Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nils vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-9851
LibreOffice is typically bundled with LibreLogo, a programmable turtle vector graphics script, which can execute arbitrary python commands contained with the document it is launched from. Protection was added, to address CVE-2019-9848, to block calling LibreLogo from document eve...
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 18.04
Opensuse Leap 15.0
Canonical Ubuntu Linux 19.04
Fedoraproject Fedora 29
Opensuse Leap 15.1
Canonical Ubuntu Linux 16.04
Libreoffice Libreoffice
1 EDB exploit
1 Github repository
9.8
CVSSv3
CVE-2019-9848
LibreOffice has a feature where documents can specify that pre-installed scripts can be executed on various document events such as mouse-over, etc. LibreOffice is typically also bundled with LibreLogo, a programmable turtle vector graphics script, which can be manipulated into e...
Libreoffice Libreoffice
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Debian Debian Linux 8.0
Opensuse Leap 15.0
Opensuse Leap 15.1
3 Articles
4.3
CVSSv3
CVE-2019-9849
LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to retrieve remote resources. This mode is not the default mode, but can be enabled by users who want to disable LibreOffice's ability to include remote r...
Libreoffice Libreoffice
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Debian Debian Linux 8.0
Opensuse Leap 15.0
Opensuse Leap 15.1
NA
CVE-2018-16858
This Metasploit module generates an ODT file with a mouse over event that when triggered, will execute arbitrary code.
1 EDB exploit
6 Github repositories
2 Articles
7.8
CVSSv3
CVE-2016-0171
The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allow local users to gain privileges via a crafted application, aka "Win32k E...
Microsoft Windows Server 2012
Microsoft Windows 8.1
Microsoft Windows 10 1511
Microsoft Windows 10
Microsoft Windows Server 2008
Microsoft Windows Vista
Microsoft Windows Rt 8.1
Microsoft Windows Server 2012 R2
Microsoft Windows 7
Microsoft Windows Server 2008 R2
1 EDB exploit
7.8
CVSSv3
CVE-2016-0173
The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allow local users to gain privileges via a crafted application, aka "Win32k E...
Microsoft Windows 8.1
Microsoft Windows 7
Microsoft Windows 10
Microsoft Windows Rt 8.1
Microsoft Windows Vista
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2012
Microsoft Windows 10 1511
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008
1 EDB exploit
7.8
CVSSv3
CVE-2016-0143
The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k E...
Microsoft Windows 8.1
Microsoft Windows 7
Microsoft Windows 10 1511
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2008
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2012 -
Microsoft Windows 10 -
Microsoft Windows Rt 8.1 -
Microsoft Windows Vista
1 EDB exploit
7.8
CVSSv3
CVE-2016-0094
The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k E...
Microsoft Windows Server 2008 R2
Microsoft Windows Rt 8.1 -
Microsoft Windows Vista -
Microsoft Windows Server 2012 -
Microsoft Windows Server 2008
Microsoft Windows 8.1 -
Microsoft Windows 10 -
Microsoft Windows 10 1511
Microsoft Windows Server 2012 R2
Microsoft Windows 7 -
1 EDB exploit
7.8
CVSSv3
CVE-2016-0093
The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k E...
Microsoft Windows Server 2008
Microsoft Windows Vista -
Microsoft Windows 10 -
Microsoft Windows 10 1511
Microsoft Windows 7 -
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 -
Microsoft Windows Server 2012 R2
Microsoft Windows Rt 8.1 -
Microsoft Windows 8.1 -
1 EDB exploit
6.5
CVSSv3
CVE-2016-1938
The s_mp_div function in lib/freebl/mpi/mpi.c in Mozilla Network Security Services (NSS) prior to 3.21, as used in Mozilla Firefox prior to 44.0, improperly divides numbers, which might make it easier for remote malicious users to defeat cryptographic protection mechanisms by lev...
Opensuse Opensuse 13.1
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Mozilla Nss
Mozilla Firefox
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »