|
CVE-2012-5076
|
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 7 and earlier allows remote attackers to... |
n/a |
n/a |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2012-2539
|
Microsoft Word 2003 SP3, 2007 SP2 and SP3, and 2010 SP1; Word Viewer; Office Compatibility Pack SP2 and SP3; and Office Web Apps 2010 SP1 allow... |
n/a |
n/a |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2012-2034
|
Adobe Flash Player before 10.3.183.20 and 11.x before 11.3.300.257 on Windows and Mac OS X; before 10.3.183.20 and 11.x before 11.2.202.236 on... |
n/a |
n/a |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2021-26085
|
Affected versions of Atlassian Confluence Server allow remote attackers to view restricted resources via a Pre-Authorization Arbitrary File Read... |
Atlassian |
Confluence Server, Confluence Data Center |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2011-2005
|
afd.sys in the Ancillary Function Driver in Microsoft Windows XP SP2 and SP3 and Server 2003 SP2 does not properly validate user-mode input passed... |
n/a |
n/a |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2012-0518
|
Unspecified vulnerability in the Oracle Application Server Single Sign-On component in Oracle Fusion Middleware 10.1.4.3.0 allows remote attackers... |
n/a |
n/a |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2022-1096
|
Type confusion in V8 in Google Chrome prior to 99.0.4844.84 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. |
Google |
Chrome |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2022-0543
|
It was discovered, that redis, a persistent key-value database, due to a packaging issue, is prone to a (Debian-specific) Lua sandbox escape, which... |
Debian |
redis |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2021-38646
|
Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability |
Microsoft |
Microsoft Office 2019, Microsoft 365 Apps for Enterprise, Microsoft Office 2016, Microsoft Office 2013 Service Pack 1 |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2021-34486
|
Windows Event Tracing Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1809, Windows Server 2019, Windows Server 2019 (Server Core installation), Windows 10 Version 1909, Windows 10 Version 21H1, Windows 10 Version 2004, Windows Server version 2004, Windows 10 Version 20H2, Windows Server version 20H2 |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2010-4398
|
Stack-based buffer overflow in the RtlQueryRegistryValues function in win32k.sys in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2,... |
n/a |
n/a |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2021-20028
|
Improper neutralization of a SQL Command leading to SQL Injection vulnerability impacting end-of-life Secure Remote Access (SRA) products,... |
SonicWall |
SonicWall SRA/SMA100 |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2019-7483
|
In SonicWall SMA100, an unauthenticated Directory Traversal vulnerability in the handleWAFRedirect CGI allows the user to test for the presence of... |
SonicWall |
SMA100 |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2018-8440
|
An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC), aka "Windows ALPC... |
Microsoft |
Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2018-8406
|
An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory, aka "DirectX... |
Microsoft |
Windows Server 2016, Windows 10, Windows 10 Servers |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2018-8405
|
An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory, aka "DirectX... |
Microsoft |
Windows Server 2012 R2, Windows RT 8.1, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2017-0213
|
Windows COM Aggregate Marshaler in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2,... |
Microsoft Corporation |
Windows COM |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2017-0059
|
Microsoft Internet Explorer 9 through 11 allow remote attackers to obtain sensitive information from process memory via a crafted web site, aka... |
Microsoft Corporation |
Internet Explorer |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2017-0037
|
Microsoft Internet Explorer 10 and 11 and Microsoft Edge have a type confusion issue in the... |
Microsoft Corporation |
Internet Browser |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2016-7201
|
The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory... |
n/a |
n/a |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2016-7200
|
The Chakra JavaScript scripting engine in Microsoft Edge allows remote attackers to execute arbitrary code or cause a denial of service (memory... |
n/a |
n/a |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2016-0189
|
The Microsoft (1) JScript 5.8 and (2) VBScript 5.7 and 5.8 engines, as used in Internet Explorer 9 through 11 and other products, allow remote... |
n/a |
n/a |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2016-0151
|
The Client-Server Run-time Subsystem (CSRSS) in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and... |
n/a |
n/a |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2016-0040
|
The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows local users to gain privileges via a... |
n/a |
n/a |
2022-03-28 00:00:00 UTC |
CISA |
|
CVE-2015-2426
|
Buffer underflow in atmfd.dll in the Windows Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows... |
n/a |
n/a |
2022-03-28 00:00:00 UTC |
CISA |