Lucene search
K
KasperskyRecent

3996 matches found

Kaspersky
Kaspersky
added 2018/11/20 12:0 a.m.166 views

KLA11366 Obsolete Adobe Flash Player for Windows

Microsoft released update to address vulnerabilities in Flash Player. For details look at KLA11365. Original advisories ADV180030 Related products Microsoft-Windows CVE list KB list 4477029 Solution Install necessary updates from the KB section, that are listed in your Windows Update Windows Upda...

7.3AI score
Exploits0References5
Kaspersky
Kaspersky
added 2018/11/20 12:0 a.m.95 views

KLA11365 ACE vulnerability in Adobe Flash Player

A type confusion vulnerability was found in Adobe Flash Player. Malicious users can exploit this vulnerability remotely to execute arbitrary code. Technical details To update Adobe Flash Player ActiveX detected as Flash.ocx on Windows 8 and higher, use the solution from KLA11366 Original advisori...

10CVSS10AI score0.11702EPSS
Exploits0References6
Kaspersky
Kaspersky
added 2018/11/19 12:0 a.m.129 views

KLA11368 ACE vulnerability in Google Chrome

Use-after-free vulnerability was found in Google Chrome. Malicious users can exploit this vulnerability remotely via specially crafted website to execute arbitrary code and to cause denial of service. Original advisories Stable Channel Update for Desktop Related products Google-Chrome CVE list...

8.8CVSS9.2AI score0.00895EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/11/18 12:0 a.m.35 views

KLA12401 DoS vulnerability in OpenOffice

Arithmetic overflow vulnerability was found in OpenOffice. Malicious users can exploit this vulnerability to cause denial of service. Original advisories CVE-2018-11790 Related products OpenOffice.org CVE list CVE-2018-11790 critical Solution Update to the latest version Download OpenOffice Impac...

7.8CVSS7.8AI score0.01025EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/11/16 12:0 a.m.39 views

KLA11733 Memory vulnerability in Opera

Memory vulnerability was found in Opera. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Changelog for Opera 57 Stable Channel Update for Desktop Related products Opera CVE list CVE-2018-17478 high Solution Update to the latest version Download Opera...

8.8CVSS9AI score0.0112EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2018/11/13 12:0 a.m.946 views

KLA11352 SUI vulnerability in Adobe Flash Player

Out-of-bounds read vulnerability was found in Adobe Flash Player. Malicious users can exploit this vulnerability to spoof user interface. Technical details To update Adobe Flash Player ActiveX detected as Flash.ocx on Windows 8 and higher, install latest updates from Control Panel Original...

7.5CVSS7.7AI score0.0743EPSS
Exploits0References6
Kaspersky
Kaspersky
added 2018/11/13 12:0 a.m.532 views

KLA11349 Multiple vulnerabilities in Microsoft Office

Multiple serious vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges, cause denial of service. Below is a complete list of vulnerabilities: 1. A vulnerability in Microsoft Outloo...

9.3CVSS8.9AI score0.19268EPSS
Exploits1References55
Kaspersky
Kaspersky
added 2018/11/13 12:0 a.m.19 views

KLA11887 XSS vulnerability in Microsoft Azure

A cross-site-scripting XSS vulnerability was found in in MIcrosoft Azure. Malicious users can exploit this vulnerability to spoof user interface. Original advisories CVE-2018-8600 Related products Microsoft-Azure CVE list CVE-2018-8600 high KB list Solution Install necessary updates from the KB...

6.1CVSS6.5AI score0.01983EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/11/13 12:0 a.m.679 views

KLA11356 Obsolete Adobe Flash Player for Windows

Microsoft released update to address vulnerabilities in Flash Player. For details look at KLA11352. Original advisories ADV180025 Related products Microsoft-Windows CVE list KB list 4467694 Solution Install necessary updates from the KB section, that are listed in your Windows Update Windows Upda...

7.3AI score
Exploits0References5
Kaspersky
Kaspersky
added 2018/11/13 12:0 a.m.13 views

KLA11886 Microsoft Advisory for Adobe Flash

Original advisories ADV180025 APSB18-39 Related products Adobe-Flash CVE list KB list 4467694 Solution Install necessary updates from the KB section, that are listed in your Windows Update Windows Update usually can be accessed from the Control Panel Affected Products - Adobe Flash...

7.1AI score
Exploits0References5
Kaspersky
Kaspersky
added 2018/11/13 12:0 a.m.155 views

KLA11898 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products ESU. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges, spoof user interface, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A memory...

10CVSS9.5AI score0.63294EPSS
Exploits10References41
Kaspersky
Kaspersky
added 2018/11/13 12:0 a.m.770 views

KLA11354 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, gain privileges, bypass security restrictions, spoof user interface. Below is a complete list of vulnerabilities: 1. An information...

10CVSS9.2AI score0.63294EPSS
Exploits9References48
Kaspersky
Kaspersky
added 2018/11/13 12:0 a.m.424 views

KLA11351 Multiple vulnerabilities in Microsoft Dynamics

Multiple serious vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Multiple cross site scripting vulnerabilities in Microsoft Dynamics 365 on-premises...

8.8CVSS7AI score0.08719EPSS
Exploits0References8
Kaspersky
Kaspersky
added 2018/11/13 12:0 a.m.366 views

KLA11358 Multiple vulnerabilities in Microsoft Development Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft PowerShell can be exploited...

9.8CVSS8.7AI score0.2264EPSS
Exploits0References15
Kaspersky
Kaspersky
added 2018/11/13 12:0 a.m.418 views

KLA11353 Multiple vulnerabilities in Microsoft Browser

Multiple serious vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges, spoof user interface. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in...

7.6CVSS8.6AI score0.50964EPSS
Exploits3References27
Kaspersky
Kaspersky
added 2018/11/13 12:0 a.m.553 views

KLA11357 Information disclosure Vulnerability in Adobe Acrobat and Reader

Vulnerability related to NTLM SSO hash theft was found in Adobe Acrobat and Reader. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories APSB18-40 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More...

7.5CVSS7.6AI score0.10267EPSS
Exploits0References11
Kaspersky
Kaspersky
added 2018/11/13 12:0 a.m.580 views

KLA11350 PE vulnerability in Microsoft Server Software

Incorrect requests handling vulnerability was found in Microsoft Server Software. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2018-8581 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details...

7.4CVSS8.8AI score0.27355EPSS
Exploits7References4
Kaspersky
Kaspersky
added 2018/11/09 12:0 a.m.455 views

KLA11348 Out of bounds memory access vulnerability in Google Chrome

Out of bounds memory access vulnerability in Google Chrome can be exploited remotely via specially designed website to bypass security restrictions. Original advisories Stable Channel Update for Desktop Related products Google-Chrome CVE list CVE-2018-17478 high Solution Update to the latest...

8.8CVSS9AI score0.0112EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/11/08 12:0 a.m.405 views

KLA11346 Multiple vulnerabilities in VMware products

Multiple serious vulnerabilities were found in VWware Workstation and Fusion. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Uninitialized stack memory vulnerability can be exploited to...

8.8CVSS8.2AI score0.01272EPSS
Exploits1References4
Kaspersky
Kaspersky
added 2018/11/08 12:0 a.m.383 views

KLA11347 SB vulnerability in PostgreSQL

SQL injection vulnerability in PostreSQL. Malicious users can exploit this vulnerability via running arbitrary SQL statements with superuser privileges when a superuser runs pgupgrade on the database or during a pgdump dump/restore cycle to bypass security restrictions. Original advisories...

9.8CVSS8.5AI score0.0515EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/11/06 12:0 a.m.538 views

KLA11345 Guidance for configuring BitLocker to enforce software encryption

Microsoft is aware of reports of vulnerabilities in the hardware encryption of certain self-encrypting drives and recommends customers to use the software only encryption provided by BitLocker Drive Encryption. For the details, see ADV180028 Original advisories ADV180028 Related products...

7.4AI score
Exploits0References4
Kaspersky
Kaspersky
added 2018/10/31 12:0 a.m.514 views

KLA11342 Multiple vulnerabilities in Mozilla Thunderbird

Multiple serious vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to gain privileges, cause denial of service, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Vulnerability related to HTTP Live Stream can be exploited...

9.8CVSS10AI score0.03924EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/10/30 12:0 a.m.513 views

KLA11343 Multiple vulnerabilities in Apple iTunes

Multiple serious vulnerabilities were found in Apple iTunes. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, cause denial of service and perform cross-site scripting attack. Below is a complete list of vulnerabilities: 1. A memory...

8.8CVSS9.5AI score0.34173EPSS
Exploits10References4
Kaspersky
Kaspersky
added 2018/10/23 12:0 a.m.584 views

KLA11341 Multiple vulnerabilities in Mozilla Firefox and Mozilla Firefox ESR

Multiple serious vulnerabilities were found in Mozilla Firefox and Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, gain privileges, read local files, spoof user interface and execute arbitrary code. Below is a comple...

9.8CVSS9.6AI score0.03924EPSS
Exploits0References5
Kaspersky
Kaspersky
added 2018/10/19 12:0 a.m.543 views

KLA11344 ACE vulnerability in Yammer Desktop App

A remote code execution vulnerability was found in Yammer Desktop Application. Malicious users can exploit this vulnerability remotely via specially crafted website to execute arbitrary code. Original advisories CVE-2018-8569 Related products Yammer-Desktop-App CVE list CVE-2018-8569 high KB list...

7.8CVSS8.5AI score0.13335EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/10/16 12:0 a.m.765 views

KLA11340 Multiple vulnerabilities in Oracle Java SE

Multiple serious vulnerabilities were found in Oracle Java SE. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. An unspecified...

9CVSS8.9AI score0.07215EPSS
Exploits2References4
Kaspersky
Kaspersky
added 2018/10/16 12:0 a.m.608 views

KLA11338 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface, cause denial of service and obtain sensitive information. Below is a complete list of vulnerabilities: 1. A sandbox escape vulnerability...

9.6CVSS10AI score0.83898EPSS
Exploits7References4
Kaspersky
Kaspersky
added 2018/10/16 12:0 a.m.527 views

KLA11339 Multiple vulnerabilities in Oracle Virtual Box

Multiple serious vulnerabilities were found in Oracle VM Virtual Box. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service. Below is a complete list of vulnerabilities: 1. Vulnerability in the Oracle VM VirtualBox component of Oracle...

9CVSS7.5AI score0.49268EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/10/10 12:0 a.m.508 views

KLA11337 Multiple DoS vulnerabilities in Wireshark

Multiple serious vulnerabilities were found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. An unspecified vulnerability in the MS-WSP dissector can be exploited remotely via malformed packet trace file to...

7.8CVSS7.1AI score0.11591EPSS
Exploits0References6
Kaspersky
Kaspersky
added 2018/10/09 12:0 a.m.26 views

KLA11888 Multiple vulnerabilties in Microsoft SQL Server

An information disclosure vulnerabilities were found in Microsoft SQL Server. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2018-8527 CVE-2018-8532 CVE-2018-8533 Exploitation Public exploits exist for this vulnerability. Related products...

5.5CVSS5.8AI score0.23373EPSS
Exploits15References5
Kaspersky
Kaspersky
added 2018/10/09 12:0 a.m.507 views

KLA11329 DoS vulnerability in VMware products

Infinite loop vulnerability was found in VMware Workstation and VMware Fusion. Malicious users can exploit this vulnerability to cause denial of service. Technical details This vulnerability can be exploited if 3D-acceleration feature is enabled. It’s enabled by default on Workstation and Fusion...

6.5CVSS6.6AI score0.00426EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2018/10/09 12:0 a.m.647 views

KLA11333 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to bypass security restrictions, gain privileges, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A security feature bypass vulnerabili...

9.3CVSS8.9AI score0.69833EPSS
Exploits17References43
Kaspersky
Kaspersky
added 2018/10/09 12:0 a.m.541 views

KLA11334 Multiple vulnerabilities in Microsoft Office

Multiple serious vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft...

9.3CVSS9.3AI score0.19791EPSS
Exploits0References37
Kaspersky
Kaspersky
added 2018/10/09 12:0 a.m.543 views

KLA11330 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Azure IoT Device Client SDK can be...

9.3CVSS8.7AI score0.15191EPSS
Exploits0References5
Kaspersky
Kaspersky
added 2018/10/09 12:0 a.m.522 views

KLA11331 Multiple vulnerabilities in Microsoft Browsers

Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Chakra Scripting Engine can be exploited...

10CVSS8AI score0.19165EPSS
Exploits0References26
Kaspersky
Kaspersky
added 2018/10/09 12:0 a.m.603 views

KLA11335 Multiple vulnerabilities in Microsoft Exchange Server

Multiple serious vulnerabilities were found in Microsoft Exchange. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft Exchange can be exploited remotely vi...

9.3CVSS8.2AI score0.19629EPSS
Exploits1References7
Kaspersky
Kaspersky
added 2018/10/09 12:0 a.m.92 views

KLA11889 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. An elevation...

9.3CVSS8.9AI score0.69833EPSS
Exploits16References32
Kaspersky
Kaspersky
added 2018/10/05 12:0 a.m.23 views

KLA11797 Security vulnerability in Zoom

Security vulnerability was found in Zoom. Malicious users can exploit this vulnerability to obtain sensitive information, bypass security restrictions, spoof user interface. Original advisories Zoom Security CVE-2018-15715 CVE-2018-15715 Exploitation Malware exists for this vulnerability. Usually...

9.8CVSS9.7AI score0.03487EPSS
Exploits1References5
Kaspersky
Kaspersky
added 2018/10/04 12:0 a.m.505 views

KLA11336 Multiple vulnerabilities in Mozilla Thunderbird

Multiple serious vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Multiple use-after-free vulnerabilities can be exploited...

9.8CVSS9.9AI score0.03662EPSS
Exploits5References3
Kaspersky
Kaspersky
added 2018/10/03 12:0 a.m.559 views

KLA11327 SB vulnerability in Apache Tomcat

A vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability via specially crafted URI to bypass security restrictions. Original advisories Apache Tomcat 7.x vulnerabilities Apache Tomcat 8.x vulnerabilities Apache Tomcat 9.x vulnerabilities Related products...

4.3CVSS5.8AI score0.94494EPSS
Exploits3References5
Kaspersky
Kaspersky
added 2018/10/02 12:0 a.m.533 views

KLA11325 Multiple vulnerabilities in Mozilla Firefox and Mozilla Firefox ESR

Multiple serious vulnerabilities were found in Mozilla Firefox and Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A vulnerability in register allocation in JavaScript c...

9.1CVSS9.8AI score0.13417EPSS
Exploits3References5
Kaspersky
Kaspersky
added 2018/10/01 12:0 a.m.529 views

KLA11324 Multiple vulnerabilities in Adobe Acrobat and Reader

Multiple serious vulnerabilities were found in Adobe Acrobat and Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information and gain privileges. Below is a complete list of vulnerabilities: 1. Multiple out-of-bounds write vulnerabilities can ...

9.3CVSS9AI score0.27967EPSS
Exploits1References10
Kaspersky
Kaspersky
added 2018/09/30 12:0 a.m.506 views

KLA11328 Apache Tomcat 8.0.x end of support

Apache announced the end of support of Apache Tomcat 8.0.x on September, 30. Users should plan to upgrade. Original advisories End of life for Apache Tomcat 8.0.x Related products Apache-Tomcat CVE list Solution Update to the latest version Affected Products - Apache Tomcat 8.0.x...

7.2AI score
Exploits0References3
Kaspersky
Kaspersky
added 2018/09/28 12:0 a.m.521 views

KLA11326 Multiple vulnerabilities in Foxit Reader

Multiple serious vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Multiple out-of-bounds Access/Write/Read vulnerabilities releted to parsing...

8.8CVSS8.9AI score0.09482EPSS
Exploits9References4
Kaspersky
Kaspersky
added 2018/09/21 12:0 a.m.538 views

KLA11321 Multiple vulnerabilities in Mozilla Firefox and Mozilla Firefox ESR

Multiple serious vulnerabilities were found in Mozilla Firefox and Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Vulnerability related to TransportSecurityInfo can be...

7CVSS8.6AI score0.0046EPSS
Exploits1References3
Kaspersky
Kaspersky
added 2018/09/19 12:0 a.m.533 views

KLA11322 Multiple vulnerabilities in Adobe Acrobat and Reader

Multiple serious vulnerabilities were found in Adobe Acrobat and Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An out-of-bounds write vulnerability can be exploited remotely to...

9.8CVSS8.4AI score0.34703EPSS
Exploits0References11
Kaspersky
Kaspersky
added 2018/09/12 12:0 a.m.526 views

KLA11323 Multiple vulnerabilities in Apple iTunes

Multiple serious vulnerabilities were found in Apple iTunes. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, execute arbitrary code, bypass security restrictions, perform cross-site scripting attack, read local files. Below is a complete list of...

8.8CVSS9.6AI score0.10593EPSS
Exploits18References4
Kaspersky
Kaspersky
added 2018/09/11 12:0 a.m.527 views

KLA11317 OSI vulnerabilities in Adobe Flash player

A privilege escalation vulnerability was found in Adobe Flash Player. Malicious users can exploit this vulnerability to obtain sensitive information, gain privileges. Original advisories APSB18-31 Exploitation Malware exists for this vulnerability. Usually such malware is classified as Exploit...

7.5CVSS8.3AI score0.076EPSS
Exploits0References6
Kaspersky
Kaspersky
added 2018/09/11 12:0 a.m.544 views

KLA11320 Obsolete Adobe Flash Player for Windows

Microsoft released update to address vulnerabilities in Flash Player. For details look at KLA11317. Original advisories ADV180023 Related products Microsoft-Windows Microsoft-Windows-Server CVE list KB list 4457146 Solution Install necessary updates from the KB section, that are listed in your...

7.3AI score
Exploits0References6
Kaspersky
Kaspersky
added 2018/09/11 12:0 a.m.583 views

KLA11318 Multiple vulnerabilities in Microsoft Browsers

Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges, bypass security restrictions, spoof user interface. Below is a complete list of vulnerabilities: 1. A memory...

9.3CVSS8.8AI score0.69019EPSS
Exploits5References33
Total number of security vulnerabilities3996