microsoft vulnerabilities and exploits

NA
CVE-2018-3260

SpecuCheck SpecuCheck is a Windows utility for checking the state of the software and hardware mitigations against CVE-2017-5754 (Meltdown), CVE-2017-5715 (Spectre v2), CVE-2018-3260 (Foreshadow), and CVE-2018-3639 (Spectre v4). It uses two new information classes that were...

5
CVSSv2
CVE-2017-9798

Apache httpd allows remote attackers to read secret data from process memory if the Limit directive can be set in a user's .htaccess file, or if httpd.conf has certain misconfigurations, aka Optionsbleed. This affects the Apache HTTP Server through 2.2.34 and 2.4.x through...

ApacheHttp ServerDebianDebian Linux
6.4
CVSSv2
CVE-2012-1191

The resolver in dnscache in Daniel J. Bernstein djbdns 1.05 overwrites cached server names and TTL values in NS records during the processing of a response to an A record query, which allows remote attackers to trigger continued resolvability of revoked domain names via a...

D.j.bernsteinDjbdns
NA
CVE-2019-0379

SAP Process Integration, business-to-business add-on, versions 1.0, 2.0, does not perform authentication check properly when the default security provider is changed to BouncyCastle (BC), leading to Missing Authentication Check...

NA
CVE-2019-0380

Under certain conditions, SAP Landscape Management enterprise edition, before version 3.0, allows custom secure parameters? default values to be part of the application logs leading to Information Disclosure....

NA
CVE-2019-10936

A vulnerability has been identified in Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller (All versions), Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200 (All versions), Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P (All...

6.1
CVSSv2
CVE-2017-2681

A vulnerability has been identified in SIMATIC CP 343-1 Std (All versions), SIMATIC CP 343-1 Lean (All versions), SIMATIC CP 343-1 Adv (All versions), SIMATIC CP 443-1 Std (All versions < V3.2.17), SIMATIC CP 443-1 Adv (All versions < V3.2.17), SIMATIC CP 443-1 OPC-UA (All...

SiemensDk Standard Ethernet Controller FirmwareEk-ertec 200 Pn Io FirmwareEk-ertec 200p Pn Io FirmwareIe/as-i Link Pn Io FirmwareIe/pb-link FirmwarePn/pn Coupler FirmwareScalance M-800 FirmwareScalance S615 FirmwareScalance W700 FirmwareScalance X200 FirmwareScalance X200 Irt FirmwareScalance X300 FirmwareScalance X408 FirmwareScalance X414 FirmwareScalance Xm400 FirmwareScalance Xr500 FirmwareSimatic Cm 1542-1 FirmwareSimatic Cp 1243-1 FirmwareSimatic Cp 1542sp-1 FirmwareSimatic Cp 1542sp-1 Irc FirmwareSimatic Cp 1543-1 FirmwareSimatic Cp 1543sp-1 FirmwareSimatic Cp 1604 FirmwareSimatic Cp 1616 FirmwareSimatic Cp 343-1 Adv FirmwareSimatic Cp 343-1 Lean FirmwareSimatic Cp 343-1 Std FirmwareSimatic Cp 443-1 Adv FirmwareSimatic Cp 443-1 Opc-ua FirmwareSimatic Cp 443-1 Std FirmwareSimatic Dk-16xx Pn Io FirmwareSimatic Et 200al FirmwareSimatic Et 200ecopn FirmwareSimatic Et 200m FirmwareSimatic Et 200mp FirmwareSimatic Et 200pro FirmwareSimatic Et 200s FirmwareSimatic Et 200sp FirmwareSimatic Hmi Comfort PanelsSimatic Hmi Mobile PanelsSimatic Hmi Multi PanelsSimatic Rf650r FirmwareSimatic Rf680r FirmwareSimatic Rf685r FirmwareSimatic S7-1200 FirmwareSimatic S7-1500 FirmwareSimatic S7-1500 Software Controller FirmwareSimatic S7-200 Smart FirmwareSimatic S7-300 FirmwareSimatic S7-400 FirmwareSimatic Teleservice Adapter Ie Advanced Modem FirmwareSimatic Teleservice Adapter Ie Basic Modem FirmwareSimatic Teleservice Adapter Standard Modem FirmwareSimatic Winac Rtx 2010 FirmwareSimocode Pro V Profinet FirmwareSimotion FirmwareSinamics S110 W. Pn FirmwareSinamics Dcm FirmwareSinamics Dcp FirmwareSinamics G110m FirmwareSinamics G120(c/p/d) W. Pn FirmwareSinamics G130 FirmwareSinamics G150 FirmwareSinamics S120 FirmwareSinamics S150 FirmwareSinamics V90 W. Pn FirmwareSinumerik 828d FirmwareSinumerik 840d Sl FirmwareSirius Act 3su1 FirmwareSirius Motor Starter M200d Profinet FirmwareSirius Soft Starter 3rw44 Pn FirmwareSitop Psu8600 FirmwareSoftnet Profinet Io FirmwareUps1600 Profinet Firmware
6.1
CVSSv2
CVE-2017-2680

SIEMENS SIMATIC CP 343-1 Std, CP 343-1 Lean (All versions), SIMATIC CP 343-1 Adv (All versions), SIMATIC CP 443-1 Std, CP 443-1 Adv (All versions before V3.2.17), SIMATIC CP 443-1 OPC-UA (All versions), SIMATIC CP 1243-1 (All versions before V2.1.82), SIMATIC CP 1243-1 IRC (All...

SiemensDk Standard Ethernet Controller FirmwareEk-ertec 200 Pn Io FirmwareEk-ertec 200p Pn Io FirmwareIe/as-i Link Pn Io FirmwareIe/pb-link FirmwarePn/pn Coupler FirmwareScalance M-800 FirmwareScalance S615 FirmwareScalance W700 FirmwareScalance X200 FirmwareScalance X200 Irt FirmwareScalance X300 FirmwareScalance X408 FirmwareScalance X414 FirmwareScalance Xm400 FirmwareScalance Xr500 FirmwareSimatic Cm 1542-1 FirmwareSimatic Cp 1243-1 FirmwareSimatic Cp 1542sp-1 FirmwareSimatic Cp 1542sp-1 Irc FirmwareSimatic Cp 1543-1 FirmwareSimatic Cp 1543sp-1 FirmwareSimatic Cp 1604 FirmwareSimatic Cp 1616 FirmwareSimatic Cp 343-1 Adv FirmwareSimatic Cp 343-1 Lean FirmwareSimatic Cp 343-1 Std FirmwareSimatic Cp 443-1 Adv FirmwareSimatic Cp 443-1 Opc-ua FirmwareSimatic Cp 443-1 Std FirmwareSimatic Dk-16xx Pn Io FirmwareSimatic Et 200al FirmwareSimatic Et 200ecopn FirmwareSimatic Et 200m FirmwareSimatic Et 200mp FirmwareSimatic Et 200pro FirmwareSimatic Et 200s FirmwareSimatic Et 200sp FirmwareSimatic Hmi Comfort PanelsSimatic Hmi Mobile PanelsSimatic Hmi Multi PanelsSimatic Rf650r FirmwareSimatic Rf680r FirmwareSimatic Rf685r FirmwareSimatic S7-1200 FirmwareSimatic S7-1500 FirmwareSimatic S7-1500 Software Controller FirmwareSimatic S7-200 Smart FirmwareSimatic S7-300 FirmwareSimatic S7-400 FirmwareSimatic Teleservice Adapter Ie Advanced Modem FirmwareSimatic Teleservice Adapter Ie Basic Modem FirmwareSimatic Teleservice Adapter Standard Modem FirmwareSimatic Winac Rtx 2010 FirmwareSimocode Pro V Profinet FirmwareSimotion FirmwareSinamics S110 W. Pn FirmwareSinamics Dcm FirmwareSinamics Dcp FirmwareSinamics G110m FirmwareSinamics G120(c/p/d) W. Pn FirmwareSinamics G130 FirmwareSinamics G150 FirmwareSinamics S120 FirmwareSinamics S150 FirmwareSinamics V90 W. Pn FirmwareSinumerik 828d FirmwareSinumerik 840d Sl FirmwareSirius Act 3su1 FirmwareSirius Motor Starter M200d Profinet FirmwareSirius Soft Starter 3rw44 Pn FirmwareSitop Psu8600 FirmwareSoftnet Profinet Io FirmwareUps1600 Profinet Firmware
5.4
CVSSv2
CVE-2018-3615

Systems with microprocessors utilizing speculative execution and Intel software guard extensions (Intel SGX) may allow unauthorized disclosure of information residing in the L1 data cache from an enclave to an attacker with local user access via a side-channel analysis....

IntelCore I3Core I5Core I7Xeon E3
4.7
CVSSv2
CVE-2018-3640

Systems with microprocessors utilizing speculative execution and that perform speculative reads of system registers may allow unauthorized disclosure of system parameters to an attacker with local user access via a side-channel analysis, aka Rogue System Register Read (RSRE),...