6867 matches found
Microsoft Windows IIS Server CVE-2019-0941 Remote Denial of Service Vulnerability
Description Microsoft Windows IIS Server is prone to a remote denial of service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based...
Microsoft Windows SMB Server CVE-2017-0272 Remote Code Execution Vulnerability
Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits will allow an attacker to execute arbitrary code on the target system. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit...
Microsoft Windows splwow64 CVE-2019-0880 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges on the system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems...
Microsoft Remote Desktop Protocol CVE-2012-0002 Remote Code Execution Vulnerability
Description Microsoft Remote Desktop Protocol is prone to a remote code-execution vulnerability. Successful exploits will allow the attacker to execute arbitrary code in the context of the affected process. This may facilitate a complete system compromise. Failed attacks may cause denial-of-servi...
Microsoft Exchange Server CVE-2018-8448 Remote Privilege Escalation Vulnerability
Description Microsoft Exchange Server is prone to a remote privilege-escalation vulnerability. Attackers can exploit this issue to gain elevated privileges. Technologies Affected Microsoft Exchange Server 2013 Cumulative Update 21 Microsoft Exchange Server 2016 Cumulative Update 10 Recommendation...
Microsoft .NET Core CVE-2018-8292 Information Disclosure Vulnerability
Description The Microsoft .NET Core is prone to an information-disclosure vulnerability. An attacker can exploit this issue to obtain sensitive information. Successful exploits will lead to other attacks. Technologies Affected Microsoft .NET Core 1.0 Microsoft .NET Core 1.1 Microsoft .NET Core 2....
Microsoft Windows Media Player CVE-2018-8481 Information Disclosure Vulnerability
Description Microsoft Windows Media Player is prone to a information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 1...
Apache MINA CVE-2019-0231 Information Disclosure Vulnerability
Description Apache MINA is prone to an information-disclosure vulnerability. An attacker can exploit this issue to gain access to sensitive information; this may lead to further attacks. Technologies Affected Apache MINA 1.0 Apache MINA 2.0.20 Apache MINA 2.1.0 Redhat Gluster Storage 3.0 Redhat...
HAProxy CVE-2019-19330 CRLF Injection Vulnerability
Description HAProxy is prone to a CRLF-injection vulnerability. An attacker can exploit this issue to add arbitrary headers to a webpage. This may aid in further attacks. HAProxy versions prior to 2.0.10 are vulnerable. Technologies Affected haproxy haproxy 1.4 haproxy haproxy 1.4.0 haproxy hapro...
VMware Workstation and Fusion VMSA-2019-0021 Multiple Security Vulnerabilities
Description VMware Workstation and Fusion are prone to multiple security vulnerabilities. An attacker can leverage these issues to execute arbitrary code in the context of the affected system, gain sensitive information and cause a denial of service condition. The following VMware products are...
Microsoft Exchange Server CVE-2018-8265 Remote Code Execution Vulnerability
Description Microsoft Exchange Server is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected...
FreeIPA CVE-2019-10195 Information Disclosure Vulnerability
Description FreeIPA is prone to a information-disclosure vulnerability. The attackers can exploit this issue to obtain sensitive information that may lead to further attacks. FreeIPA version 4.6.x through and prior to 4.6.7, 4.7.x through and prior to4.7.4 and 4.8.x through and prior to 4.8.3 are...
Teamviewer CVE-2019-18251 Remote Security Vulnerability
Description Teamviewer is prone to a remote security vulnerability. An attacker can leverage this issue to bypass security restrictions and perform unauthorized actions. This may aid in further attacks. Teamviewer 5.0.8703 QS is vulnerable. Technologies Affected Omron CX-Supervisor 3.4.1 Omron...
Microsoft Windows TCP/IP CVE-2018-8493 Information Disclosure Vulnerability
Description Microsoft Windows is prone to a information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 160...
Microsoft Windows CVE-2015-1701 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges. Successful exploits will result in the complete compromise of affected computers. Technologies Affected Microsoft Windo...
Microsoft SQL Server Reporting Services CVE-2019-1332 Cross Site Scripting Vulnerability
Description Microsoft SQL Server Reporting Services SSRS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...
Microsoft Windows Win32k CVE-2019-1458 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...
Microsoft ASP.NET Core CVE-2019-0545 Information Disclosure Vulnerability
Description Microsoft ASP.NET Core is prone to an information disclosure vulnerability. Successful exploits will allow attackers to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft .NET Core 2.1 Microsoft .NET Core 2.2 Microsoft .NET Core 2.3 Microsoft...
Microsoft Windows Theme API CVE-2018-8413 Remote Code Execution Vulnerability
Description Microsoft Windows Theme API is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the current user. Failed exploit attempts will likely cause a denial-of-service condition. Technologies Affected Microsoft Window...
Multiple Vendor TCP Sequence Number Approximation Vulnerability
Description A vulnerability in TCP implementations may permit unauthorized remote users to reset TCP sessions. This issue affects products released by multiple vendors. Exploiting this issue may permit remote attackers to more easily approximate TCP sequence numbers. The problem is that affected...
Microsoft Windows CVE-2019-1040 NTLM Tampering Security Bypass Vulnerability
Description Microsoft Windows is prone to a security bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for...
Symantec Endpoint Detection & Response Security Update
Summary Symantec - A Division of Broadcom has released an update to address an issue that was discovered in the Symantec Endpoint Detection & Response SEDR product. Affected Products Symantec Endpoint Detection & Response SEDR --- CVE | Affected Version | Remediation CVE-2020-12593 | Prior to 4.5...
Microsoft Windows CVE-2019-1064 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to gain elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft...
Microsoft .NET CVE-2019-0820 Denial of Service Vulnerability
Description Microsoft .NET is prone to a remote denial of service vulnerability. An attacker can exploit this issue to cause a denial of service condition. Technologies Affected Microsoft .NET Core 1.0 Microsoft .NET Core 1.1 Microsoft .NET Core 2.1 Microsoft .NET Core 2.2 Microsoft .NET Framewor...
Linux kernel CVE-2019-16994 Memory Leak Denial of Service Vulnerability
Description Linux kernel is prone to a denial-of-service vulnerability. Attackers may leverage this issue to cause a denial-of-service condition, denying service to legitimate users. Versions prior to Linux kernel 5.0 are vulnerable. Technologies Affected Linux kernel 2.6.0 Linux kernel 2.6.1 Lin...
Microsoft Windows Graphics Component CVE-2018-8432 Remote Code Execution Vulnerability
Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits may allow an attacker to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Excel Viewer...
Microsoft Windows Kernel CVE-2018-8497 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based...
Adobe Flash Player CVE-2017-11292 Type Confusion Remote Code Execution Vulnerability
Description Adobe Flash Player is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely cause a denial-of-service condition. Technologies Affected...
Microsoft Windows DNS CVE-2018-8320 Security Bypass Vulnerability
Description Microsoft Windows is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions; this may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit...
Microsoft Exchange Server CVE-2018-8154 Remote Code Execution Vulnerability
Description Microsoft Exchange Server is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected...
Microsoft Visual Studio Code CVE-2019-1414 Local Privilege Escalation Vulnerability
Description Microsoft Visual Studio Code is prone to a local privilege-escalation vulnerability. An attackers may exploit this issue to gain elevated privileges. Technologies Affected Microsoft Visual Studio Code Recommendations Permit local access for trusted individuals only. Where possible, us...
Microsoft Windows GDI Component CVE-2018-8472 Local Information Disclosure Vulnerability
Description Microsoft Windows is prone to a local information-disclosure vulnerability. A local attacker can leverage this issue to disclose sensitive information that may aid in further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Versi...
Microsoft Windows Shell CVE-2018-8495 Remote Code Execution Vulnerability
Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsof...
Django CVE-2019-19118 Privilege Escalation Vulnerability
Description Django is prone to a privilege-escalation vulnerability. A remote attacker can exploit this issue to gain elevated privileges and perform unauthorized actions on an affected system. Django versions prior to 2.2.8 and 2.1.15 are vulnerable. Technologies Affected Djangoproject Django 2....
Microsoft Windows Win32k CVE-2019-1132 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7 for x64-based Syste...
Microsoft Edge CVE-2018-8512 Security Bypass Vulnerability
Description Microsoft Edge is prone to a security-bypass vulnerability. Successfully exploiting this issue may allow an attacker to bypass certain security restrictions and perform unauthorized actions. This may lead to other attacks. Technologies Affected Microsoft Edge Recommendations Run all...
Microsoft Excel CVE-2018-8502 Security Bypass Vulnerability
Description Microsoft Excel is prone to a security-bypass vulnerability. An attacker can leverage this issue to bypass certain security restrictions and execute arbitrary code in the context of the affected application; this may aid in launching further attacks. Technologies Affected Microsoft...
Microsoft Edge Chakra Scripting Engine CVE-2018-8513 Remote Memory Corruption Vulnerability
Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...
Microsoft Office CVE-2018-0798 Memory Corruption Vulnerability
Description Microsoft Office is prone to a memory-corruption vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...
Microsoft SQL Server CVE-2016-7253 Privilege Escalation Vulnerability
Description Microsoft SQL Server is prone to a privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Technologies Affected Microsoft SQL Server 2012 for 32-bit Systems Service Pack 2 Microsoft SQL Server 2012 for 32-bit Systems Service Pack 3 Microsof...
Microsoft Windows CVE-2018-8333 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for...
Microsoft Azure IoT Device Client SDK CVE-2018-8531 Remote Memory Corruption Vulnerability
Description Microsoft Azure IoT Device Client SDK is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsof...
Microsoft Windows .NET Framework CVE-2017-0160 Remote Code Execution Vulnerability
Description Microsoft Windows is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the affected system. Technologies Affected Microsoft .NET Framework 2.0 SP2 Microsoft .NET Framework 3.5 Microsoft .NET Framework 3.5.1...
Microsoft Windows Device Guard CVE-2018-8492 Local Security Bypass Vulnerability
Description Microsoft Windows is prone to a local security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems...
Linux Kernel Multiple Local Privilege Escalation Vulnerabilities
Description Linux Kernel is prone to multiple local privilege-escalation vulnerabilities. An attacker can exploit these issues to gain elevated privileges. Linux Kernel 5.3.2 and prior versions are vulnerable. Technologies Affected Linux kernel 2.6.34 Linux kernel 2.6.34.1 Linux kernel 2.6.34.13...
Microsoft Windows Hyper-V CVE-2018-8490 Remote Code Execution Vulnerability
Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits allow attackers to execute arbitrary code in the context of the host operating system. Failed exploit attempts will result in a denial of service condition. Technologies Affected Microsoft Hyper-V...
FasterXML Jackson-databind CVE-2019-14379 Remote Code Execution Vulnerability
Description FasterXML Jackson-databind is prone to a remote-code execution vulnerability. Successfully exploiting this issue allows attackers to execute arbitrary code in the context of the affected application. Failed exploits will result in denial-of-service conditions. Versions prior to...
Linux Kernel CVE-2019-11477 Integer Overflow Vulnerability
Description Linux Kernel is prone to a remote integer-overflow vulnerability. An attacker can exploit this issue to cause denial-of-service conditions. Technologies Affected Bluecoat Mail Threat Defense 1.1 Bluecoat Malware Analysis Appliance 4.2 Bluecoat PacketShaper S-Series 11.10 Bluecoat...
Microsoft Office CVE-2019-1109 Spoofing Vulnerability
Description Microsoft Office is prone to a spoofing vulnerability. Attackers can exploit this issue to conduct spoofing attacks and perform unauthorized actions; other attacks are also possible. Technologies Affected Microsoft Office 2013 RT Service Pack 1 Microsoft Office 2013 Service Pack 1...
Microsoft Edge Chakra Scripting Engine CVE-2018-8505 Remote Memory Corruption Vulnerability
Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...