Lucene search
K
KasperskyRecent

3996 matches found

Kaspersky
Kaspersky
added 2018/04/10 12:0 a.m.24 views

KLA11895 SB vulnerability in Microsoft Device

A security feature bypass vulnerability was found in Microsoft Device. Malicious users can exploit this vulnerability to bypass security restrictions. Original advisories CVE-2018-8117 Related products Microsoft-Windows CVE list CVE-2018-8117 high KB list Solution Install necessary updates from t...

7.3CVSS6.6AI score0.01224EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/04/10 12:0 a.m.47 views

KLA11896 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges, cause denial of service. Below is a complete list of vulnerabilities: 1. A memory corrupti...

9.3CVSS9.6AI score0.40069EPSS
Exploits8References48
Kaspersky
Kaspersky
added 2018/04/10 12:0 a.m.219 views

KLA11221 Multiple vulnerabilities in Microsoft Windows

Multiple serious vulnerabilities have been found in Microsoft Windows . Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information, cause denial of service and possibly to bypass security restrictions. Below is a complete list of...

9.3CVSS8.8AI score0.40069EPSS
Exploits10References48
Kaspersky
Kaspersky
added 2018/04/10 12:0 a.m.61 views

KLA11227 Obsolete Adobe Flash Player for Windows

Microsoft released update to address vulnerabilities in Flash Player. For details look at KLA11223 Original advisories ADV180007 Related products Microsoft-Windows CVE list KB list 4093110 Solution Install necessary updates from the KB section, that are listed in your Windows Update Windows Updat...

7.3AI score
Exploits0References5
Kaspersky
Kaspersky
added 2018/04/06 12:0 a.m.51 views

KLA11224 ACE vulnerability in Microsoft Internet Explorer

An unspecified vulnerability was found in Microsoft Internet Explorer. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially crafted website. Original advisories CVE-2018-8118 Related products...

7.6CVSS7.9AI score0.09405EPSS
Exploits0References13
Kaspersky
Kaspersky
added 2018/04/03 12:0 a.m.58 views

KLA11220 Multiple vulnerabilities in Wireshark

Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. A vulnenerability related to MP4 dissector can be exploited remotely via specially designed packet or packet...

5.5CVSS6.4AI score0.01033EPSS
Exploits0References12
Kaspersky
Kaspersky
added 2018/04/03 12:0 a.m.43 views

KLA11216 ACE vulnerability in Microsoft Exchange Server

A remote code execution vulnerability was found in Microsoft Exchange Server. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially crafted file. Original advisories CVE-2018-0986 Exploitation Public exploits exis...

9.3CVSS9.6AI score0.61482EPSS
Exploits2References4
Kaspersky
Kaspersky
added 2018/04/03 12:0 a.m.69 views

KLA11218 ACE vulnerability in Microsoft System Center products

A memory corruption vulnerability was found in Microsoft Forefront Endpoint Protection 2010 and Microsoft Security Essentials. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially crafted file. Original advisorie...

9.3CVSS9.7AI score0.61482EPSS
Exploits2References5
Kaspersky
Kaspersky
added 2018/04/03 12:0 a.m.44 views

KLA11217 ACE vulnerability in Windows Defender

An ACE vulnerability was found in Windows Defender. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed file or possible via a specially designed website. Original advisories CVE-2018-0986 CVE-2018-0986...

9.3CVSS9.6AI score0.61482EPSS
Exploits2References7
Kaspersky
Kaspersky
added 2018/03/29 12:0 a.m.103 views

KLA11219 PE vulnerability in Microsoft Products (ESU)

PE vulnerability was found in Microsoft Products Extended Support Update. Malicious users can exploit this vulnerability to gain privileges. Original advisories CVE-2018-1038 Exploitation Public exploits exist for this vulnerability. Malware exists for this vulnerability. Usually such malware is...

7.8CVSS8AI score0.08915EPSS
Exploits2References8
Kaspersky
Kaspersky
added 2018/03/29 12:0 a.m.52 views

KLA11281 Multiple vulnerabilities in Apple iTunes

Multiple serious vulnerabilities have been found in Apple iTunes. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code and obtain sensitive information. Below is a complete list of vulnerabilities: 1. A buffer overflow vulnerability can be exploited...

9.3CVSS9.9AI score0.38602EPSS
Exploits8References3
Kaspersky
Kaspersky
added 2018/03/27 12:0 a.m.735 views

KLA11231 Multiple vulnerabilities in Node.js

Multiple serious vulnerabilities have been found in Node.js. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. An unspecified vulnerability in the HTTP parser can be exploited remotely via Content-Length parameter to...

8.7AI score
Exploits0References3
Kaspersky
Kaspersky
added 2018/03/26 12:0 a.m.99 views

KLA11228 A use-after-free vulnerability in Mozilla Firefox and Firefox ESR

A use-after-free vulnerability was found in Mozilla Firefox. By exploiting this vulnerability malicious users can cause denial of service. Original advisories Mozilla Foundation Security Advisory 2018-10 Related products Mozilla-Firefox Mozilla-Firefox-ESR CVE list CVE-2018-5148 critical Solution...

9.8CVSS9.4AI score0.03013EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2018/03/23 12:0 a.m.55 views

KLA11229 Multiple vulnerabilities in Mozilla Thunderbird

Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities: 1. A buffer overflow vulnerability can be exploited remotely...

9.8CVSS10AI score0.12054EPSS
Exploits3References4
Kaspersky
Kaspersky
added 2018/03/21 12:0 a.m.57 views

KLA12361 Multiple vulnerabilities in Apache HTTP Server

Multiple vulnerabilities were found in Apache HTTP Server. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Out of bounds read vulnerability in modcachesocache...

9.8CVSS8.5AI score0.86006EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/03/20 12:0 a.m.678 views

KLA11214 Unspecified vulnerability in Google Chrome

An unspecified vulnerability was found in Google Chrome. More information will be published soon. Original advisories Stable Channel Update for Desktop Related products Google-Chrome CVE list Solution Update to the latest version. File with name oldchrome can be still detected after update. It...

6.7AI score
Exploits0References3
Kaspersky
Kaspersky
added 2018/03/16 12:0 a.m.62 views

KLA11594 SB vulnerabilities in Mozilla Firefox

Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to bypass security restrictions. Below is a complete list of vulnerabilities: 1. Out of bounds memory write vulnerability in libvorbis can be exploited to bypass security restrictions; 2. Out...

9.8CVSS8.6AI score0.12054EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2018/03/16 12:0 a.m.40 views

KLA11595 SB vulnerabilities in Mozilla Firefox ESR

Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to bypass security restrictions. Below is a complete list of vulnerabilities: 1. Out of bounds memory write vulnerability in libvorbis can be exploited to bypass security restrictions; 2...

9.8CVSS8.6AI score0.12054EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2018/03/15 12:0 a.m.56 views

KLA11215 DoS vulnerability in VMware Products

An unspecified vulnerability was found in VMware Workstation, Player and Fusion. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a opening a large number of VNC sessions. Original advisories VMSA-2018-0008 Related...

5.3CVSS5.4AI score0.01654EPSS
Exploits0References5
Kaspersky
Kaspersky
added 2018/03/13 12:0 a.m.88 views

KLA11210 Multiple vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. A denial of service vulnerability in .NET Core can be exploited remotely via specially...

8.8CVSS8.4AI score0.09948EPSS
Exploits0References5
Kaspersky
Kaspersky
added 2018/03/13 12:0 a.m.389 views

KLA11209 Multiple vulnerabilities in Microsoft Internet Explorer and Edge

Multiple vulnerabilities were found in Microsoft Internet Explorer and Edge. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, gain privileges. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Chakra...

7.6CVSS8.2AI score0.66554EPSS
Exploits12References36
Kaspersky
Kaspersky
added 2018/03/13 12:0 a.m.194 views

KLA11207 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges, execute arbitrary code, bypass security restrictions, cause denial of service. Below is a complete list of vulnerabilities: 1. An informati...

7.8CVSS9.4AI score0.82334EPSS
Exploits34References59
Kaspersky
Kaspersky
added 2018/03/13 12:0 a.m.806 views

KLA11211 Obsolete Adobe Flash Player for Windows

Microsoft released update to address vulnerabilities in Flash Player. For details look at KLA11208. Original advisories ADV180006 Related products Microsoft-Windows CVE list KB list 4088785 Solution Install necessary updates from the KB section, that are listed in your Windows Update Windows Upda...

7.3AI score
Exploits0References5
Kaspersky
Kaspersky
added 2018/03/13 12:0 a.m.144 views

KLA11212 Multiple vulnerabilities in Microsoft Exchange Server

Multiple serious vulnerabilities have been found in Microsoft Exchange Server. Malicious users can exploit these vulnerabilities to obtain sensitive information and gain privileges. Below is a complete list of vulnerabilities: 1. An information disclosure vulnerability in way that Microsoft...

6.5CVSS7AI score0.12939EPSS
Exploits0References7
Kaspersky
Kaspersky
added 2018/03/13 12:0 a.m.47 views

KLA11778 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, cause denial of service, gain privileges. Below is a complete list of vulnerabilities: 1. An information...

7.6CVSS9.5AI score0.82334EPSS
Exploits30References52
Kaspersky
Kaspersky
added 2018/03/13 12:0 a.m.301 views

KLA11213 Multiple vulnerabilities in Microsoft Office

Multiple serious vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, bypass security restrictions or execute arbitrary code. Below is a complete list of vulnerabilities: 1. An improper handling of...

9.3CVSS9.1AI score0.18104EPSS
Exploits0References46
Kaspersky
Kaspersky
added 2018/03/13 12:0 a.m.515 views

KLA11206 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR

Multiple serious vulnerabilitieswere found in Mozilla Firefox and Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, gain privileges, perform cross-site scripting attack, spoof user interface, cause denial of service...

9.8CVSS10AI score0.08024EPSS
Exploits3References5
Kaspersky
Kaspersky
added 2018/03/12 12:0 a.m.609 views

KLA11208 Multiple vulnerabilities in Adobe Flash Player

Multiple serious vulnerabilities have been found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. An use-after-free vulnerability can be exploited remotely to execute arbitrary code; 2. A...

9.3CVSS9.5AI score0.07871EPSS
Exploits0References5
Kaspersky
Kaspersky
added 2018/03/06 12:0 a.m.1100 views

KLA11204 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities possibly to cause denial of service or spoof user interface. Below is a complete list of vulnerabilities: 1. Incorrect processing of AppMenifests can be exploited remotely to perfo...

10CVSS10AI score0.58822EPSS
Exploits7References4
Kaspersky
Kaspersky
added 2018/03/05 12:0 a.m.63 views

KLA11233 Oracle Java SE 9 end of life

Oracle announced the end of support of Java SE 9. Users should immediately make transition to Java SE 10 18.3. Original advisories Oracle Java SE Support Roadmap Related products Oracle-Java-JRE-1.9.x CVE list Solution Update to Java SE 10 18.3 Download Java Affected Products - Oracle Java SE 9...

6.8AI score
Exploits0References3
Kaspersky
Kaspersky
added 2018/02/23 12:0 a.m.114 views

KLA11201 Multiple vulnerabilities in Wireshark

Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service. Below is a complete list of vulnerabilities: 1. An improper operand validation offsets in the SIGCOMP protocol dissector can be exploited remotely via...

7.5CVSS8.5AI score0.02743EPSS
Exploits2References12
Kaspersky
Kaspersky
added 2018/02/21 12:0 a.m.33 views

KLA12054 Multiple vulnerabilities in Cisco Jabber

Multiple vulnerabilities were found in Cisco Jabber. Malicious users can exploit these vulnerabilities to perform cross-site scripting attack, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A cross-site scripting vulnerability in Cisco Jabber Client Framework JCF can be...

6.1CVSS6.4AI score0.02074EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2018/02/15 12:0 a.m.41 views

KLA11230 ACE vulnerability in Microsoft System Center product

An unspecified vulnerability was found in Microsoft Identity Manager 2016 Service Pack 1. By exploiting this vulnerability malicious users can perform cross-site scripting attacks and execute arbitrary code. This vulnerability can be exploited remotely via a specially crafted attribute value...

6.1CVSS6.3AI score0.02467EPSS
Exploits0References4
Kaspersky
Kaspersky
added 2018/02/14 12:0 a.m.406 views

KLA11194 Unspecified vulnerability in Google Chrome

An unspecified vulnerability was found in the component V8 in Google Chrome. By exploiting this vulnerability malicious users can cause denial of service and possibly execute arbitrary code. Original advisories Stable Channel Update for Desktop Related products Google-Chrome CVE list CVE-2018-605...

8.8CVSS9.2AI score0.08793EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/02/13 12:0 a.m.204 views

KLA11197 Multiple vulnerabilities in Microsoft Office

Multiple vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain priveleges and obtain sensitive information. Below is a complete list of vulnerabilities: 1. Remote code execution vulnerability in Microsoft Office...

9.3CVSS8.8AI score0.2043EPSS
Exploits0References26
Kaspersky
Kaspersky
added 2018/02/13 12:0 a.m.816 views

KLA11195 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, execute arbitrary code, bypass security restrictions, cause denial of service. Below is a complete list of vulnerabilities: 1. An elevation...

7.8CVSS9.3AI score0.40645EPSS
Exploits28References44
Kaspersky
Kaspersky
added 2018/02/13 12:0 a.m.58 views

KLA11200 Multiple vulnerabilties in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in...

9.3CVSS8.9AI score0.44265EPSS
Exploits5References38
Kaspersky
Kaspersky
added 2018/02/13 12:0 a.m.693 views

KLA11199 Multiple vulnerabilities in Microsoft Browsers

Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Microsoft Edge c...

9.3CVSS8.2AI score0.65858EPSS
Exploits21References32
Kaspersky
Kaspersky
added 2018/02/13 12:0 a.m.145 views

KLA11203 Multiple vulnerabilities in Apache Tomcat

Multiple serious vulnerabilities have been found in Apache Tomcat. Malicious users can exploit these vulnerabilities to bypass security restrictions. Below is a complete list of vulnerabilities: 1. A vulnerability related to security constraints defined by annotations of Servlets can be exploited...

6.5CVSS7.3AI score0.17378EPSS
Exploits2References5
Kaspersky
Kaspersky
added 2018/02/13 12:0 a.m.124 views

KLA11193 Multiple vulnerabilities in Adobe Arcobat&Reader

Multiple serious vulnerabilities have been found in Adobe Acrobat and Adobe Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code and gain priveleges. Below is a complete list of vulnerabilities: 1. Use-after-free vulnerabilities can be exploited to execute arbitrary...

10CVSS8.7AI score0.43418EPSS
Exploits0References11
Kaspersky
Kaspersky
added 2018/02/09 12:0 a.m.106 views

KLA11198 RLF vulnerability in LibreOffice

A vulnerability was found in LibreOffice. By exploiting this vulnerability malicious users can read local files. This vulnerability can be exploited via WEBSERVICE calls in a document, which use the COM.MICROSOFT.WEBSERVICE function. Original advisories LibreOffice Security Advisory Exploitation...

9.8CVSS8.6AI score0.23204EPSS
Exploits5References4
Kaspersky
Kaspersky
added 2018/02/08 12:0 a.m.53 views

KLA11196 Multiple vulnerabilities in PostgreSQL

Multiple serious vulnerabilities have been found in PostgreSQL. Malicious users can exploit these vulnerabilities to bypass security restrictions and obtain sensitive information. Below is a complete list of vulnerabilities: 1. A memory disclosure vulnerability in table partitioning can be...

7CVSS7.5AI score0.01826EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/02/06 12:0 a.m.476 views

KLA11192 Obsolete Adobe Flash Player for Windows

Microsoft released update to address vulnerabilities in Flash Player for Internet Explorer. For details look at KLA11191. Original advisories ADV180004 Related products Microsoft-Windows CVE list KB list 4074595 Solution Install necessary updates from the KB section, that are listed in your Windo...

7.3AI score
Exploits0References5
Kaspersky
Kaspersky
added 2018/02/01 12:0 a.m.711 views

KLA11188 Unspecified vulnerability in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to obtain sensitive information, cause denial of service and perform unspecified attacks. Below is a complete list of vulnerabilities: 1. A data validation vulnerability in the...

8.8CVSS9.2AI score0.02038EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/02/01 12:0 a.m.1716 views

KLA11191 Multiple use-after-free vulnerabilities in Adobe Flash Player

Multiple use-after-free vulnerabilitires was found in Adobe Flash Player. By exploiting these vulnerabilities malicious users can execute arbitrary code. These vulnerabilities can be exploited remotely via a specially crafted Office documents with embedded malicious Flash content. Technical detai...

10CVSS9.6AI score0.89618EPSS
Exploits19References7
Kaspersky
Kaspersky
added 2018/01/31 12:0 a.m.74 views

KLA11189 DoS vulnerability in Apache Tomcat

An incorrectly documented CGI search algorithm was found in Apache Tomcat. By exploiting this vulnerability malicious users can cause denial of service. Technical details Note that the behaviour of the CGI servlet has remained unchanged in this regard. It is only the documentation of the behaviou...

5.3CVSS5.8AI score0.06198EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/01/30 12:0 a.m.2464 views

KLA11190 Multiple vulnerabilities in 7-Zip

Multiple serious vulnerabilities have been found in 7-Zip. Malicious users can exploit these vulnerabilities to cause denial of service and possibly to execute arbitrary code. Below is a complete list of vulnerabilities: 1. Memory corruption vulnerabilities in RAR3 handler can be exploited remote...

7.8CVSS9AI score0.05032EPSS
Exploits2References2
Kaspersky
Kaspersky
added 2018/01/29 12:0 a.m.1715 views

KLA11187 ACE vulnerability in Mozilla Firefox

An unspecified vulnerability was found in Mozilla Firefox. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a unsanitized output in the browser UI. Original advisories Mozilla Foundation Security Advisory 2018-05 Related...

7.6AI score
Exploits0References3
Kaspersky
Kaspersky
added 2018/01/25 12:0 a.m.139 views

KLA11186 Multiple vulnerabilities in Mozilla Thunderbird

Multiple serious vulnerabilities have been found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to cause denial of service, spoof user interface and execute arbitrary code. Below is a complete list of vulnerabilities: 1. Multiple use-after-free vulnerabilities can be...

9.8CVSS9.6AI score0.07262EPSS
Exploits0References3
Kaspersky
Kaspersky
added 2018/01/24 12:0 a.m.1276 views

KLA11185 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions, spoof user interface, obtain sensitive information and perform cross-site scripting attack. Below ...

8.8CVSS9.3AI score0.02149EPSS
Exploits0References5
Total number of security vulnerabilities3996