Lucene search
K
ZdiMost viewed

16763 matches found

Zero Day Initiative
Zero Day Initiative
•added 2017/09/22 12:0 a.m.•49 views

Trend Micro Control Manager CCGIServlet CnC parameters SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trend Micro Control Manager. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within processing of...

6CVSS8AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/08/07 12:0 a.m.•49 views

Eaton ELCSoft ELCSimulator Stack Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Eaton ELCSoft. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of network TCP requests by ELCSimulator.exe. A crafted request will cause...

7.5CVSS4.2AI score0.03583EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/08/01 12:0 a.m.•49 views

(Pwn2Own) Adobe Reader DC util streamFromString Uninitialized Memory Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

4.3CVSS2.3AI score0.03362EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/07/11 12:0 a.m.•49 views

(Pwn2Own) Microsoft Windows PlgBlt Integer Overflow Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the implementati...

6.9CVSS8.3AI score0.06473EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/05/11 12:0 a.m.•49 views

Hewlett Packard Enterprise Network Automation TrueControl Management Engine Service FileServlet Directory Traversal Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Hewlett Packard Enterprise Network Automation. Authentication is not required to exploit this vulnerability. The specific flaw exists within the FileServlet servlet. The issue results from...

7.8CVSS1.4AI score0.17332EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/05/03 12:0 a.m.•49 views

Hewlett Packard Enterprise Intelligent Management Center imcwlandm Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within the HPE iMC Server service, which listens on...

10CVSS3AI score0.22622EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/04/19 12:0 a.m.•49 views

ThinPrint TPView JPEG2000 Parsing Heap-based Buffer Overflow Privilege Escalation Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ThinPrint. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within JPEG2000 parsing. The...

6.2CVSS3.3AI score0.00369EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/03/30 12:0 a.m.•49 views

Trend Micro InterScan Web Security Virtual Appliance ConfigBackup Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Trend Micro InterScan Web Security Virtual Appliance. Authentication is required to exploit this vulnerability. The specific flaw exists within processing of the ConfigBackup servlet. A...

4CVSS2.9AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/03/09 12:0 a.m.•49 views

Trend Micro Deep Discovery Email Inspector ajax_checklicense_AC Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trend Micro Deep Discovery Email Inspector. Authentication is not required to exploit this vulnerability. The specific flaw exists within ajaxchecklicenseAC.php. The issue results from the lack of...

10CVSS7.1AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/01/10 12:0 a.m.•49 views

Microsoft Windows ADO Recordset GetRows Use-After-Free Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

2.6CVSS1.5AI score0.17016EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/05/10 12:0 a.m.•49 views

(Pwn2Own) Microsoft Edge JavaScript concat Method Uninitialized Memory Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Edge. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the implementatio...

6.8CVSS3.1AI score0.28261EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/03/10 12:0 a.m.•49 views

Microsoft Windows CreateWindowStation Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.2CVSS3.1AI score0.04404EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/01/08 12:0 a.m.•49 views

McAfee Application Control Kernel Driver Memory Corruption Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of McAfee Application Control. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

6.6CVSS3.3AI score0.02314EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/01/27 12:0 a.m.•49 views

Apple Mac OS X DFont Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Mac OSX. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of a...

6.8CVSS5.1AI score0.03597EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/11/19 12:0 a.m.•49 views

Microsoft Internet Explorer CPtsTextParaclient::GetApeCorners Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

6.8CVSS6.3AI score0.15525EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/10/14 12:0 a.m.•49 views

Adobe Flash Player casi32 Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.4AI score0.90208EPSS
Exploits5References1
Zero Day Initiative
Zero Day Initiative
•added 2014/09/03 12:0 a.m.•49 views

SAP Crystal Reports Datasource Stack Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP Crystal Reports. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling...

6.8CVSS6.6AI score0.03809EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/04/11 12:0 a.m.•49 views

(Pwn2Own) Mozilla Firefox ArrayBuffer Out-Of-Bounds Read/Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.8CVSS9.3AI score0.05576EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2014/04/03 12:0 a.m.•49 views

Apple QuickTime stsz Atom Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing o...

7.5CVSS6.4AI score0.03618EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2013/07/26 12:0 a.m.•49 views

Hewlett-Packard LeftHand Virtual SAN Appliance Hydra Login Remote Command Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP LeftHand Virtual SAN Appliance. Authentication is not required to exploit this vulnerability. The flaw exists within the hydra service, specifically with the LHNSessionManager component. This...

10CVSS3.8AI score0.61813EPSS
Exploits8References1
Zero Day Initiative
Zero Day Initiative
•added 2013/06/27 12:0 a.m.•49 views

Oracle Java Sequencer Security Manager Bypass Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.6CVSS3.7AI score0.05571EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/05/10 12:0 a.m.•49 views

Oracle Java java.util.concurrent.ConcurrentHashMap Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

9.3CVSS3.2AI score0.05691EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2012/06/06 12:0 a.m.•49 views

Apple QuickTime MPEG Stream Padding Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple's QuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within how the...

7.5CVSS2.7AI score0.03164EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2012/04/18 12:0 a.m.•49 views

Samba NDR PULL DFS EnumArray1 Heap Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Samba. Authentication is not required to exploit this vulnerability. The specific flaw exists within Samba's handling of a NDR PULL DFS EnumArray1 request. By sending a specially crafted packet, it...

10CVSS3.8AI score0.74034EPSS
Exploits9References1
Zero Day Initiative
Zero Day Initiative
•added 2012/03/26 12:0 a.m.•49 views

Webkit fontface Invalid Font Family Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Webkit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing and utilizati...

7.5CVSS6.1AI score0.02347EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2011/05/10 12:0 a.m.•49 views

Microsoft WINS Service Failed Response Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows Internet Name Service WINS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the wins.exe service distributed with Microsoft Windows...

10CVSS4.2AI score0.47566EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2010/10/06 12:0 a.m.•49 views

Adobe Acrobat Reader Multimedia Playing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

9CVSS6.9AI score0.05707EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2010/06/25 12:0 a.m.•49 views

Adobe Flash Player AVM newFrameState Integer Overfow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the AVM...

10CVSS4.5AI score0.06751EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2010/06/08 12:0 a.m.•49 views

Apple Webkit First-Letter Pseudo-Element Style Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple's Webkit. User interaction is required in that a user must visit a website or open a malicious document. The specific flaw exists within the way Webkit implements the 'first-letter' css style...

10CVSS3AI score0.08732EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2010/06/08 12:0 a.m.•49 views

Apple Webkit Option Element ContentEditable Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apples Webkit. User interaction is required in that the user must coerced into visiting a website or opening a malicious document. The specific flaw exists within how the library removes a particul...

10CVSS5AI score0.08732EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2009/10/13 12:0 a.m.•49 views

Adobe Reader Compact Font Format Malformed Index Memory Corruption Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat and Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists when the...

9.3CVSS3.4AI score0.05597EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2008/07/17 12:0 a.m.•49 views

Mozilla Firefox CSSValue Array Memory Corruption Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the browser's handling reference counters to...

9.3CVSS4.5AI score0.05284EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2024/06/12 12:0 a.m.•48 views

(Pwn2Own) Mozilla Firefox Exposed Dangerous Function Sandbox Escape Vulnerability

This vulnerability allows remote attackers to escape the sandbox on affected installations of Mozilla Firefox. An attacker must first obtain the ability to execute low-privileged code in the renderer process in order to exploit this vulnerability. The specific flaw exists within the SessionStore...

7.8CVSS7.2AI score0.047EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/05/19 12:0 a.m.•48 views

(Pwn2Own) QNAP TS-464 QR Code Device CRLF Injection Arbitrary Configuration Change Vulnerability

This vulnerability allows remote attackers to make arbitrary changes to configuration on affected installations of QNAP TS-464 NAS devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the privWizard API endpoints. The issue results from the lack o...

9.1CVSS6.6AI score0.24365EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/02/13 12:0 a.m.•48 views

Microsoft Windows Internet Shortcut SmartScreen Bypass Vulnerability

This vulnerability allows remote attackers to bypass the SmartScreen security feature to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The...

8.8CVSS7.3AI score0.95443EPSS
Exploits2References1
Zero Day Initiative
Zero Day Initiative
•added 2024/01/15 12:0 a.m.•48 views

Synology RT6600ax Qualcomm LDB Service Improper Input Validation Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Synology RT6600ax routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Qualcomm LDB service. The issue results from the lack of proper...

7.5CVSS7.5AI score0.00663EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2023/11/15 12:0 a.m.•48 views

Microsoft Office Word FBX File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Word. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing ...

7.8CVSS7.2AI score0.00979EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/09/11 12:0 a.m.•48 views

Hewlett Packard Enterprise OneView resetAdminPassword Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on affected installations of Hewlett Packard Enterprise OneView. Authentication is not required to exploit this vulnerability. The specific flaw exists within the resetAdminPassword endpoint. The issue results from the lack of...

9.8CVSS6.9AI score0.01216EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/04 12:0 a.m.•48 views

(Pwn2Own) Triangle MicroWorks SCADA Data Gateway Event Log Improper Output Neutralization For Logs Arbitrary File Write Vulnerability

This vulnerability allows remote attackers to write arbitrary files on affected installations of Triangle MicroWorks SCADA Data Gateway. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

4.4CVSS7AI score0.01028EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/02/24 12:0 a.m.•48 views

Microsoft Print 3D PLY File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Print 3D. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

6.6CVSS7.6AI score0.00657EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/02/09 12:0 a.m.•48 views

(Pwn2Own) Ubiquiti Networks EdgeOS dhcp6c Command Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Ubiquiti Networks EdgeOS. Authentication is not required to exploit this vulnerability. The specific flaw exists within the dhcp6c daemon. The issue results from the lack of proper validati...

7.5CVSS8.8AI score0.0089EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2023/01/18 12:0 a.m.•48 views

Microsoft Windows GreStartDocInternal Use-After-Free Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

7.8CVSS8.2AI score0.00476EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/01/18 12:0 a.m.•48 views

Microsoft 3D Builder GLB File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft 3D Builder. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing o...

6.6CVSS7.5AI score0.00939EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/08/18 12:0 a.m.•48 views

PDF-XChange Editor EMF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS5.3AI score0.0077EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/08/18 12:0 a.m.•48 views

Microsoft Outlook MIME Header Heap Corruption Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Microsoft Outlook. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of MIME headers. Crafted MIME headers within an email messa...

7.5CVSS2.5AI score0.22441EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/06/01 12:0 a.m.•48 views

Microsoft Windows DiagTrack Service Link Following Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the DiagTrack...

7.8CVSS6.9AI score0.00917EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/05/10 12:0 a.m.•48 views

Microsoft Windows Print Spooler Service Directory Traversal Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Pri...

5.5CVSS3AI score0.01128EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/03/18 12:0 a.m.•48 views

Siemens Simcenter Femap NEU File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Simcenter Femap. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS7.6AI score0.01211EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
•added 2022/03/16 12:0 a.m.•48 views

Siemens Simcenter Femap BDF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Simcenter Femap. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS7.7AI score0.01362EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/03/09 12:0 a.m.•48 views

Microsoft Windows CD-ROM Driver Uninitialized Pointer Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the CD-ROM drive...

7.8CVSS7.8AI score0.00895EPSS
Exploits0References1
Total number of security vulnerabilities5000