Lucene search
K
SymantecMost viewed

6867 matches found

Symantec
Symantec
•added 2009/02/19 12:0 a.m.•71 views

Adobe Acrobat and Reader PDF File Handling JBIG2 Image Remote Code Execution Vulnerability

Description Adobe Acrobat and Reader are prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code with the privileges of the user running the application or crash the application, denying service to legitimate users. The issue affects Reader and...

7.9AI score
Exploits0References5Affected Software12
Symantec
Symantec
•added 2019/10/16 12:0 a.m.•70 views

Apache Thrift CVE-2019-0205 Denial of Service Vulnerability

Description Apache Thrift is prone to a denial-of-service vulnerability. Attackers may leverage this issue to cause the application enter into endless loop, denying service to legitimate users. Apache Thrift version 0.12.0 and prior are vulnerable. Technologies Affected Apache Thrift 0.10.0 Apach...

1.8AI score0.09082EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/15 12:0 a.m.•70 views

Oracle Java SE/Java SE Embedded CVE-2019-2981 Remote Security Vulnerability

Description Oracle Java SE and Java SE Embedded are prone to a remote security vulnerability. The vulnerability can be exploited over Multiple protocols. This issue affects the 'JAXP' component. This vulnerability affects the following supported versions: Java SE: 7u231, 8u221, 11.0.4, 13; Java S...

6.2AI score0.03749EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/07/09 12:0 a.m.•70 views

Microsoft Team Foundation Server CVE-2019-1076 Cross Site Scripting Vulnerability

Description Microsoft Team Foundation Server is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site...

6.4AI score0.01627EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/06/11 12:0 a.m.•70 views

Microsoft Internet Explorer Scripting Engine CVE-2019-1055 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Internet...

0.2AI score0.03345EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/05/14 12:0 a.m.•70 views

Microsoft ASP.NET Core CVE-2019-0982 Denial of Service Vulnerability

Description Microsoft ASP.NET Core is prone to a remote denial of service vulnerability. An attacker can exploit this issue to cause a denial of service condition. Technologies Affected Microsoft ASP.NET Core 2.1 Microsoft ASP.NET Core 2.2 Recommendations Block external access at the network...

1.1AI score0.06681EPSS
Exploits0
Symantec
Symantec
•added 2019/05/14 12:0 a.m.•70 views

Microsoft Windows JET Database Engine CVE-2019-0891 Remote Code Execution Vulnerability

Description Microsoft Windows JET Database Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10...

0.7AI score0.2021EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/04/09 12:0 a.m.•70 views

Microsoft Windows AppX Deployment Service CVE-2019-0841 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to run processes with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1709 for ARM64-based Systems Microsoft Windows 10 Version 1803 for 32-bit...

2.7AI score0.414EPSS
Exploits19Affected Software2
Symantec
Symantec
•added 2019/03/18 12:0 a.m.•70 views

libssh2 Multiple Security Vulnerabilities

Description libssh2 is prone to multiple security vulnerabilities. Attackers can exploit these issues to execute arbitrary code, perform unauthorized actions, cause denial-of-service conditions, retrieve sensitive information; other attacks may also be possible. Technologies Affected Oracle Linux...

7.8AI score
Exploits0References1Affected Software5
Symantec
Symantec
•added 2019/02/12 12:0 a.m.•70 views

Microsoft Windows Kernel CVE-2019-0661 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7 for x64-based Syste...

1.6AI score0.02063EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2018/01/09 12:0 a.m.•70 views

Microsoft Outlook CVE-2018-0793 Remote Code Execution Vulnerability

Description Microsoft Outlook is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Failed exploit attempts may result in a denial of service condition; this can result in the attacker gaining complete...

9.3CVSS8.7AI score0.2057EPSS
Exploits0References1Affected Software3
Symantec
Symantec
•added 2017/11/14 12:0 a.m.•70 views

Adobe Reader and Acrobat Multiple Remote Code Execution Vulnerabilities

Description Adobe Reader and Acrobat are prone to multiple remote code-execution vulnerabilities. An attacker can exploit these issues to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely result in denial-of-service conditions...

8.1AI score
Exploits0Affected Software5
Symantec
Symantec
•added 2017/05/09 12:0 a.m.•70 views

Microsoft Windows SMB Server CVE-2017-0270 Information Disclosure Vulnerability

Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 16...

4.3CVSS0.1AI score0.07243EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2016/12/13 12:0 a.m.•70 views

Microsoft Windows Installer CVE-2016-7292 DLL Loading Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can leverage this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for...

7.2CVSS2.9AI score0.01459EPSS
Exploits0References3Affected Software5
Symantec
Symantec
•added 2016/05/09 8:0 a.m.•70 views

SA123 : OpenSSL Vulnerabilities 3-May-2016

SUMMARY Blue Coat products using affected versions of OpenSSL are susceptible to multiple vulnerabilities. A remote attacker can exploit these vulnerabilities to intercept and decrypt TLS sessions, obtain arbitrary data from the target's memory stack, or execute arbitrary code through buffer...

10CVSS2.7AI score0.89058EPSS
Exploits8Affected Software25
Symantec
Symantec
•added 2011/04/12 12:0 a.m.•70 views

Microsoft Windows CVE-2011-0657 DNS Resolution Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits can allow attackers to execute arbitrary code within the context of the NetworkService account. Successfully exploiting this issue will result in the complete compromise of affected computers...

7.5CVSS7.4AI score0.63335EPSS
Exploits2Affected Software13
Symantec
Symantec
•added 2019/11/01 12:0 a.m.•69 views

Apple Xcode Multiple Memory Corruption Vulnerabilities

Description Apple Xcode is prone to multiple memory corruption vulnerabilities. A remote attacker can leverage these issues to execute arbitrary code in the context of the user running the application. Failed exploit attempts may result in a denial-of-service condition. Versions prior to Xcode 11...

8AI score
Exploits0References2Affected Software2
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•69 views

Microsoft Excel CVE-2019-1327 Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...

0.8AI score0.12627EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•69 views

Microsoft Edge Chakra Scripting Engine CVE-2019-1335 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

0.6AI score0.09509EPSS
Exploits0
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•69 views

Microsoft Edge Chakra Scripting Engine CVE-2019-1307 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

0.6AI score0.09703EPSS
Exploits0
Symantec
Symantec
•added 2019/08/30 12:0 a.m.•69 views

MongoDB Server CVE-2019-2390 Remote Code Execution Vulnerability

Description MongoDB Server is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely cause a denial-of-service condition. Technologies Affected IBM...

6.8CVSS0.3AI score0.01011EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/07/09 12:0 a.m.•69 views

Microsoft Edge Chakra Scripting Engine CVE-2019-1106 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

0.6AI score0.09205EPSS
Exploits0References1
Symantec
Symantec
•added 2019/06/11 12:0 a.m.•69 views

Microsoft Windows Kernel CVE-2019-1041 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1803 for 32-bit Systems Microsoft Windows 10 Version 1803 for ARM64-based...

3.3AI score0.01016EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/06/11 12:0 a.m.•69 views

Microsoft Windows Win32k CVE-2019-0960 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7 for x64-based Syste...

2.3AI score0.00903EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/06/11 12:0 a.m.•69 views

Microsoft Windows Win32k CVE-2019-1014 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...

2AI score0.00903EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/05/14 12:0 a.m.•69 views

Microsoft Windows OLE CVE-2019-0885 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...

1AI score0.14351EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/05/14 12:0 a.m.•69 views

Microsoft Office Access Connectivity Engine CVE-2019-0946 Remote Code Execution Vulnerability

Description Microsoft Office Access Connectivity Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Office 2010 Service Pack 2 32-bit editions Microsoft Office...

0.5AI score0.13695EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/05/14 12:0 a.m.•69 views

Microsoft Office Access Connectivity Engine CVE-2019-0947 Remote Code Execution Vulnerability

Description Microsoft Office Access Connectivity Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Office 2010 Service Pack 2 32-bit editions Microsoft Office...

0.3AI score0.13695EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/05/14 12:0 a.m.•69 views

Microsoft ASP.NET Core CVE-2019-0980 Denial of Service Vulnerability

Description Microsoft ASP.NET Core is prone to a remote denial of service vulnerability. An attacker can exploit this issue to cause a denial of service condition. Technologies Affected Microsoft .NET Core 1.0 Microsoft .NET Core 1.1 Microsoft .NET Core 2.1 Microsoft .NET Core 2.2 Microsoft .NET...

0.7AI score0.04943EPSS
Exploits0
Symantec
Symantec
•added 2019/04/09 12:0 a.m.•69 views

Microsoft Windows Kernel 'Win32k.sys' CVE-2019-0803 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code within the context of the kernel privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10...

2.6AI score0.4523EPSS
Exploits26Affected Software3
Symantec
Symantec
•added 2019/01/15 12:0 a.m.•69 views

libgd CVE-2019-6978 Double Free Multiple Denial of Service Vulnerabilities

Description libgd is prone to multiple denial-of-service vulnerabilities. Attackers can exploit these issues to cause a denial-of-service condition. libgd version 2.2.5 is vulnerable; other versions may also be affected. Technologies Affected LibGD LibGD 2.1.0 LibGD LibGD 2.1.1 LibGD LibGD 2.2.0...

7.5CVSS8.9AI score0.04416EPSS
Exploits0References4Affected Software11
Symantec
Symantec
•added 2019/01/08 12:0 a.m.•69 views

Microsoft Office CVE-2019-0560 Information Disclosure Vulnerability

Description Microsoft Office is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Office 2010 32-bit edition SP2 Microsoft Office 2010 64-bit edition SP2 Microsoft...

5.7AI score0.08729EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/01/08 12:0 a.m.•69 views

Microsoft Windows CVE-2019-0543 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attackers may exploit this issue to gain elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft Windo...

2AI score0.04718EPSS
Exploits2Affected Software3
Symantec
Symantec
•added 2018/05/08 12:0 a.m.•69 views

Microsoft Windows Hyper-V CVE-2018-0959 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits allow attackers to execute arbitrary code in the context of the host operating system. Failed exploit attempts will result in a denial of service condition. Technologies Affected Microsoft Windows...

1.4AI score0.09437EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2017/06/13 12:0 a.m.•69 views

Microsoft PowerPoint CVE-2017-8513 Remote Code Execution Vulnerability

Description Microsoft PowerPoint is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected...

9.3CVSS0.7AI score0.17127EPSS
Exploits0References2Affected Software2
Symantec
Symantec
•added 2017/05/09 12:0 a.m.•69 views

Microsoft Office CVE-2017-0254 Memory Corruption Vulnerability

Description Microsoft Office is prone to a remote memory-corruption vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected...

9.3CVSS0.9AI score0.19817EPSS
Exploits0Affected Software7
Symantec
Symantec
•added 2017/03/14 12:0 a.m.•69 views

Microsoft Windows Device Guard CVE-2017-0007 Security Bypass Vulnerability

Description Microsoft Windows is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems...

2.1CVSS1AI score0.11264EPSS
Exploits1Affected Software2
Symantec
Symantec
•added 2015/12/17 8:0 a.m.•69 views

SA106 : MySQL Vulnerabilities October 2015

SUMMARY Blue Coat products using affected versions of MySQL 5.5 and 5.6 are susceptible to multiple vulnerabilities. An attacker can exploit these vulnerabilities to execute arbitrary code and gain unauthorized read, insert, update, or delete access to subsets of MySQL Server accessible data. The...

7.2CVSS1.9AI score0.30146EPSS
Exploits6Affected Software1
Symantec
Symantec
•added 2015/07/14 12:0 a.m.•69 views

Microsoft Internet Explorer CVE-2015-2425 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

9.3CVSS0.7AI score0.44851EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2014/07/08 12:0 a.m.•69 views

Microsoft Windows Ancillary Function Driver CVE-2014-1767 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges. Successful exploits will result in the complete compromise of affected computers. Technologies Affected Avaya Aura...

7.2CVSS0.4AI score0.12694EPSS
Exploits8References1Affected Software12
Symantec
Symantec
•added 2013/02/01 12:0 a.m.•69 views

Oracle Java SE CVE-2013-0431 Remote Java Runtime Environment Vulnerability

Description Oracle Java SE is prone to a remote vulnerability in Java Runtime Environment. The vulnerability can be exploited over multiple protocols. This issue affects the 'JMX' sub-component. This vulnerability affects the following supported versions: 7 Update 11 and prior Note: This issue wa...

5CVSS0.3AI score0.89987EPSS
Exploits8References10Affected Software34
Symantec
Symantec
•added 2006/12/12 12:0 a.m.•69 views

Microsoft Internet Explorer Script Error Handling Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. This vulnerability is related to how the browser handles script errors. An attacker may exploit this vulnerability to execute arbitrary code in the context of the user running the affected browser...

1.9AI score
Exploits0References5Affected Software2
Symantec
Symantec
•added 2019/12/15 12:0 a.m.•68 views

Linux Kernel CVE-2019-19807 Denial of Service Vulnerability

Description Linux Kernel is prone to a denial-of-service vulnerability. Attackers can exploit this issue to cause denial-of-service conditions. Linux kernel versions prior to 5.3.11 are vulnerable. Technologies Affected Linux kernel 2.0.0 Linux kernel 2.0.1 Linux kernel 2.0.10 Linux kernel 2.0.11...

4.9CVSS1.2AI score0.00551EPSS
Exploits1References3Affected Software1
Symantec
Symantec
•added 2019/11/19 12:0 a.m.•68 views

WordPress Unspecified Directory Traversal Vulnerability

Description WordPress is prone to an unspecified directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input. Remote attackers may use a specially crafted request with directory-traversal sequences '../' to retrieve sensitive information or execute...

0.3AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/11/14 12:0 a.m.•68 views

Fortinet FortiOS CVE-2019-5593 Information Disclosure Vulnerability

Description Fortinet FortiOS is prone to an local information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Fortinet FortiOS 6.2.0, 6.0.0 through 6.0.6, 5.6.10 and prior are vulnerable. Technologies Affected Fortinet...

0.8AI score0.00189EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/07/09 12:0 a.m.•68 views

Microsoft Windows 'DirectWrite' API CVE-2019-1127 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsof...

1.8AI score0.20632EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/06/27 12:0 a.m.•68 views

PHP CVE-2019-11041 Heap Buffer Overflow Vulnerability

Description PHP is prone to a heap-based buffer-overflow vulnerability. Successfully exploiting this issue allow attackers to execute arbitrary code in the context of the affected application. Failed exploits will result in denial-of-service conditions. PHP versions prior to 7.3.8 are vulnerable...

6.8CVSS0.1AI score0.0442EPSS
Exploits1References2Affected Software2
Symantec
Symantec
•added 2019/06/11 12:0 a.m.•68 views

Microsoft Windows JET Database Engine CVE-2019-0909 Remote Code Execution Vulnerability

Description Microsoft Windows JET Database Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10...

0.7AI score0.036EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/06/11 12:0 a.m.•68 views

Microsoft Windows Common Log File System CVE-2019-0959 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1803 for 32-bit Systems Microsoft Windows 10 Version 1803 for ARM64-based...

3.2AI score0.03035EPSS
Exploits1Affected Software2
Symantec
Symantec
•added 2019/06/11 12:0 a.m.•68 views

Microsoft Windows GDI Component CVE-2019-1012 Information Disclosure Vulnerability

Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 16...

6.2AI score0.04314EPSS
Exploits0Affected Software3
Total number of security vulnerabilities5000