Lucene search
K
KasperskyRecent

3996 matches found

Kaspersky
Kaspersky
•added 2015/04/21 12:0 a.m.•80 views

KLA10563 Multiple vulnerabilities in Drupal modules

Multiple serious vulnerabilities have been found in Drupal modules. Malicious users can exploit these vulnerabilities to bypass security restrictions, inject arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Open redirect vulnerabilities in Commerce...

6.8CVSS7.5AI score0.02087EPSS
Exploits0References2
Kaspersky
Kaspersky
•added 2015/04/20 12:0 a.m.•56 views

KLA10554 Denial of service vulnerability in Mozilla Firefox

Race condition was found in Mozilla Firefox. By exploiting this vulnerability malicious users can cause denial of service or other unknown impact. This vulnerability can be exploited remotely via an unknown vectors related to plugins. Original advisories MFSA Related products Mozilla-Firefox CVE...

6.8CVSS9AI score0.02586EPSS
Exploits0References3
Kaspersky
Kaspersky
•added 2015/04/16 12:0 a.m.•53 views

KLA10553 Denial of service vulnerabilities in Oracle MySQL

An unspecified vulnerabilities were found in Oracle MySQL. By exploiting these vulnerabilities malicious users can affect availability. These vulnerabilities can be exploited remotely via an unknown vectors related to InnoDB, Federated, DDL, Partition, SP, XA, Encryption and other unknown vectors...

5.7CVSS6.5AI score0.20646EPSS
Exploits0References4
Kaspersky
Kaspersky
•added 2015/04/14 12:0 a.m.•38 views

KLA10555 Denial of service vulnerability in Hyper-V

An unspecified vulnerability was found in Microsoft products. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed application. Original advisories MS advisory CVE-2015-1647 Related products...

2.1CVSS6.4AI score0.01793EPSS
Exploits0References6
Kaspersky
Kaspersky
•added 2015/04/14 12:0 a.m.•202 views

KLA10572 Multiple vulnerabilities in Lenovo System Update

Multiple serious vulnerabilities have been found in Lenovo System Update. Malicious users can exploit these vulnerabilities to bypass security restrictions or gain privileges. Below is a complete list of vulnerabilities 1. Lack of command piping restrictions can be exploited locally via named pip...

8.3CVSS7.6AI score0.04146EPSS
Exploits5References4
Kaspersky
Kaspersky
•added 2015/04/14 12:0 a.m.•45 views

KLA10561 Code injection vulnerability in Microsoft Sharepoint

An XSS vulnerabilities were found in Microsoft Sharepoint. By exploiting these vulnerabilities malicious users can inject arbitrary scripts. These vulnerabilities can be exploited remotely via a specially designed request. Original advisories MS15-036 CVE-2015-1653 CVE-2015-1640 Related products...

4.3CVSS6.3AI score0.08863EPSS
Exploits0References8
Kaspersky
Kaspersky
•added 2015/04/14 12:0 a.m.•33 views

KLA10557 Security bypass vulnerability in Active Directory

Improper logoff handling was found in Microsoft Active Directory. By exploiting this vulnerability malicious users can bypass security restrictions. This vulnerability can be exploited remotely via workstation manipulations. Original advisories MS15-040 CVE-2015-1638 Related products...

5.8CVSS6.4AI score0.12806EPSS
Exploits0References5
Kaspersky
Kaspersky
•added 2015/04/14 12:0 a.m.•62 views

KLA10556 Obtain sensitive information vulnerability in .NET Framework

An unspecified vulnerability was found in Microsoft .NET. By exploiting this vulnerability malicious users can obtain sensitive information. This vulnerability can be exploited remotely via a specially designed request. Original advisories MS15-041 CVE-2015-1648 Related products...

2.6CVSS6.3AI score0.34855EPSS
Exploits0References20
Kaspersky
Kaspersky
•added 2015/04/14 12:0 a.m.•36 views

KLA10558 Obtain sensitive information vulnerability in MSXML

An unspecified vulnerability was found in Microsoft XML Core Services. By exploiting this vulnerability malicious users can bypass security restrictions or obtain sensitive information. This vulnerability can be exploited remotely via a specially designed DTD. Original advisories MS15-039...

4.3CVSS6.5AI score0.16975EPSS
Exploits0References5
Kaspersky
Kaspersky
•added 2015/04/14 12:0 a.m.•57 views

KLA10546 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to bypass security restrictions, spoof user interface, cause denial of service or possible execute arbitrary code. Below is a complete list of vulnerabilities 1. Unknown...

7.5CVSS10AI score0.02702EPSS
Exploits1References3
Kaspersky
Kaspersky
•added 2015/04/14 12:0 a.m.•55 views

KLA10560 Privilege escalation vulnerability in Microsoft products

An unspecified vulnerability was found in Microsoft products. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally via a specially designed task. Original advisories MS15-037 CVE-2015-0098 Related products Microsoft-Windows-7...

7.2CVSS6.6AI score0.01624EPSS
Exploits0References6
Kaspersky
Kaspersky
•added 2015/04/14 12:0 a.m.•91 views

KLA10559 Privileges escalation in Microsoft products

Multiple improper impersonation levels handling were found in Microsoft products. By exploiting these vulnerabilities malicious users can gain privileges. These vulnerabilities can be exploited locally via a specially designed application. Original advisories MS15-038 CVE-2015-1643 CVE-2015-1644...

7.2CVSS6.6AI score0.02724EPSS
Exploits4References14
Kaspersky
Kaspersky
•added 2015/04/14 12:0 a.m.•57 views

KLA10549 Code execution vulnerability in Microsoft GC

An unspecified vulnerability was found in Microsoft products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed EMF image. Original advisories MS15-035 CVE-2015-1645 Related products...

9.3CVSS7.4AI score0.25451EPSS
Exploits0References8
Kaspersky
Kaspersky
•added 2015/04/14 12:0 a.m.•69 views

KLA10552 Code execution vulnerabilities in Internet Explorer

Multiple unspecified vulnerabilities were found in Microsoft Internet Explorer. By exploiting these vulnerabilities malicious users can execute arbitrary code or cause denial of service. These vulnerabilities can be exploited remotely via a specially designed web site. Original advisories MS15-03...

9.3CVSS10AI score0.15789EPSS
Exploits1References15
Kaspersky
Kaspersky
•added 2015/04/14 12:0 a.m.•136 views

KLA10550 Code execution vulnerability in Microsoft HTTPS.sys

An unspecified vulnerability was found in Microsoft products. By exploiting this vulnerability malicious users can execute arbitrary code. This vulnerability can be exploited remotely via a specially designed HTTP request. Original advisories MS15-034 CVE-2015-1635 Exploitation Public exploits...

10CVSS9.8AI score0.99999EPSS
Exploits16References9
Kaspersky
Kaspersky
•added 2015/04/14 12:0 a.m.•44 views

KLA10547 Multiple vulnerabilities in Adobe Flash Player

Memory corruption, buffer overflow, use-after-free, double free and memory leak vulnerabilities were found in Adobe Flash. By exploiting these vulnerabilities malicious users can bypass security restrictions, execute arbitrary code or obtain sensitive information. These vulnerabilities can be...

10CVSS10AI score0.95184EPSS
Exploits11References6
Kaspersky
Kaspersky
•added 2015/04/14 12:0 a.m.•116 views

KLA10548 Multiple vulnerabilities in Oracle products

An unspecified vulnerabilities were found in Oracle products. By exploiting these vulnerabilities malicious users can affect integrity, availability and confidentiality. These vulnerabilities can be exploited remotely via an unknown vectors related to 2D, Hotspot, JavaFX, Delpoyment, Tools, JSSE,...

10CVSS7.4AI score0.98685EPSS
Exploits0References7
Kaspersky
Kaspersky
•added 2015/04/14 12:0 a.m.•71 views

KLA10551 Code execution vulnerabilities in Microsoft Office

Use-after-free, XSS and aother unspecified vulnerabilities were found in Microsoft products. By exploiting these vulnerabilities malicious users can execute or inject arbitrary code. These vulnerabilities can be exploited remotely via a specially designed Office document. Original advisories...

10CVSS8.2AI score0.98685EPSS
Exploits0References29
Kaspersky
Kaspersky
•added 2015/04/13 12:0 a.m.•41 views

KLA10545 Multiple vulnerabilities in MediaWiki and extensions

Multiple serious vulnerabilities have been found in MediaWiki. Malicious users can exploit these vulnerabilities to bypass security restrictions, inject arbitrary code, cause denial of service or obtain sensitive information. Below is a complete list of vulnerabilities 1. Unknown vulnerability ca...

7.1CVSS7.6AI score0.02834EPSS
Exploits3References3
Kaspersky
Kaspersky
•added 2015/04/10 12:0 a.m.•39 views

KLA10541 Multiple vulnerabilities in Juniper Junos

Multiple serious vulnerabilities have been found in Juniper Junos. Malicious users can exploit these vulnerabilities to gainprivileges, execute arbitrary code orspoof user interface. Below is a complete list of vulnerabilities 1. XSS vulnerability can be exploited remotely via unspecified vectors...

7.2CVSS8.3AI score0.01816EPSS
Exploits0References6
Kaspersky
Kaspersky
•added 2015/04/10 12:0 a.m.•54 views

KLA10540 Multiple vulnerability in Apple OS X

Multiple serious vulnerabilities have been found in Apple OS X. Malicious users can exploit these vulnerabilities to cause denial of service, gain privileges, bypass security restrictions, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Unsaf...

7.2CVSS8.6AI score0.04153EPSS
Exploits12References3
Kaspersky
Kaspersky
•added 2015/04/08 12:0 a.m.•42 views

KLA10538 Multiple vulnerabilities in McAfee ATD

Multiple serious vulnerabilities have been found in McAfee ATD. Malicious users can exploit these vulnerabilities to obtain sensitive information or bypass security restrictions. Below is a complete list of vulnerabilities 1. Improper access restrictions and other unknown vulnerabilities can be...

5.5CVSS6.5AI score0.01007EPSS
Exploits0References3
Kaspersky
Kaspersky
•added 2015/04/08 12:0 a.m.•55 views

KLA10539 Multiple vulnerabilities in Open-source ARJ archiver

Buffer overflow, improper strings restriction and other unknown vulnerabilities were found in Open-source ARJ archiver. By exploiting these vulnerabilities malicious users can cause denial of service, execute arbitrary code or write to arbitrary local files. These vulnerabilities can be exploited...

7.5CVSS7.7AI score0.05889EPSS
Exploits2References2
Kaspersky
Kaspersky
•added 2015/04/07 12:0 a.m.•34 views

KLA10537 Multiple vulnerabilities in CA Spectrum

Multiple serious vulnerabilities have been found in CA Spectrum. Malicious users can exploit these vulnerabilities to gain privileges or inject arbitrary code. Below is a complete list of vulnerabilities 1. Improper data serialization can be exploited remotely via a specially designed Java object...

9CVSS7AI score0.03259EPSS
Exploits0References3
Kaspersky
Kaspersky
•added 2015/04/06 12:0 a.m.•78 views

KLA10531 Security bypass vulnerabilities in Mozilla Firefox

Multiple serious vulnerabilities have been found in Firefox. Malicious users can exploit these vulnerabilities to bypass security restrictions. Below is a complete list of vulnerabilities 1. Lack of privileges restrictions can be exploited remotely via vectors related to reader mode. Firefox for...

5CVSS9.3AI score0.02235EPSS
Exploits0References4
Kaspersky
Kaspersky
•added 2015/04/05 12:0 a.m.•33 views

KLA10534 Sensitive information obtain vulnerabilities in Siemens SIMATIC STEP

Improper password store and other uncnown vulnerability were found in SIMATIC STEP 7. By exploiting these vulnerabilities malicious users can obtain sensitive information. These vulnerabilities can be exploited remotely via an unknown vectors. Original advisories Siemens advisory Related products...

6.8CVSS6.5AI score0.01429EPSS
Exploits0References3
Kaspersky
Kaspersky
•added 2015/04/05 12:0 a.m.•31 views

KLA10533 Multiple vulnerabilities in IBM domino

Multiple serious vulnerabilities have been found in IBM Domino. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or gain privileges. Below is a complete list of vulnerabilities 1. Unknown vulnerability can be exploited locally via an unknown...

10CVSS8.3AI score0.04828EPSS
Exploits4References3
Kaspersky
Kaspersky
•added 2015/04/03 12:0 a.m.•28 views

KLA10532 Denial of service vulnerabilities in Cisco Unity Connection

An unspecified vulnerabilities were found in Cisco Unity Connector. By exploiting these vulnerabilities malicious users can cause denial of service. These vulnerabilities can be exploited remotely via SIP messages, sessions and connections manipulation. Original advisories Cisco advisory Related...

7.1CVSS6.6AI score0.01679EPSS
Exploits0References3
Kaspersky
Kaspersky
•added 2015/04/03 12:0 a.m.•69 views

KLA10536 Multiple vulnerabilities in Citrix NetScaler

Multiple serious vulnerabilities have been found in Citrix NetScaler. Malicious users can exploit these vulnerabilities to execute or inject arbitrary code and conduct XSS attack. Below is a complete list of vulnerabilities 1. XSS vulnerability can be exploited remotely via a specially designed...

6.8CVSS6.8AI score0.02879EPSS
Exploits3References2
Kaspersky
Kaspersky
•added 2015/04/03 12:0 a.m.•65 views

KLA10535 Multiple vulnerabilities in Inductive Automation Ignition

Multiple serious vulnerabilities have been found in Inductive Automation Ignition. Malicious users can exploit these vulnerabilities to bypass security restrictions, obtain sensitive information or inject arbitrary code. Below is a complete list of vulnerabilities 1. Improper passwords handling c...

6.4CVSS6.8AI score0.02266EPSS
Exploits0References2
Kaspersky
Kaspersky
•added 2015/04/02 12:0 a.m.•55 views

KLA10530 JRE update for multiple VMware products

Multiple VMware products were updated to address vulnerabilities in Oracle Java. For details look at KLA10447. Original advisories VMSA advisory KLA10447 Exploitation Public exploits exist for this vulnerability. Related products VMware-unclassified-products CVE list CVE-2014-6593 warning Solutio...

4CVSS6.8AI score0.67234EPSS
Exploits5References4
Kaspersky
Kaspersky
•added 2015/04/01 12:0 a.m.•66 views

KLA10527 Multiple vulnerabilities in different versions of Xen

Multiple serious vulnerabilities have been found in Xen. Malicious users can exploit these vulnerabilities to cause denial of service or bypass security restrictions. Below is a complete list of vulnerabilities 1. Unknown vulnerability can be exploited remotely via a logger or domctl manipulation...

7.1CVSS9.2AI score0.02278EPSS
Exploits0References2
Kaspersky
Kaspersky
•added 2015/04/01 12:0 a.m.•42 views

KLA10528 Code injection vulnerability in pfsense

Cross-site scripting vulnerabilities were found in pfSense. By exploiting these vulnerabilities malicious users can enject arbitrary sctip or HTML. These vulnerabilities can be exploited remotely via a specially designed parameters for web interface. Original advisories pfSense advisory...

4.3CVSS6.8AI score0.24167EPSS
Exploits5References3
Kaspersky
Kaspersky
•added 2015/04/01 12:0 a.m.•35 views

KLA10524 Multiple vulnerabilities in Google Chrome

Multiple serious vulnerabilities have been found in Google Chrome. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code or have other unknown impact. Below is a complete list of vulnerabilities 1. Improper IPC interaction handling can be exploited...

7.5CVSS10AI score0.05341EPSS
Exploits0References4
Kaspersky
Kaspersky
•added 2015/04/01 12:0 a.m.•44 views

KLA10526 Multiple vulnerabilities in SAP products

Multiple serious vulnerabilities have been found in SAP products. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions or obtain sensitive information. Below is a complete list of vulnerabilities 1. Buffer overflow and improper access...

7.5CVSS10AI score0.03704EPSS
Exploits0References2
Kaspersky
Kaspersky
•added 2015/03/31 12:0 a.m.•59 views

KLA10525 Multiple vulnerabilities in Mozilla Firefox, Mozilla Firefox ESR, Mozilla Thunderbird

Multiple serious vulnerabilities have been found in Mozilla Firefox before 37.0, Mozilla Firefox ESR 31.x before 31.6, Mozilla Thunderbird before 31.6. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause a denial of service heap memory corruption and bypass an...

7.5CVSS10AI score0.67135EPSS
Exploits3References5
Kaspersky
Kaspersky
•added 2015/03/31 12:0 a.m.•39 views

KLA10520 Multiple vulnerabilities in HP Operations Orchestration

An unspecified vulnerabilities were found in HP Operations Orchestration. By exploiting these vulnerabilities malicious users can bypass authentication,obtain sensitive information or modify data. These vulnerabilities can be exploited remotely via an unknown vector. Original advisories HP securi...

7.5CVSS6.5AI score0.04111EPSS
Exploits0References4
Kaspersky
Kaspersky
•added 2015/03/31 12:0 a.m.•31 views

KLA10519 Multiple vulnerabilities in FreeXL

An unspecified vulnerability was found in FreeXL. By exploiting this vulnerability malicious users can cause denial of service or execute arbitrary code. This vulnerability can be exploited remotely via a specially designed workbook. Original advisories - Related products FreeXL CVE list...

6.8CVSS7.5AI score0.03364EPSS
Exploits0References2
Kaspersky
Kaspersky
•added 2015/03/31 12:0 a.m.•34 views

KLA10521 Denial of service vulnerability in Shibboleth SP

An unspecified vulnerability was found in Shibboleth SP. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed SAML message. Original advisories Shibboleth advisory Related products...

4CVSS6.3AI score0.0195EPSS
Exploits0References3
Kaspersky
Kaspersky
•added 2015/03/31 12:0 a.m.•55 views

KLA10529 Multiple vulnerabilities in HP iLO

An unspecified vulnerabilities were found in KP iLO. By exploiting these vulnerabilities malicious users can gain privileges, bypass security restrictions, cause denial of service or execute arbitrary code. These vulnerabilities can be exploited remotely via an unknwon versions. Original advisori...

10CVSS8.3AI score0.12883EPSS
Exploits0References4
Kaspersky
Kaspersky
•added 2015/03/31 12:0 a.m.•28 views

KLA10523 Multiple vulnerabilities in IBM SAM

Lack of unicast respond restrictions was found in IBM SAM. By exploiting this vulnerability malicious users cause denial of service or obtain sensitive information. This vulnerability can be exploited remotely via a specially designed packets. Original advisories IBM advisory Related products...

5CVSS6.5AI score0.02227EPSS
Exploits0References3
Kaspersky
Kaspersky
•added 2015/03/30 12:0 a.m.•122 views

KLA10513 Denial of service vulnerability in Foxit products

An unspecified vulnerability was found in Foxit products. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed GIF image. Original advisories Foxit bulletins Exploitation Public exploits exist for this...

4.3CVSS6.6AI score0.24676EPSS
Exploits1References4
Kaspersky
Kaspersky
•added 2015/03/30 12:0 a.m.•40 views

KLA10516 Denial of service vulnerability in MongoDB

An unspecified vulnerability was found in MongoDB. By exploiting this vulnerability malicious users can cause denial of service. This vulnerability can be exploited remotely via a specially designed string in BSON request. Original advisories MongoDB JIRA Related products MongoDB CVE list...

5CVSS7.7AI score0.028EPSS
Exploits0References3
Kaspersky
Kaspersky
•added 2015/03/30 12:0 a.m.•75 views

KLA10517 Privilege escalation in Foxit Reader

Search path vulnerability was found in Foxit Reader Cloud plugin. By exploiting this vulnerability malicious users gain privileges. This vulnerability can be exploited locally via files manipulation. Original advisories Foxit bulletins Exploitation Public exploits exist for this vulnerability...

4.4CVSS8.8AI score0.03192EPSS
Exploits2References3
Kaspersky
Kaspersky
•added 2015/03/30 12:0 a.m.•78 views

KLA10515 Multiple vulnerabilities in PHP and extensions

Multiple serious vulnerabilities have been found in PHP and extensions. Malicious users can exploit these vulnerabilities to cause denial of service or inject code. Below is a complete list of vulnerabilities 1. Multiple integer overflows can be exploited remotely via a specially designed year...

7.5CVSS9.1AI score0.42593EPSS
Exploits7References2
Kaspersky
Kaspersky
•added 2015/03/30 12:0 a.m.•105 views

KLA10514 Multiple vulnerabilities in PHP and plugins

Multiple serious vulnerabilities have been found in PHP. Malicious users can exploit these vulnerabilities to inject or execute arbitrary code, bypass security restrictions or cause denial of service. Below is a complete list of vulnerabilities 1. Multiple use-after-free vulnerabilities can be...

7.5CVSS9.8AI score0.43146EPSS
Exploits17References4
Kaspersky
Kaspersky
•added 2015/03/29 12:0 a.m.•57 views

KLA10508 Multiple vulnerabilities in Schneider Electric products

Multiple serious vulnerabilities have been found in Schneider Electric products. Malicious users can exploit these vulnerabilities to obtain sensitive information orbypass security restrictions. Below is a complete list of vulnerabilities 1. Improper credentials storing and transmitting can be...

5CVSS6.5AI score0.024EPSS
Exploits0References4
Kaspersky
Kaspersky
•added 2015/03/29 12:0 a.m.•139 views

KLA10512 Multiple vulnerabilities in Johnson Controls Metasys

An unspecified vulnerabilities were found in Johnson Controls Metasys. By exploiting this vulnerability malicious users can execute arbitrary code or obtain sensitive information. These vulnerabilities can be exploited remotely via a speciaaly designed POST request or shell script. Original...

10CVSS7.8AI score0.03946EPSS
Exploits0References2
Kaspersky
Kaspersky
•added 2015/03/27 12:0 a.m.•33 views

KLA11444 OSI vulnerability in PuTTY

Information exposure vulnerability was found in PuTTY. Malicious users can exploit this vulnerability locally to obtain sensitive information. Original advisories PuTTY vulnerability private-key-not-wiped-2 Related products PuTTY CVE list CVE-2015-2157 warning Solution Update to the latest versio...

2.1CVSS6.2AI score0.00585EPSS
Exploits0References3
Kaspersky
Kaspersky
•added 2015/03/27 12:0 a.m.•40 views

KLA10509 Multiple vulnerabilities in McAfee DLPe

Multiple serious vulnerabilities have been found in McAfee DLPe. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, bypass security restrictions, inject arbitrary code or write local files. Below is a complete list of vulnerabilities 1. XSS...

6.8CVSS7.5AI score0.01499EPSS
Exploits0References3
Total number of security vulnerabilities3996