability to obtain sensitive information, bypass security restrictions. Original advisories CVE-2025-29817 Related products Power-Automate-for-Desktop CVE list CVE-2025-29817 high Soluti...