CVE Tracker

CVE ID	Severity	EPSS	Vendor	Description	Date	Status
CVE-2019-3010	High	47.1%	OracleSolaris	Oracle Solaris component: XScreenSaver contains an unspecified vulnerability that allows for privilege escalation.	May 25, 2022	KEV
CVE-2015-8651	High	89.0%	AdobeFlash Player	Integer overflow in Adobe Flash Player allows attackers to execute code.	May 25, 2022	KEV
CVE-2016-7256	High	65.1%	MicrosoftWindows	A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploits this vulnerability could take control of the affected system.	May 25, 2022	KEV
CVE-2016-3393	High	40.8%	MicrosoftWindows	A remote code execution vulnerability exists due to the way the Windows GDI component handles objects in the memory. An attacker who successfully exploits this vulnerability could take control of the affected system.	May 25, 2022	KEV
CVE-2016-0034	High	40.5%	MicrosoftSilverlight	Microsoft Silverlight mishandles negative offsets during decoding, which allows attackers to execute remote code or cause a denial-of-service (DoS).	May 25, 2022	KEV
CVE-2015-0310	High	5.4%	AdobeFlash Player	Adobe Flash Player does not properly restrict discovery of memory addresses, which allows attackers to bypass the address space layout randomization (ASLR) protection mechanism.	May 25, 2022	KEV
CVE-2015-2425	High	34.1%	MicrosoftInternet Explorer	Microsoft Internet Explorer contains a memory corruption vulnerability that allows remote attackers to execute code or cause denial-of-service (DoS).	May 25, 2022	KEV
CVE-2016-1010	High	30.0%	AdobeFlash Player and AIR	Integer overflow vulnerability in Adobe Flash Player and AIR allows attackers to execute code.	May 25, 2022	KEV
CVE-2015-4495	High	71.6%	MozillaFirefox	Moxilla Firefox allows remote attackers to bypass the Same Origin Policy to read arbitrary files or gain privileges.	May 25, 2022	KEV
CVE-2015-0016	High	92.1%	MicrosoftWindows	Directory traversal vulnerability in the TS WebProxy (TSWbPrxy) component in Microsoft Windows allows remote attackers to escalate privileges.	May 25, 2022	KEV
CVE-2016-0984	High	75.9%	AdobeFlash Player and AIR	Use-after-free vulnerability in Adobe Flash Player and Adobe AIR allows attackers to execute code.	May 25, 2022	KEV
CVE-2014-4148	High	53.1%	MicrosoftWindows	A remote code execution vulnerability exists when the Windows kernel-mode driver improperly handles TrueType fonts.	May 25, 2022	KEV
CVE-2014-8439	High	27.1%	AdobeFlash Player	Adobe Flash Player has a vulnerability in the way it handles a dereferenced memory pointer which could lead to code execution.	May 25, 2022	KEV
CVE-2015-1671	High	85.9%	MicrosoftWindows	A remote code execution vulnerability exists when components of Windows, .NET Framework, Office, Lync, and Silverlight fail to properly handle TrueType fonts.	May 25, 2022	KEV
CVE-2014-3153	High	68.9%	LinuxKernel	The futex_requeue function in kernel/futex.c in Linux kernel does not ensure that calls have two different futex addresses, which allows local users to gain privileges.	May 25, 2022	KEV
CVE-2014-4123	High	53.6%	MicrosoftInternet Explorer	Microsoft Internet Explorer contains an unspecified vulnerability that allows remote attackers to gain privileges via a crafted web site.	May 25, 2022	KEV
CVE-2014-0546	High	29.7%	AdobeReader and Acrobat	Adobe Reader and Acrobat on Windows allow attackers to bypass a sandbox protection mechanism, and consequently execute native code in a privileged context.	May 25, 2022	KEV
CVE-2013-3993	High	21.0%	IBMInfoSphere BigInsights	Certain APIs within BigInsights can take invalid input that might allow attackers unauthorized access to read, write, modify, or delete data.	May 25, 2022	KEV
CVE-2012-1710	High	55.4%	OracleFusion Middleware	Unspecified vulnerability in the Oracle WebCenter Forms Recognition component in Oracle Fusion Middleware allows remote attackers to affect confidentiality, integrity, and availability via Unknown vectors related to Designer.	May 25, 2022	KEV
CVE-2015-0071	High	37.0%	MicrosoftInternet Explorer	Microsoft Internet Explorer allows remote attackers to bypass the address space layout randomization (ASLR) protection mechanism via a crafted web site.	May 25, 2022	KEV

CVE-2019-3010KEV

High

Oracle Solaris component: XScreenSaver contains an unspecified vulnerability that allows for privilege escalation.

OracleEPSS 47.1%

CVE-2015-8651KEV

High

Integer overflow in Adobe Flash Player allows attackers to execute code.

AdobeEPSS 89.0%

CVE-2016-7256KEV

High

A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploits this vulnerability could take control of the affected system.

MicrosoftEPSS 65.1%

CVE-2016-3393KEV

High

A remote code execution vulnerability exists due to the way the Windows GDI component handles objects in the memory. An attacker who successfully exploits this vulnerability could take control of the affected system.

MicrosoftEPSS 40.8%

CVE-2016-0034KEV

High

Microsoft Silverlight mishandles negative offsets during decoding, which allows attackers to execute remote code or cause a denial-of-service (DoS).

MicrosoftEPSS 40.5%

CVE-2015-0310KEV

High

Adobe Flash Player does not properly restrict discovery of memory addresses, which allows attackers to bypass the address space layout randomization (ASLR) protection mechanism.

AdobeEPSS 5.4%

CVE-2015-2425KEV

High

Microsoft Internet Explorer contains a memory corruption vulnerability that allows remote attackers to execute code or cause denial-of-service (DoS).

MicrosoftEPSS 34.1%

CVE-2016-1010KEV

High

Integer overflow vulnerability in Adobe Flash Player and AIR allows attackers to execute code.

AdobeEPSS 30.0%

CVE-2015-4495KEV

High

Moxilla Firefox allows remote attackers to bypass the Same Origin Policy to read arbitrary files or gain privileges.

MozillaEPSS 71.6%

CVE-2015-0016KEV

High

Directory traversal vulnerability in the TS WebProxy (TSWbPrxy) component in Microsoft Windows allows remote attackers to escalate privileges.

MicrosoftEPSS 92.1%

CVE-2016-0984KEV

High

Use-after-free vulnerability in Adobe Flash Player and Adobe AIR allows attackers to execute code.

AdobeEPSS 75.9%

CVE-2014-4148KEV

High

A remote code execution vulnerability exists when the Windows kernel-mode driver improperly handles TrueType fonts.

MicrosoftEPSS 53.1%

CVE-2014-8439KEV

High

Adobe Flash Player has a vulnerability in the way it handles a dereferenced memory pointer which could lead to code execution.

AdobeEPSS 27.1%

CVE-2015-1671KEV

High

A remote code execution vulnerability exists when components of Windows, .NET Framework, Office, Lync, and Silverlight fail to properly handle TrueType fonts.

MicrosoftEPSS 85.9%

CVE-2014-3153KEV

High

The futex_requeue function in kernel/futex.c in Linux kernel does not ensure that calls have two different futex addresses, which allows local users to gain privileges.

LinuxEPSS 68.9%

CVE-2014-4123KEV

High

Microsoft Internet Explorer contains an unspecified vulnerability that allows remote attackers to gain privileges via a crafted web site.

MicrosoftEPSS 53.6%

CVE-2014-0546KEV

High

Adobe Reader and Acrobat on Windows allow attackers to bypass a sandbox protection mechanism, and consequently execute native code in a privileged context.

AdobeEPSS 29.7%

CVE-2013-3993KEV

High

Certain APIs within BigInsights can take invalid input that might allow attackers unauthorized access to read, write, modify, or delete data.

IBMEPSS 21.0%

CVE-2012-1710KEV

High

Unspecified vulnerability in the Oracle WebCenter Forms Recognition component in Oracle Fusion Middleware allows remote attackers to affect confidentiality, integrity, and availability via Unknown vectors related to Designer.

OracleEPSS 55.4%

CVE-2015-0071KEV

High

Microsoft Internet Explorer allows remote attackers to bypass the address space layout randomization (ASLR) protection mechanism via a crafted web site.

MicrosoftEPSS 37.0%

41 42 43 44 45 46 47