Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
KasperskyRecent
RecentMost viewed

3965 matches found

Kaspersky
Kasperskyadded 2016/04/19 12:0 a.m.89 views

KLA10794 Multiple vulnerabilities in Oracle MySQL

An unspecified vulnerabilities were found in Oracle MySQL Server. By exploiting these vulnerabilities malicious users can cause denial of service and loss of integrity or obtain sensitive information. These vulnerabilities can be exploited remotely via a vectors related to Packaging, Pluggable...

10CVSS8AI score0.54488EPSS
Exploits1References3
Kaspersky
Kasperskyadded 2016/04/19 12:0 a.m.58 views

KLA10793 Multiple vulnerabilities in Oracle Java SE

An unspecified vulnerabilities were found in Oracle Java SE. By exploiting these vulnerabilities malicious users can cause denial of service and loss of integrity or obtain sensitive vulnerability. These vulnerabilities can be exploited remotely via a multiple vectors related to 2D, Hotspot,...

10CVSS7.6AI score0.93287EPSS
Exploits1References7
Kaspersky
Kasperskyadded 2016/04/18 12:0 a.m.59 views

KLA10791 Buffer overflow vulnerability in VLC media player

Buffer overflow vulnerability was found in VLC media player. By exploiting this vulnerability malicious users can cause a denial of service crash. This vulnerability can be exploited remotely via a crafted wav file. Technical details This vulnerability is in the AStreamPeekStream function in...

5.5CVSS5.9AI score0.00307EPSS
Exploits1References2
Kaspersky
Kasperskyadded 2016/04/13 12:0 a.m.147 views

KLA10783 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to bypass security restrictions, spoof user interface, inject arbitrary code, cause denial of service or obtain sensitive information. Below is a complete list of vulnerabilities 1...

10CVSS9.3AI score0.0306EPSS
Exploits0References3
Kaspersky
Kasperskyadded 2016/04/12 12:0 a.m.178 views

KLA10784 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information, cause denial of service, bypass security restrictions. Below is a complete list of vulnerabilities: 1. An elevation...

9.3CVSS10AI score0.77043EPSS
Exploits7References33
Kaspersky
Kasperskyadded 2016/04/12 12:0 a.m.76 views

KLA10789 Multiple vulnerabilities in Microsoft Browsers

Multiple vulnerabilities were found in Microsoft Browsers. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A memory corruption vulnerability in Microsoft Browser can be...

7.8CVSS8.4AI score0.43658EPSS
Exploits1References22
Kaspersky
Kasperskyadded 2016/04/12 12:0 a.m.59 views

KLA10782 Obsolete Adobe Flash Player for Windows

Microsoft released update to address vulnerabilities in Flash Player for Internet explorer and Microsoft Edge. For details look at KLA10780. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: disable Adobe Flash Player,...

7.3AI score
Exploits0References4
Kaspersky
Kasperskyadded 2016/04/12 12:0 a.m.49 views

KLA10786 Code execution vulnerabilities in Microsoft Developer Tools

Multiple vulnerabilities were found in Microsoft Developer Tools. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in .NET Framework can be exploited remotely to execute arbitrary cod...

9.3CVSS9.2AI score0.74815EPSS
Exploits1References12
Kaspersky
Kasperskyadded 2016/04/12 12:0 a.m.71 views

KLA11916 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An implementation vulnerability in Securi...

9.3CVSS9AI score0.77043EPSS
Exploits5References33
Kaspersky
Kasperskyadded 2016/04/12 12:0 a.m.72 views

KLA10785 Code execution vulnerability in Microsoft Office

Multiple unspecified vulnerabilities was found in Microsoft Office. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed content. Technical details You can mitigate this vulnerability via using Microsoft...

9.3CVSS8.5AI score0.74815EPSS
Exploits5References37
Kaspersky
Kasperskyadded 2016/04/12 12:0 a.m.315 views

KLA10788 Multiple vulnerabilities in Microsoft Graphics Component

Multiple serious vulnerabilities have been found in Microsoft Graphics Component as used in multiple Microsoft products. Malicious users can exploit these vulnerabilities to execute arbitrary code or gain privileges. Below is a complete list of vulnerabilities 1. An improper memory objects handli...

9.3CVSS9.3AI score0.74815EPSS
Exploits5References34
Kaspersky
Kasperskyadded 2016/04/12 12:0 a.m.52 views

KLA10890 Obsolete Adobe Flash Player for Windows

Microsoft released update to address vulnerabilities in Flash Player for Internet Explorer & Edge. For details look at KLA10810. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: don’t click a link in an email message or...

7.3AI score
Exploits0References5
Kaspersky
Kasperskyadded 2016/04/12 12:0 a.m.36 views

KLA10787 Code execution vulnerability in Micrsoft XML Core Services

An improper user input processing was found in Microsoft XML Core Services. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed content. Original advisories CVE-2016-0147 Related products...

9.3CVSS9.1AI score0.26416EPSS
Exploits0References7
Kaspersky
Kasperskyadded 2016/04/11 12:0 a.m.29 views

KLA10781 Code execution vulnerability in pidgin-otr plugin.

Use-after-free vulnerability was found in Off-the-Record Messaging OTR pidgin-otr plugin. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via vectors related to the “Authenticate buddy” menu item. Technical details This...

10CVSS9.8AI score0.16464EPSS
Exploits0References2
Kaspersky
Kasperskyadded 2016/04/11 12:0 a.m.35 views

KLA10790 Multiple vulnerabilities in PostgreSQL

Multiple serious vulnerabilities have been found in PostgreSQL. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information or cause denial of service. Below is a complete list of vulnerabilities 1. An unknown vulnerability can be exploited via ...

9.1CVSS7AI score0.01526EPSS
Exploits0References3
Kaspersky
Kasperskyadded 2016/04/07 12:0 a.m.32 views

KLA11442 ACE vulnerability in PuTTY

Stack-based buffer overflow vulnerability was found in PuTTY. Malicious users can exploit this vulnerability remotely cause denial of service and execute arbitrary code. Original advisories PuTTY vulnerability vuln-pscp-sink-sscanf Related products PuTTY CVE list CVE-2016-2563 critical Solution...

9.8CVSS10AI score0.26586EPSS
Exploits4References3
Kaspersky
Kasperskyadded 2016/04/07 12:0 a.m.58 views

KLA10780 Multiple vulnerabilities in Adobe Flash Player

Multiple serious vulnerabilities have been found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to execute arbitrary code or bypass security restrictions. Below is a complete list of vulnerabilities 1. An unknown vulnerability at JIT can be exploited to bypass layout...

10CVSS10AI score0.57147EPSS
Exploits5References7
Kaspersky
Kasperskyadded 2016/03/31 12:0 a.m.30 views

KLA10779 Privilege escalation vulnerability at Cogent DataHub

An unspecified vulnerability was found in Cogent DataHub. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally via files manipulations. Original advisories ICS-CERT advisory Exploitation Public exploits exist for this vulnerability...

7.8CVSS7.8AI score0.00312EPSS
Exploits4References3
Kaspersky
Kasperskyadded 2016/03/28 12:0 a.m.30 views

KLA10778 arbitrary code execution vulnerability in Autodesk Backburner

An unspecified vulnerability was found in Autodesk Backburner. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed command. Original advisories CERT vulnerability Related...

7.8CVSS8.1AI score0.02281EPSS
Exploits0References3
Kaspersky
Kasperskyadded 2016/03/24 12:0 a.m.43 views

KLA10776 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service or execute arbitrary code. Below is a complete list of vulnerabilities 1. Multiple unknown vulnerabilities at V8 can be exploited to cause denial of...

9.3CVSS9.5AI score0.66909EPSS
Exploits1References3
Kaspersky
Kasperskyadded 2016/03/23 12:0 a.m.86 views

KLA10775 An unknown vulnerability in Oracle Java SE

An unspecified vulnerability was found in Oracle Java SE. By exploiting this vulnerability malicious users can cause denial of service, affect integrity or obtain sensitive information. This vulnerability can be exploited remotely via vectors related to subcomponent Hotspot Original advisories...

9.3CVSS7.9AI score0.13484EPSS
Exploits0References6
Kaspersky
Kasperskyadded 2016/03/14 12:0 a.m.39 views

KLA10777 Code execution vulnerability in ABB Panel Builder 800

An unspecified vulnerability was found in ABB Panel Builder 800. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a DLL hijack. Technical details This vulnerability can be mitigated via disabling .pba files associations...

7.2CVSS7.5AI score0.00045EPSS
Exploits0References3
Kaspersky
Kasperskyadded 2016/03/10 12:0 a.m.55 views

KLA10772 Multiple vulnerabilities in Adobe Flash Player & AIR

Multiple serious vulnerabilities have been found in Adobe products. Malicious users can exploit these vulnerabilities to cause denial of service or execute arbitrary code. Below is a complete list of vulnerabilities 1. Integer overflow vulnerability can be exploited to execute arbitrary code; 2. ...

9.3CVSS9.9AI score0.72855EPSS
Exploits14References7
Kaspersky
Kasperskyadded 2016/03/10 12:0 a.m.61 views

KLA10774 Obsolete Adobe Flash Player for Windows

Microsoft released update to address vulnerabilities in Flash Player for Internet explorer. For details look at KLA10757. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: disable Adobe Flash Player, prevent Adobe FP from...

9.3CVSS9.5AI score0.42855EPSS
Exploits11References24
Kaspersky
Kasperskyadded 2016/03/10 12:0 a.m.97 views

KLA10773 Code execution vulnerability in Apple Software Update

Weak networking protocol usage was found in Apple Software Update. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via man-in-the-middle attack. Technical details Instead of usage HTTPS for downloading updates unprotected...

5.9CVSS6.3AI score0.00234EPSS
Exploits0References3
Kaspersky
Kasperskyadded 2016/03/08 12:0 a.m.40 views

KLA10766 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service or possibly execute arbitrary code. Below is a complete list of vulnerabilities 1. An improper user agent shadow DOM implementation at Blink can be...

9.3CVSS9.5AI score0.02189EPSS
Exploits0References3
Kaspersky
Kasperskyadded 2016/03/08 12:0 a.m.124 views

KLA10769 Multiple vulnerabilities in Microsoft Windows

Multiple serious vulnerabilities have been found in Microsoft Windows. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or gain privileges. Below is a complete list of vulnerabilities 1. An improper input validation can be exploited by logged in...

9.3CVSS9AI score0.90442EPSS
Exploits22References44
Kaspersky
Kasperskyadded 2016/03/08 12:0 a.m.67 views

KLA10765 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR

Multiple serious vulnerabilities have been found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, obtain sensitive information, execute arbitrary code, spoof user interface, gain privileges and write local files. Below...

10CVSS10AI score0.86455EPSS
Exploits9References4
Kaspersky
Kasperskyadded 2016/03/08 12:0 a.m.56 views

KLA10767 Multiple vulnerabilities in Adobe Acrobat & Reader

Multiple serious vulnerabilities have been found in Adobe Acrobat & Reader. Malicious users can exploit these vulnerabilities to cause denial of service or execute arbitrary code. Below is a complete list of vulnerabilities 1. Multiple memory corruption vulnerabilities can be exploited to cause...

10CVSS10AI score0.03625EPSS
Exploits0References8
Kaspersky
Kasperskyadded 2016/03/08 12:0 a.m.43 views

KLA10771 Multiple vulnerabilities in Microsoft Internet Explorer and Edge

Multiple serious vulnerabilities have been found in Microsoft Internet Explorer & Edge. Malicious users can exploit these vulnerabilities to execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. An improper memory objects access can be exploited...

7.6CVSS7.9AI score0.44978EPSS
Exploits1References27
Kaspersky
Kasperskyadded 2016/03/08 12:0 a.m.152 views

KLA10768 Security bypass vulnerability in Microsoft .NET Framework

An improper XML validation was found in Microsoft .NET Framework. By exploiting this vulnerability malicious users can bypass security restrictions. This vulnerability can be exploited remotely via signed XML file manipulations. Original advisories CVE-2016-0132 Related products...

10CVSS9.7AI score0.32646EPSS
Exploits0References20
Kaspersky
Kasperskyadded 2016/03/08 12:0 a.m.77 views

KLA10770 Multiple vulnerabilities in Microsoft Office

Multiple serious vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code or bypass security restrictions. Below is a complete list of vulnerabilities 1. An improper memory objects handling can be exploited remotely via a...

9.3CVSS8.5AI score0.48518EPSS
Exploits0References31
Kaspersky
Kasperskyadded 2016/03/02 12:0 a.m.50 views

KLA10764 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions and obtain sensitive information. Below is a complete list of vulnerabilities 1. Lack of URL’s restrictions at Blink can be...

10CVSS8.8AI score0.05701EPSS
Exploits3References3
Kaspersky
Kasperskyadded 2016/02/27 12:0 a.m.58 views

KLA10763 Multiple vulnerabilities in Wireshark

Multiple serious vulnerabilities have been found in Wireshark. Malicious users can exploit these vulnerabilities to cause denial of service or gain privileges. Below is a complete list of vulnerabilities 1. Multiple vulnerabilities in LLRP, RSL, LBMC, HiQnet, HTTP/2, X.509AF, DNP3 and ASN.1 BER...

7.8CVSS7.1AI score0.03685EPSS
Exploits1References2
Kaspersky
Kasperskyadded 2016/02/21 12:0 a.m.93 views

KLA10744 Multiple vulnerabilities in Oracle VM VirtualBox

An unspecified vulnerabilities were found in Oracle VirtualBox. By exploiting these vulnerabilities malicious users can affect availability, integrity and confidentiality. These vulnerabilities can be exploited remotely via an unknown vectors related to Core and Windows Installer. Original...

10CVSS8.2AI score0.04702EPSS
Exploits0References3
Kaspersky
Kasperskyadded 2016/02/18 12:0 a.m.23 views

KLA10760 Security bypass vulnerabilities in Google Chrome

An unspecified vulnerability was found in Google Chrome. By exploiting this vulnerability malicious users can bypass same origin policy and sandbox mechanism protection. This vulnerability can be exploited remotely via an unknown vectors. Original advisories Google Chrome releases blog Related...

10CVSS9.6AI score0.03208EPSS
Exploits0References3
Kaspersky
Kasperskyadded 2016/02/17 12:0 a.m.38 views

KLA10762 Denial of service vulnerabilities in LibreOffice

Buffer overflow vulnerabilities were found in LibreOffice. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely via a specially designed document. Technical details These vulnerabilities related to parsing the...

9.3CVSS8.1AI score0.00591EPSS
Exploits0References2
Kaspersky
Kasperskyadded 2016/02/17 12:0 a.m.664 views

KLA10761 Multiple vulnerabilities in PostgreSQL

Multiple serious vulnerabilities have been found in PostgreSQL. Malicious users can exploit these vulnerabilities to cause denial of service or gain privileges. Below is a complete list of vulnerabilities 1. An unknown vulnerability can be exploited remotely via a specially designed regular...

9CVSS8.8AI score0.10867EPSS
Exploits0References2
Kaspersky
Kasperskyadded 2016/02/11 12:0 a.m.59 views

KLA10759 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR

Multiple serious vulnerabilities have been found in Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions or obtain sensitive information. Below is a complete list of vulnerabilities 1. Lack of requests...

9.3CVSS9.7AI score0.02415EPSS
Exploits1References5
Kaspersky
Kasperskyadded 2016/02/09 12:0 a.m.44 views

KLA10756 Arbitrary code execution in Adobe Flash Player & AIR

Multiple serious vulnerabilities have been found in Adobe Flash Player & AIR. Malicious users can exploit these vulnerabilities to execute arbitrary code. Below is a complete list of vulnerabilities 1. Type confusion vulnerability can be exploited remotely to execute arbitrary code; 2...

9.3CVSS10AI score0.67345EPSS
Exploits14References7
Kaspersky
Kasperskyadded 2016/02/09 12:0 a.m.35 views

KLA10753 Multiple vulnerabilities in Microsoft .NET Framework

Multiple serious vulnerabilities have been found in Microsoft .NET Framework. Malicious users can exploit these vulnerabilities to cause denial of service or obtain sensitive information. Below is a complete list of vulnerabilities 1. An improper handling of XSLT can be exploited remotely via a...

7.5CVSS8.1AI score0.19296EPSS
Exploits0References7
Kaspersky
Kasperskyadded 2016/02/09 12:0 a.m.39 views

KLA10754 Multiple vulnerabilities in Microsoft Office

Multiple serious vulnerabilities have been found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code or gain privileges. Below is a complete list of vulnerabilities 1. An improper memory objects handling can be exploited remotely via a specially design...

9.3CVSS8.3AI score0.31517EPSS
Exploits0References34
Kaspersky
Kasperskyadded 2016/02/09 12:0 a.m.118 views

KLA10866 Multiple vulnerabilities in Python

Multiple serious vulnerabilities have been found in CPython Python before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2. Malicious users can exploit these vulnerabilities to bypass the TLS protections, inject arbitrary HTTP headers or have unspecified impact. Below is a complete list of...

10CVSS9.7AI score0.45123EPSS
Exploits7References2
Kaspersky
Kasperskyadded 2016/02/09 12:0 a.m.53 views

KLA10755 Multiple vulnerabilities in Microsoft Edge

Multiple serious vulnerabilities have been found in Microsoft Edge. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code or bypass security features. Below is a complete list of vulnerabilities 1. An improper HTTP responses parsing can be exploited...

9.3CVSS8.1AI score0.29918EPSS
Exploits3References11
Kaspersky
Kasperskyadded 2016/02/09 12:0 a.m.92 views

KLA10757 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service or bypass security restrictions. Below is a complete list of vulnerabilities 1. Lack of URL schemes validation at Developer Tools can be exploited remote...

8.8CVSS7.4AI score0.0153EPSS
Exploits1References3
Kaspersky
Kasperskyadded 2016/02/09 12:0 a.m.45 views

KLA10758 Obsolete Adobe Flash Player for Windows

Microsoft released update to address vulnerabilities in Flash Player for Internet explorer. For details look at KLA10757. Technical details To mitigate this vulnerability you can implement some of workarounds listed in original Microsoft advisory: disable Adobe Flash Player, prevent Adobe FP from...

9.3CVSS9.4AI score0.67345EPSS
Exploits14References26
Kaspersky
Kasperskyadded 2016/02/09 12:0 a.m.102 views

KLA10751 Multiple vulnerabilities in Microsoft Windows

Multiple serious vulnerabilities have been found in Microsoft Windows. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions or gain privileges. Below is a complete list of vulnerabilities 1. An unknown vulnerability at...

9.3CVSS8.8AI score0.77331EPSS
Exploits29References38
Kaspersky
Kasperskyadded 2016/02/06 12:0 a.m.19 views

KLA10871 VMware Workstation 11.x end of life

VMware announced the end of support for VMware Workstation 11.x. Users should immediately make transition to VMware Workstation 12.x or later Original advisories https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/support/product-lifecycle-matrix.pdf Related products...

7.3AI score
Exploits0References4
Kaspersky
Kasperskyadded 2016/01/29 12:0 a.m.37 views

KLA10750 Data manipulations vulnerability in cURL

Lack of data sanitization was found in cURL command line tool for Windows. By exploiting this vulnerability malicious users can write arbitrary local file. This vulnerability can be exploited remotely via a specially designed file name. Technical details cURL does not sanitize colons in a remote...

5.3CVSS5.6AI score0.00351EPSS
Exploits0References3
Kaspersky
Kasperskyadded 2016/01/28 12:0 a.m.52 views

KLA11025 Buffer overflow vulnerability in QuickTime

Buffer overflow vulnerability was found in QuickTime. By exploiting this vulnerability malicious users can execute arbitrary code. Original advisories Apple bulletin Related products Apple-QuickTime CVE list CVE-2011-3428 critical Solution Update to latest version Quicktime download Impacts ACE...

9.8CVSS9.7AI score0.02985EPSS
Exploits0References3
Total number of security vulnerabilities3965