Vulnerability & Exploit Database

Displaying entries 51 - 60 of 138714 in total

Microsoft CVE-2018-8415: Microsoft PowerShell Tampering Vulnerability Vulnerability

  • Severity: 4
  • Published: November 13, 2018

A tampering vulnerability exists in PowerShell that could allow an attacker to execute unlogged code. To exploit this vulnerability, an attacker would need to log on to the affected system and run a specially crafted application. The security update addresses the vulnerability by correcting log management of special characters.

Microsoft CVE-2018-8408: Windows Kernel Information Disclosure Vulnerability Vulnerability

  • Severity: 4
  • Published: November 13, 2018

An information disclosure vulnerability exists when the Windows kernel improperly initializes objects in memory. To exploit this vulnerability, an authenticated attacker could run a specially crafted application. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. Th...

Microsoft CVE-2018-8407: MSRPC Information Disclosure Vulnerability Vulnerability

  • Severity: 4
  • Published: November 13, 2018

An information disclosure vulnerability exists when "Kernel Remote Procedure Call Provider" driver improperly initializes objects in memory. To exploit this vulnerability, an authenticated attacker could run a specially crafted application. An attacker who successfully exploited this vulnerability could obtain information to further comp...

Microsoft CVE-2018-8256: Microsoft PowerShell Remote Code Execution Vulnerability Vulnerability

  • Severity: 4
  • Published: November 13, 2018

A remote code execution vulnerability exists when PowerShell improperly handles specially crafted files. An attacker who successfully exploited this vulnerability could execute malicious code on a vulnerable system. To exploit the vulnerability, an attacker must send a specially crafted file to a vulnerable system. The security update fi...

Microsoft CVE-2018-15978: Security updates available for Adobe Flash Player Vulnerability

  • Severity: 4
  • Published: November 13, 2018
Adobe has released security updates for Adobe Flash Player for Windows, macOS, Linux and Chrome OS. These updates address an important vulnerability in Adobe Flash Player 31.0.0.122 and earlier versions.  Successful exploitation could lead to information disclosure.

VMware Workstation: Vulnerability (VMSA-2018-0027) (CVE-2018-6981) Vulnerability

  • Severity: 4
  • Published: November 12, 2018

VMware would like to thank the organizers of GeekPwn2018 and security researchers Zhangyanyu of Chaitin Tech and SmallerDragon for reporting this issue to us.   The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the identifier CVE-2018-6981 to this issue. Column 5 of the following table lists the action requir...