Lucene search
K
KasperskyRecent

3996 matches found

Kaspersky
Kaspersky
added 2018/06/12 12:0 a.m.48 views

KLA11892 Multiple vulnerabilties in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. A memory corrupti...

9.3CVSS9.5AI score0.22257EPSS
Exploits0References27
Kaspersky
Kaspersky
added 2018/06/12 12:0 a.m.309 views

KLA11267 Multiple vulnerabilities in Microsoft Office

Multiple serious vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information or execute arbitrary code. Below is a complete list of vulnerabilities: 1. An incorrect handling of requests in Microsoft...

9.3CVSS7.5AI score0.20088EPSS
Exploits0References37
Kaspersky
Kaspersky
added 2018/06/12 12:0 a.m.42 views

KLA11264 Multiple vulnerabilities in Microsoft ChakraCore

Multiple serious vulnerabilities have been found in Microsoft ChakraCore. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. An incorrect handling of objects in memory of Chakra scripting engine can be exploited locally via...

7.6CVSS8.5AI score0.7131EPSS
Exploits2References5
Kaspersky
Kaspersky
added 2018/06/08 12:0 a.m.92 views

KLA11259 DoS vulnerability in Mozilla Firefox and Firefox ESR

A heap buffer overflow vulnerability was found in the Skia library. By exploiting this vulnerability malicious users can cause denial of service via specially crafted SVG file with anti-aliasing turned off. Original advisories Mozilla Foundation Security Advisory 2018-14 Exploitation Public...

8.8CVSS9.6AI score0.07666EPSS
Exploits1References4
Kaspersky
Kaspersky
added 2018/06/07 12:0 a.m.1106 views

KLA11262 Obsolete Adobe Flash player for Windows

Microsoft released update to address vulnerabilities in Flash Player. For details look at KLA11261 Original advisories - Related products Microsoft-Windows CVE list KB list Solution Install necessary updates from the KB section, that are listed in your Windows Update Windows Update usually can be...

7.3AI score
Exploits0References3
Kaspersky
Kaspersky
added 2018/06/07 12:0 a.m.19 views

KLA11671 Security vulnerabilities for Adobe

This security update addresses the multiple vulnerabilities, which are described in Adobe Security Bulletin APSB18-19. Original advisories ADV180014 APSB18-19 Related products Adobe-Flash-Player-ActiveX Adobe-Flash-Player-NPAPI Adobe-Flash-Player-PPAPI CVE list ADV180014 unknown KB list 4287903...

8AI score
Exploits0References7
Kaspersky
Kaspersky
added 2018/06/06 12:0 a.m.434 views

KLA11260 SB vulnerability in Google Chrome

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. Vulnerability related to Content Security Policy can be exploited via a crafted HTML pag...

10CVSS8.7AI score0.25353EPSS
Exploits0References5
Kaspersky
Kaspersky
added 2018/06/06 12:0 a.m.1003 views

KLA11261 Multiple vulnerabilities in Adobe Flash player

Multiple serious vulnerabilities have been found in Adobe Flash player. Malicious users can exploit these vulnerabilities to execute arbitrary code and obtain sensitive information. Below is a complete list of vulnerabilities: 1. Type Confusion vulnerability in Adobe Flash player can be exploited...

10CVSS9AI score0.25353EPSS
Exploits0References6
Kaspersky
Kaspersky
added 2018/05/29 12:0 a.m.551 views

KLA11257 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities possibly to execute arbitrary code, cause denial of service, perform cross-site scripting attacks, obtain sensitive information, spoof user interface, bypass security restrictions...

9.6CVSS9.9AI score0.07666EPSS
Exploits3References3
Kaspersky
Kaspersky
added 2018/05/29 12:0 a.m.64 views

KLA11282 Multiple vulnerabilities in Apple iTunes

Multiple serious vulnerabilities have been found in Apple iTunes. Malicious users can exploit these vulnerabilities to execute arbitrary code, spoof user interface and obtain sensitive information. Below is a complete list of vulnerabilities: 1. An out-of-bounds read vulnerability in CoreGraphics...

8.8CVSS9.2AI score0.53772EPSS
Exploits25References4
Kaspersky
Kaspersky
added 2018/05/28 12:0 a.m.81 views

KLA11355 Use after free vulnerability in VLC media player

An use after free vulnerability was found in VLC media player. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories Security Advisory 1801 Related products VLC-media-player CVE list CVE-2018-11516 high Solution Update to the latest version Download VLC...

8.8CVSS9.3AI score0.03619EPSS
Exploits1References3
Kaspersky
Kaspersky
added 2018/05/24 12:0 a.m.32 views

KLA11600 OSI vulnerability in LibreOffice

Unspecified vulnerability was found in LibreOffice. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2018-10583 Exploitation Public exploits exist for this vulnerability. Related products LibreOffice CVE list CVE-2018-10583 warning Solution...

7.5CVSS7.7AI score0.78683EPSS
Exploits6References3
Kaspersky
Kaspersky
added 2018/05/22 12:0 a.m.83 views

KLA11255 Multiple vulnerabilities in Wireshark

Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. An unspecified vulnerability in LDSS dissector can be exploited remotely via malformed packet trace file to...

7.5CVSS8.4AI score0.03509EPSS
Exploits0References11
Kaspersky
Kaspersky
added 2018/05/21 12:0 a.m.17 views

KLA11640 Multiple vulnerabilities in Microsoft Devices

Microsoft released an advisory and security updates related to a newly discovered class of hardware vulnerabilities. Malicious can exploit these vulnerabilities to obtain sensitive information and bypass security restrictions. Original advisories ADV180012 ADV180013 Related products Windows-RT CV...

7.2AI score
Exploits0References5
Kaspersky
Kaspersky
added 2018/05/21 12:0 a.m.86 views

KLA11258 Multiple vulnerabilities in VMware Workstation and Fusion

Multiple serious vulnerabilities have been found in VMware Workstation and Fusion. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges and cause denial of service. Below is a complete list of vulnerabilities: 1. A speculative store bypass vulnerabili...

7.8CVSS8.2AI score0.60631EPSS
Exploits2References5
Kaspersky
Kaspersky
added 2018/05/21 12:0 a.m.43 views

KLA11030 Speculative Store Bypass and Rogue System Register Read vulnerabilities in Microsoft Surface Products

On January 3, 2018, Microsoft released advisories and security updates related to a recently discovered class of hardware vulnerabilities known as Spectre and Meltdown that affect AMD, ARM, and Intel CPUs. On May 21, 2018, Intel announced the Rogue System Registry Read vulnerability. Also a new...

5.5CVSS7.3AI score0.60631EPSS
Exploits2References2
Kaspersky
Kaspersky
added 2018/05/21 12:0 a.m.46 views

KLA11893 Microsoft Advisory for Microsoft Products (ESU)

Microsoft released an advisory and security updates related to a newly-discovered class of hardware vulnerabilities known as Spectre and Meltdown. Also, a new subclass of speculative execution side channel vulnerabilities known as Speculative Store Bypass SSB has been announced and assigned...

5.5CVSS7.2AI score0.60631EPSS
Exploits2References9
Kaspersky
Kaspersky
added 2018/05/21 12:0 a.m.184 views

KLA11253 Microsoft Advisory for Microsoft Windows

On January 3, 2018, Microsoft released an advisory and security updates related to a newly-discovered class of hardware vulnerabilities known as Spectre and Meltdown involving speculative execution side channels that affect AMD, ARM, and Intel CPUs to varying degrees. On May 21st, a new subclass ...

5.5CVSS7.1AI score0.60631EPSS
Exploits2References15
Kaspersky
Kaspersky
added 2018/05/18 12:0 a.m.677 views

KLA11251 Multiple vulnerabilities in Mozilla Thunderbird

Multiple serious vulnerabilities have been found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service, bypass security restrictions and spoof user interface. Below is a complete list of vulnerabilities: 1. Multiple memo...

9.8CVSS9.8AI score0.21288EPSS
Exploits4References3
Kaspersky
Kaspersky
added 2018/05/16 12:0 a.m.39 views

KLA11731 Multiple vulnerabilities in Opera

Multiple vulnerabilities were found in Opera. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service. Below is a complete list of vulnerabilities: 1. PE vulnerability in extensions components can be exploited to gain privileges. 2. Type confusio...

8.8CVSS9.6AI score0.02422EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2018/05/15 12:0 a.m.72 views

KLA11250 ACE vulnerability in Microsoft PowerPoint

A remote code execution vulnerability was found in Microsoft PowerPoint. Malicious users can exploit this vulnerability via specially crafted file to execute arbitrary code. Original advisories CVE-2018-8176 Related products Microsoft-Office-PowerPoint CVE list CVE-2018-8176 critical KB list...

9.3CVSS9.3AI score0.2208EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/05/15 12:0 a.m.348 views

KLA11256 SB vulnerability in Apache Tomcat

Unspecified vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories Apache Tomcat 8.x Security Vulnerabilities Apache Tomcat 9.x Security Vulnerabilities Apache Tomcat 7.x Security Vulnerabilities Related produc...

9.8CVSS9.1AI score0.21979EPSS
Exploits0References5
Kaspersky
Kaspersky
added 2018/05/14 12:0 a.m.363 views

KLA11252 Multiple vulnerabilities in Adobe Acrobat and Acrobat Reader

Multiple serious vulnerabilities have been found in Adobe Acrobat and Acrobat Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information and bypass security restrictions. Below is a complete list of vulnerabilities: 1. A double free...

10CVSS9.8AI score0.86898EPSS
Exploits5References11
Kaspersky
Kaspersky
added 2018/05/10 12:0 a.m.495 views

KLA11249 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service and gain privileges. Below is a complete list of vulnerabilities: 1. A chain leading to sandbox escape can be exploited remotely ...

8.8CVSS10AI score0.02422EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/05/10 12:0 a.m.87 views

KLA11263 DoS vulnerability in PostgreSQL

A security bypass vulnerability was found in PostgreSQL. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a built-in module “adminpack”. Original advisories PostgreSQL 10.4, 9.6.9, 9.5.13, 9.4.18, and 9.3.23 released!...

9.1CVSS6.4AI score0.04042EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/05/09 12:0 a.m.130 views

KLA11246 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR

Multiple serious vulnerabilities have been found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service, gain privileges, execute arbitrary code, perform XSS attacks and bypass security restrictions. Below is a complete list ...

10CVSS10AI score0.21288EPSS
Exploits6References5
Kaspersky
Kaspersky
added 2018/05/08 12:0 a.m.100 views

KLA11247 Multiple vulnerabilities in Microsoft Browsers

Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Chakra Scripting...

8.8CVSS8.4AI score0.67233EPSS
Exploits14References38
Kaspersky
Kaspersky
added 2018/05/08 12:0 a.m.66 views

KLA11242 Multiple vulnerabilities in Microsoft Exchange Server

Multiple serious vulnerabilities have been found in Microsoft Exchange Server. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information and spoof user interface. Below is a complete list of vulnerabilities: 1. An improper handling of objects in...

10CVSS7.2AI score0.21854EPSS
Exploits0References10
Kaspersky
Kaspersky
added 2018/05/08 12:0 a.m.54 views

KLA11244 ACE vulnerability in Adobe Flash Player

A type confusion vulnerability was found in Adobe Flash Player. This vulnerability can be exploited remotely. By exploiting this vulnerability malicious users can execute arbitrary code. Technical details To update Adobe Flash Player ActiveX detected as Flash.ocx on Windows 8 and higher, install...

10CVSS10AI score0.08991EPSS
Exploits0References5
Kaspersky
Kaspersky
added 2018/05/08 12:0 a.m.284 views

KLA11245 Obsolete Adobe Flash Player for Windows

Microsoft released update to address vulnerabilities in Flash Player. For details look at KLA11244 Original advisories ADV180008 Related products Microsoft-Windows CVE list KB list 4103729 Solution Install necessary updates from the KB section, that are listed in your Windows Update Windows Updat...

7.3AI score
Exploits0References5
Kaspersky
Kaspersky
added 2018/05/08 12:0 a.m.240 views

KLA11248 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to spoof user interface, bypass security restrictions, cause denial of service. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Azure IoT SDK can be...

7.8CVSS7.5AI score0.077EPSS
Exploits0References31
Kaspersky
Kaspersky
added 2018/05/08 12:0 a.m.73 views

KLA11243 Multiple vulnerabilities in Microsoft Office

Multiple serious vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, bypass security restrictions and gain privileges. Below is a complete list of vulnerabilities: 1. An incorrect handling ...

9.3CVSS8.8AI score0.23069EPSS
Exploits0References44
Kaspersky
Kaspersky
added 2018/05/08 12:0 a.m.83 views

KLA11894 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in...

9.3CVSS9.2AI score0.87814EPSS
Exploits42References35
Kaspersky
Kaspersky
added 2018/05/08 12:0 a.m.1168 views

KLA11241 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerabili...

9.3CVSS9.3AI score0.87814EPSS
Exploits25References40
Kaspersky
Kaspersky
added 2018/05/03 12:0 a.m.45 views

KLA11597 DoS vulnerability in Apache Tomcat

Unspecified vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability via improper handing of overflow in the UTF-8 decoder to cause denial of service. Original advisories Apache Tomcat 9.x Security Vulnerabilities Related products Apache-Tomcat CVE list CVE-2018-13...

7.5CVSS7.3AI score0.20599EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/05/02 12:0 a.m.7277 views

KLA11240 Critical vulnerability in 7-Zip

A critical vulnerability was found in 7-Zip. By exploiting this vulnerability malicious users can cause denial or service or execute arbitrary code. This vulnerability can be exploited remotely via a specially crafted RAR archive. NB: This vulnerability does not have any public CVSS rating, so...

7.8CVSS8.3AI score0.04666EPSS
Exploits1References5
Kaspersky
Kaspersky
added 2018/05/02 12:0 a.m.558 views

KLA11239 ACE vulnerability in Windows Host Compute Service Shim

An remote code execution vulnerability was found in Windows Host Compute Service Shim. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially crafted image container. Original advisories CVE-2018-8115 Exploitation...

9.3CVSS9.2AI score0.34381EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2018/04/26 12:0 a.m.750 views

KLA11238 Critical vulnerability in Google Chrome

An use-after-free vulnerability related to Media Cache was found in Google Chrome. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. NB: This vulnerability does not have any public CVSS rating, so rating can be changed by the time. N...

8.8CVSS9.2AI score0.01495EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2018/04/25 12:0 a.m.148 views

KLA11360 ACE vulnerability in UltraISO

A buffer overflow vulnerability was found in UltraISO. Malicious users can exploit this vulnerability to execute arbitrary code. Original advisories UltraISO Revision History Related products UltraISO CVE list CVE-2017-2840 high Solution Update to the latest version Download UltraISO Impacts ACE...

8.8CVSS8.8AI score0.01732EPSS
Exploits2References3
Kaspersky
Kaspersky
added 2018/04/19 12:0 a.m.568 views

KLA11237 Multiple vulnerabilities in Foxit Reader and Foxit PhantomPDF

Multiple serious vulnerabilities have been found in Foxit Reader and Foxit PhantomPDF. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service and execute arbitrary code. Below is a complete list of vulnerabilities: 1. An unsafe DLL loading...

8.8CVSS9.2AI score0.24033EPSS
Exploits12References4
Kaspersky
Kaspersky
added 2018/04/18 12:0 a.m.80 views

KLA11235 SB vulnerability in Microsoft Windows

A security feature bypass vulnerability was found in Microsoft products. This vulnerability can be exploited locally via a specially designed application to bypass security restrictions. Original advisories CVE-2018-1035 Related products Microsoft-Windows-Server Microsoft-Windows-10 CVE list...

5.3CVSS5.7AI score0.01334EPSS
Exploits0References5
Kaspersky
Kaspersky
added 2018/04/18 12:0 a.m.26 views

KLA11596 SB vulnerability in LibreOffice

Use after free vulnerability was found in Structured Storage parser. Malicious users can exploit this vulnerability via writing to recently freed data to bypass security restrictions. Original advisories CVE-2018-10119 Use After Free in Structured Storage parser Related products LibreOffice CVE...

7.8CVSS8.1AI score0.01976EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/04/17 12:0 a.m.2314 views

KLA11234 Multiple vulnerabilities in Oracle Java SE, Java SE Embedded and JRockit

Multiple serious vulnerabilities have been found in Oracle products. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, obtain sensitive information, cause denial of service and perform unspecified attacks. Below is a complete list of...

8.3CVSS7.5AI score0.15141EPSS
Exploits0References6
Kaspersky
Kaspersky
added 2018/04/17 12:0 a.m.124 views

KLA11232 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information, cause denial of service, spoof user interface, gain privileges, execute arbitrary code and perform unspecified attack...

8.8CVSS9.5AI score0.09186EPSS
Exploits4References4
Kaspersky
Kaspersky
added 2018/04/17 12:0 a.m.51 views

KLA11236 Multiple vulnerabilities in Oracle VM VirtualBox

Multiple serious vulnerabilities have been found in Oracle VM VirtualBox. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, gain privileges, read and write local files. Below is a complete list of vulnerabilities: 1. Multiple unspecified...

8.8CVSS7.7AI score0.19295EPSS
Exploits4References3
Kaspersky
Kaspersky
added 2018/04/16 12:0 a.m.57 views

KLA11254 DoS vulnerability in LibreOffice

A heap buffer overflow vulnerability was found in LibreOffice. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially crafted file. Original advisories LibreOffice Security Advisory Related products LibreOffice CV...

7.8CVSS7.9AI score0.02134EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/04/10 12:0 a.m.38 views

KLA11223 Multiple vulnerabilities in Adobe Flash Player

Multiple serious vulnerabilities have been found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to execute arbitrary code and obtain sensitive information. 1. Use-After-Free vulnerability can be exploited remotely to execute arbitrary code; 2. Out-of-bounds reading...

9.3CVSS9AI score0.29073EPSS
Exploits8References6
Kaspersky
Kaspersky
added 2018/04/10 12:0 a.m.60 views

KLA11227 Obsolete Adobe Flash Player for Windows

Microsoft released update to address vulnerabilities in Flash Player. For details look at KLA11223 Original advisories ADV180007 Related products Microsoft-Windows CVE list KB list 4093110 Solution Install necessary updates from the KB section, that are listed in your Windows Update Windows Updat...

7.3AI score
Exploits0References5
Kaspersky
Kaspersky
added 2018/04/10 12:0 a.m.289 views

KLA11225 Multiple vulnerabilities in Microsoft Office

Multiple serious vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information and execute arbitrary code. Below is a complete list of vulnerabilities: 1. An improper font handling in the Office graphics...

9.3CVSS8.8AI score0.41319EPSS
Exploits0References46
Kaspersky
Kaspersky
added 2018/04/10 12:0 a.m.134 views

KLA11226 OSI vulnerability in Microsoft Developer Tools

An information disclosure vulnerability was found in Microsoft Developer Tools. Malicious users can exploit this vulnerability to obtain sensitive information. Original advisories CVE-2018-1037 Related products Microsoft-Visual-Studio CVE list CVE-2018-1037 warning KB list 4089501 4087371 4091346...

4.3CVSS4.7AI score0.05881EPSS
Exploits0References7
Total number of security vulnerabilities3996