Latest CVE Feed
-
5.5
MEDIUMCVE-2017-0007
Device Guard in Microsoft Windows 10 Gold, 1511, 1607, and Windows Server 2016 allows remote attackers to modify PowerShell script without invalidating associated signatures, aka "PowerShell Security Feature Bypass Vulnerability."... Read more
- Published: Mar. 17, 2017
- Modified: Apr. 20, 2025
-
5.5
MEDIUMCVE-2024-40837
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15. An app may be able to access protected user data.... Read more
Affected Products : macos- Published: Sep. 17, 2024
- Modified: Mar. 25, 2025
-
5.5
MEDIUMCVE-2017-0060
The Graphics Device Interface (GDI) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607 allows remote attackers to obtain sens... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 office lync skype_for_business +4 more products- Published: Mar. 17, 2017
- Modified: Apr. 20, 2025
-
5.5
MEDIUMCVE-2019-0621
An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0661, CVE-2019-0663.... Read more
Affected Products : windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019 windows_server windows +1 more products- Published: Mar. 05, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2016-9985
IBM Cognos Server 10.1.1 and 10.2 stores highly sensitive information in log files that could be read by a local user. IBM Reference #: 1999671.... Read more
Affected Products : cognos_business_intelligence- Published: Mar. 08, 2017
- Modified: Apr. 20, 2025
-
5.5
MEDIUMCVE-2019-0147
Insufficient input validation in i40e driver for Intel(R) Ethernet 700 Series Controllers versions before 7.0 may allow an authenticated user to potentially enable a denial of service via local access.... Read more
Affected Products : ethernet_controller_x710-tm4_firmware ethernet_controller_x710-at2_firmware ethernet_controller_xxv710-am2_firmware ethernet_controller_xxv710-am1_firmware ethernet_controller_x710-bm2_firmware ethernet_controller_710-bm1_firmware ethernet_700_series_software ethernet_controller_x710-tm4 ethernet_controller_x710-at2 ethernet_controller_xxv710-am2 +3 more products- Published: Nov. 14, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2019-0146
Resource leak in i40e driver for Intel(R) Ethernet 700 Series Controllers versions before 2.8.43 may allow an authenticated user to potentially enable a denial of service via local access.... Read more
Affected Products : ethernet_controller_x710-tm4_firmware ethernet_controller_x710-at2_firmware ethernet_controller_xxv710-am2_firmware ethernet_controller_xxv710-am1_firmware ethernet_controller_x710-bm2_firmware ethernet_controller_710-bm1_firmware ethernet_700_series_software ethernet_controller_x710-tm4 ethernet_controller_x710-at2 ethernet_controller_xxv710-am2 +3 more products- Published: Nov. 14, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2024-44154
A memory initialization issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.7, macOS Sequoia 15. Processing a maliciously crafted file may lead to unexpected app termination.... Read more
Affected Products : macos- Published: Sep. 17, 2024
- Modified: Mar. 18, 2025
-
5.5
MEDIUMCVE-2016-9960
game-music-emu before 0.6.1 allows local users to cause a denial of service (divide by zero and process crash).... Read more
- Published: Jun. 06, 2017
- Modified: Apr. 20, 2025
-
5.5
MEDIUMCVE-2018-8549
A security feature bypass exists when Windows incorrectly validates kernel driver signatures, aka "Windows Security Feature Bypass Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows Server 2019, Windows Serve... Read more
Affected Products : windows_10 windows_8.1 windows_rt_8.1 windows_server_2012 windows_server_2016 windows_server_2019- Published: Nov. 14, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2024-40806
An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3, macOS Sonoma 14.6.... Read more
- Published: Jul. 29, 2024
- Modified: Mar. 25, 2025
-
5.5
MEDIUMCVE-2024-40801
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14.7, macOS Sequoia 15. An app may be able to access protected user data.... Read more
Affected Products : macos- Published: Sep. 17, 2024
- Modified: Mar. 25, 2025
-
5.5
MEDIUMCVE-2024-40804
The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6. A malicious application may be able to access private information.... Read more
Affected Products : macos- Published: Jul. 29, 2024
- Modified: Mar. 20, 2025
-
5.5
MEDIUMCVE-2024-40810
An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Sonoma 14.6. An app may be able to cause a coprocessor crash.... Read more
Affected Products : macos- Published: Oct. 24, 2024
- Modified: Oct. 29, 2024
-
5.5
MEDIUMCVE-2018-7568
The parse_die function in dwarf1.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service (integer overflow and application crash) via an ELF file with corrupt dw... Read more
Affected Products : enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation binutils- Published: Feb. 28, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2024-40793
This issue was addressed by removing the vulnerable code. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, macOS Sonoma 14.6. An app may be able to access user-sensit... Read more
- Published: Jul. 29, 2024
- Modified: Mar. 14, 2025
-
5.5
MEDIUMCVE-2018-7455
An out-of-bounds read in JPXStream::readTilePart in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml.... Read more
Affected Products : xpdf- Published: Feb. 24, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2024-44135
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14.7, macOS Sequoia 15. An app may be able to access protected files within an App Sandbox container.... Read more
Affected Products : macos- Published: Sep. 17, 2024
- Modified: Mar. 19, 2025
-
5.5
MEDIUMCVE-2018-6921
In FreeBSD before 11.1-STABLE(r332066) and 11.1-RELEASE-p10, due to insufficient initialization of memory copied to userland in the network subsystem, small amounts of kernel memory may be disclosed to userland processes. Unprivileged authenticated local ... Read more
Affected Products : freebsd- Published: May. 08, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2016-9826
libavcodec/ituh263dec.c in libav 11.8 allows remote attackers to cause a denial of service (crash) via vectors involving left shift of a negative value.... Read more
Affected Products : libav- Published: Mar. 01, 2017
- Modified: Apr. 20, 2025