6867 matches found
Microsoft Windows GDI Component CVE-2019-1466 Information Disclosure Vulnerability
Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 16...
Samba CVE-2019-14861 Remote Denial of Service Vulnerability
Description Samba is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause the application to crash, denying service to legitimate users. Samba version 4.x versions prior to 4.11.3, 4.10.11 and 4.9.17 are vulnerable. Technologies Affected Samba Samba 4.0.0...
Redhat KeyCloak CVE-2019-14837 Information Disclosure Vulnerability
Description Redhat KeyCloak is prone to an information-disclosure vulnerability. Successful exploits may allow the attacker to obtain sensitive information or to perform unauthorized actions. This may lead to other attacks. Technologies Affected Redhat Single Sign-On 7.3 for RHEL 6 Redhat Single...
Multiple F5 BIG-IP Products CVE-2019-6673 Denial of Service Vulnerability
Description Multiple F5 BIG-IP Products are prone to a denial-of-service vulnerability. Attackers can exploit this issue to cause a denial of service condition. Technologies Affected F5 BIG-IP AAM 14.1.0 F5 BIG-IP AAM 14.1.0.1 F5 BIG-IP AAM 14.1.0.2 F5 BIG-IP AAM 14.1.0.5 F5 BIG-IP AAM 14.1.0.6 F...
Cisco Unified Communications Manager CVE-2019-15972 SQL Injection Vulnerability
Description Cisco Unified Communications Manager is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit...
Microsoft Internet Explorer Scripting Engine CVE-2019-1429 Remote Memory Corruption Vulnerability
Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Internet Explorer 9, 10, and 11 are...
Microsoft Windows splwow64 CVE-2019-1380 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges on the system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems...
Microsoft Windows CVE-2019-1418 Information Disclosure Vulnerability
Description Microsoft Windows is prone to a local information-disclosure vulnerability. A local attacker can leverage this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...
Cisco Small Business RV Series Routers CVE-2019-15271 Arbitrary Command Execution Vulnerability
Description Cisco Small Business RV Series Routers are prone to an arbitrary command-execution vulnerability. An attacker can exploit this issue to execute arbitrary commands on the affected device with root privileges. This issue is being tracked by Cisco Bug IDs CSCvq95596, CSCvq97028,...
IBM Security Secret Server CVE-2019-4634 Multiple Information Disclosure Vulnerabilities
Description IBM Security Secret Server is prone to multiple information-disclosure vulnerabilities. Remote attackers can exploit these issues to obtain sensitive information that may lead to further attacks. Technologies Affected IBM Security Secret Server 10.4.0 IBM Security Secret Server 10.5.0...
Xen CVE-2019-18424 Privilege Escalation Vulnerability
Description Xen is prone to a privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges on the affected system. Technologies Affected Citrix Hypervisor 8.0 Citrix XenServer 7.0 Citrix XenServer 7.1 LTSR CU2 Citrix XenServer 7.6 Xen Xen 3.2.0 Xen Xen 3.2.1...
Ansible CVE-2019-14864 Multiple Information Disclosure Vulnerabilities
Description Ansible is prone to multiple information-disclosure vulnerabilities. Successfully exploiting these issues may allow an attacker to obtain sensitive information that may aid in further attacks. Technologies Affected AnsibleWorks ansible Redhat Ansible Engine 2 Recommendations Block...
Oracle BI Publisher Multiple Remote Security Vulnerabilities
Description Oracle BI Publisher is prone to multiple remote security vulnerabilities. These vulnerabilities can be exploited over the 'HTTP' protocol. The 'Mobile Service' and 'BI Publisher Security' components are affected. These vulnerabilities affect the following supported versions: 11.1.1.9....
Oracle Hyperion Enterprise Performance Management Architect Remote Security Vulnerability
Description Oracle Hyperion Enterprise Performance Management Architect is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Workspace' sub component is affected. This vulnerability affects the following supported versions: 11.1.2.4...
WordPress Prior to 5.2.4 Multiple Security Vulnerabilities
Description WordPress is prone to multiple security vulnerabilities. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and...
Microsoft SharePoint CVE-2019-1330 Remote Privilege Escalation Vulnerability
Description Microsoft SharePoint is prone to a remote privilege-escalation vulnerability. An attacker may exploit this issue to gain elevated privileges. Successful exploits may aid in further attacks. Technologies Affected Microsoft SharePoint Enterprise Server 2016 Microsoft SharePoint Foundati...
SAP Landscape Management CVE-2019-0380 Information Disclosure Vulnerability
Description SAP Landscape Management is prone to an unspecified information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. SAP Landscape Management 3.0 is vulnerable; other versions may also be affected...
PHP 'unserialize()' Stack Buffer Overflow Vulnerability
Description PHP is prone to a remote stack-based buffer-overflow because it fails to adequately bounds-check user-supplied data before copying it into an insufficiently sized buffer. An attacker can exploit this issue to cause a denial-of-service condition. Due to the nature of this issue, code...
Microsoft Outlook CVE-2019-1204 Remote Privilege Escalation Vulnerability
Description Microsoft Outlook is prone to a remote privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Technologies Affected Microsoft Office 2019 for 32-bit editions Microsoft Office 2019 for 64-bit editions Microsoft Office 365 ProPlus for 32-bit...
Microsoft Windows DHCP Server CVE-2019-1212 Remote Denial of Service Vulnerability
Description Microsoft Windows DHCP Server is prone to a remote denial of service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based...
Multiple F5 BIG-IP Products CVE-2019-6647 Memory Leak Denial of Service Vulnerability
Description Multiple F5 BIG-IP Products are prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause excessive memory consumption; resulting in denial-of-service conditions. Technologies Affected F5 BIG-IP AAM 11.5.1 F5 BIG-IP AAM 11.6.4 F5 BIG-IP AAM 12.1.0 F5 BIG-...
Microsoft Windows Subsystem for Linux CVE-2019-0682 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1709 for ARM64-based Systems Microsoft Windows 10 Version 1803 for 32-bit...
WinRAR Multiple Security Vulnerabilities
Description WinRAR is prone to the following security vulnerabilities: 1. Multiple arbitrary code-execution vulnerabilities 2. A security vulnerability Attackers can exploit these issues to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts...
Microsoft Office SharePoint CVE-2019-0558 Cross Site Scripting Vulnerability
Description Microsoft Office SharePoint is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This...
Microsoft Visual Studio CVE-2019-0546 Remote Code Execution Vulnerability
Description Microsoft Visual Studio is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the current-user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft Visu...
Microsoft Internet Explorer VBScript Engine CVE-2018-8625 Remote Code Execution Vulnerability
Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the current user. Failed exploit attempts may result in a denial of service condition. Technologies Affected Microsoft Internet...
Microsoft Windows GDI Component CVE-2018-8596 Information Disclosure Vulnerability
Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 16...
Microsoft Windows Registry CVE-2018-8410 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to gain elevated privileges on the affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for...
Microsoft Internet Explorer and Edge CVE-2018-8452 Information Disclosure Vulnerability
Description Microsoft Internet Explorer and Edge are prone to an information disclosure vulnerability. Successful exploits will allow attackers to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft ChakraCore Microsoft Edge Microsoft Internet Explorer 11...
Microsoft Windows NDIS CVE-2018-8343 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attackers may exploit this issue to gain elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft Windo...
Microsoft Internet Explorer CVE-2018-8316 Remote Code Execution Vulnerability
Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. An attacker can exploit this issue to execute arbitrary code in the context of the current user. Faile...
Microsoft Windows GDI Component CVE-2018-8394 Information Disclosure Vulnerability
Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 16...
Microsoft Windows 'HTTP.sys' CVE-2018-8226 Denial of Service Vulnerability
Description Microsoft Windows is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems Microso...
Microsoft Internet Explorer and Edge CVE-2018-1022 Remote Memory Corruption Vulnerability
Description Microsoft Internet Explorer and Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft...
Microsoft SharePoint Server CVE-2018-8156 Remote Privilege Escalation Vulnerability
Description Microsoft SharePoint Server is prone to a remote privilege-escalation vulnerability because it fails to properly sanitize user-supplied input. An attacker may exploit this issue to gain elevated privileges. Successful exploits may aid in further attacks. Technologies Affected Microsof...
Microsoft Internet Explorer and Edge CVE-2018-0891 Information Disclosure Vulnerability
Description Microsoft Internet Explorer and Edge are prone to an information disclosure vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Successful exploits will allow attackers to obtain sensitive information that may aid in...
Microsoft SharePoint Server CVE-2018-0944 Remote Privilege Escalation Vulnerability
Description Microsoft SharePoint Server is prone to a remote privilege-escalation vulnerability because it fails to properly sanitize user-supplied input. An attacker may exploit this issue to gain elevated privileges. Successful exploits may aid in further attacks. Technologies Affected Microsof...
Microsoft Edge Scripting Engine CVE-2018-0860 Remote Memory Corruption Vulnerability
Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...
Microsoft Internet Explorer Scripting Engine CVE-2018-0866 Remote Memory Corruption Vulnerability
Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Internet Explorer 9, 10 and 11 are...
Microsoft ASP.NET Core CVE-2017-11883 Denial of Service Vulnerability
Description Microsoft ASP.NET Core is prone to a remote denial of service vulnerability. An attacker can exploit this issue to cause a denial of service condition. ASP.NET Core 1.0, 1.1 and 2.0 are vulnerable. Technologies Affected Microsoft ASP.NET Core 1.0 Microsoft ASP.NET Core 1.1 Microsoft...
Microsoft Windows Device Guard CVE-2017-11830 Security Bypass Vulnerability
Description Microsoft Windows is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems...
Microsoft Wordpad CVE-2017-8588 Remote Code Execution Vulnerability
Description Microsoft Wordpad is prone to a remote code-execution vulnerability. Successfully exploiting this issue may result in the execution of arbitrary code in the context of the affected system. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affecte...
Microsoft Windows Kernel 'Win32k.sys' CVE-2017-8580 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to execute arbitrary code with elevated privileges. Failed exploit attempts may result in a denial of service condition; this can result in the attacker gaining complete contro...
Microsoft Windows Kernel CVE-2017-8474 Local Information Disclosure Vulnerability
Description Microsoft Windows is prone to a local information-disclosure vulnerability. A local attacker can leverage this issue to disclose sensitive information that may aid in further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Versi...
Microsoft Windows Uniscribe CVE-2017-8534 Information Disclosure Vulnerability
Description Microsoft Windows Uniscribe is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Office 2007 Service Pack 3 Microsoft Office 2010 Service Pack 2...
Microsoft Edge and Internet Explorer CVE-2017-0238 Remote Memory Corruption Vulnerability
Description Microsoft Edge and Internet Explorer are prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. Attackers can exploit this issue to execute arbitrary code in the context of the currentl...
Microsoft Windows Kernel 'Win32k.sys' CVE-2017-0246 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to run processes with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Syste...
Microsoft Windows CVE-2017-0039 DLL Loading Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can leverage this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7 for x64-based Systems SP1 Microso...
Microsoft Edge CVE-2017-0138 Scripting Engine Remote Memory Corruption Vulnerability
Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. This could allow the attacker to execute arbitrary code in the context of the currently logged-in user. Failed...
Microsoft Edge CVE-2017-0140 Security Bypass Vulnerability
Description Microsoft Edge is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions; this may aid in launching further attacks. Technologies Affected Microsoft Edge Recommendations Block external acces...