Cybersecurity Alerts

Actively Exploited Vulnerabilities

The vulnerabilities listed below are sourced from the CISA Known Exploited Vulnerabilities catalog and represent security flaws that are actively being exploited in the wild. This list is updated daily. If you are unsure whether your systems are affected, contact us and we will help you assess your exposure.

CVE-2015-1701Active Ransomware Campaign
Microsoft | Win32k
Microsoft Win32k Privilege Escalation Vulnerability
An unspecified vulnerability exists in the Win32k.sys kernel-mode driver in Microsoft Windows Server that allows a local attacker to execute arbitrary code with elevated privileges.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2015-1642
Microsoft | Office
Microsoft Office Memory Corruption Vulnerability
Microsoft Office contains a memory corruption vulnerability that allows remote attackers to execute arbitrary code via a crafted document.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2014-4114
Microsoft | Windows
Microsoft Windows Object Linking & Embedding (OLE) Remote Code Execution Vulnerability
A vulnerability exists in Windows Object Linking & Embedding (OLE) that could allow remote code execution if a user opens a file that contains a specially crafted OLE object.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2014-0496
Adobe | Reader and Acrobat
Adobe Reader and Acrobat Use-After-Free Vulnerability
Adobe Reader and Acrobat contain a use-after-free vulnerability which can allow for code execution.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2013-5065
Microsoft | Windows
Microsoft Windows Kernel Privilege Escalation Vulnerability
Microsoft Windows NDProxy.sys in the kernel contains an improper input validation vulnerability which can allow a local attacker to escalate privileges.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2013-3897
Microsoft | Internet Explorer
Microsoft Internet Explorer Use-After-Free Vulnerability
A use-after-free vulnerability exists within CDisplayPointer in Microsoft Internet Explorer that allows an attacker to remotely execute arbitrary code.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2013-3346
Adobe | Reader and Acrobat
Adobe Reader and Acrobat Memory Corruption Vulnerability
Adobe Reader and Acrobat contain a memory corruption vulnerability which can allow attackers to execute arbitrary code or cause a denial of service.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2013-1675
Mozilla | Firefox
Mozilla Firefox Information Disclosure Vulnerability
Mozilla Firefox does not properly initialize data structures for the nsDOMSVGZoomEvent::mPreviousScale and nsDOMSVGZoomEvent::mNewScale functions, which allows remote attackers to obtain sensitive information from process memory via a crafted web site.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2013-1347
Microsoft | Internet Explorer
Microsoft Internet Explorer Remote Code Execution Vulnerability
This vulnerability may corrupt memory in a way that could allow an attacker to execute arbitrary code in the context of the current user within Internet Explorer.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2013-0641
Adobe | Reader
Adobe Reader Buffer Overflow Vulnerability
A buffer overflow vulnerability exists in Adobe Reader which allows an attacker to perform remote code execution.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2013-0640
Adobe | Reader and Acrobat
Adobe Reader and Acrobat Memory Corruption Vulnerability
An memory corruption vulnerability exists in the acroform.dll in Adobe Reader that allows an attacker to perform remote code execution.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2013-0632
Adobe | ColdFusion
Adobe ColdFusion Authentication Bypass Vulnerability
An authentication bypass vulnerability exists in Adobe ColdFusion which could result in an unauthorized user gaining administrative access.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2012-4681Active Ransomware Campaign
Oracle | Java SE
Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability
The Java Runtime Environment (JRE) component in Oracle Java SE allow for remote code execution.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2012-1856
Microsoft | Office
Microsoft Office MSCOMCTL.OCX Remote Code Execution Vulnerability
The TabStrip ActiveX control in the Common Controls in MSCOMCTL.OCX in Microsoft Office allows remote attackers to execute arbitrary code via a crafted (1) document or (2) web page that triggers system-state corruption.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2012-1723Active Ransomware Campaign
Oracle | Java SE
Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE allows remote attackers to affect confidentiality, integrity, and availability via Unknown vectors related to Hotspot.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2012-1535
Adobe | Flash Player
Adobe Flash Player Arbitrary Code Execution Vulnerability
Unspecified vulnerability in Adobe Flash Player allows remote attackers to execute arbitrary code or cause a denial of service via crafted SWF content.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2012-0507Active Ransomware Campaign
Oracle | Java SE
Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability
An incorrect type vulnerability exists in the Concurrency component of Oracle's Java Runtime Environment allows an attacker to remotely execute arbitrary code.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2011-3544
Oracle | Java SE JDK and JRE
Oracle Java SE Runtime Environment (JRE) Arbitrary Code Execution Vulnerability
An access control vulnerability exists in the Applet Rhino Script Engine component of Oracle's Java Runtime Environment allows an attacker to remotely execute arbitrary code.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2011-1889
Microsoft | Forefront Threat Management Gateway (TMG)
Microsoft Forefront TMG Remote Code Execution Vulnerability
A remote code execution vulnerability exists in the Forefront Threat Management Gateway (TMG) Firewall Client Winsock provider that could allow code execution in the security context of the client application.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2011-0611
Adobe | Flash Player
Adobe Flash Player Remote Code Execution Vulnerability
Adobe Flash Player contains a vulnerability that allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Flash content.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2010-3333
Microsoft | Office
Microsoft Office Stack-based Buffer Overflow Vulnerability
A stack-based buffer overflow vulnerability exists in the parsing of RTF data in Microsoft Office and earlier allows an attacker to perform remote code execution.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2010-0232
Microsoft | Windows
Microsoft Windows Kernel Exception Handler Vulnerability
The kernel in Microsoft Windows, when access to 16-bit applications is enabled on a 32-bit x86 platform, does not properly validate certain BIOS calls, which allows local users to gain privileges.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2010-0188Active Ransomware Campaign
Adobe | Reader and Acrobat
Adobe Reader and Acrobat Arbitrary Code Execution Vulnerability
Unspecified vulnerability in Adobe Reader and Acrobat allows attackers to cause a denial of service or possibly execute arbitrary code.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2009-3129
Microsoft | Excel
Microsoft Excel Featheader Record Memory Corruption Vulnerability
Microsoft Office Excel allows remote attackers to execute arbitrary code via a spreadsheet with a FEATHEADER record containing an invalid cbHdrData size element that affects a pointer offset.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2009-1123
Microsoft | Windows
Microsoft Windows Improper Input Validation Vulnerability
The kernel in Microsoft Windows does not properly validate changes to unspecified kernel objects, which allows local users to gain privileges via a crafted application.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2008-3431
Oracle | VirtualBox
Oracle VirtualBox Insufficient Input Validation Vulnerability
An input validation vulnerability exists in the VBoxDrv.sys driver of Sun xVM VirtualBox which allows attackers to locally execute arbitrary code.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2008-2992Active Ransomware Campaign
Adobe | Acrobat and Reader
Adobe Reader and Acrobat Input Validation Vulnerability
Adobe Acrobat and Reader contain an input validation issue in a JavaScript method that could potentially lead to remote code execution.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2004-0210
Microsoft | Windows
Microsoft Windows Privilege Escalation Vulnerability
A privilege elevation vulnerability exists in the POSIX subsystem. This vulnerability could allow a logged on user to take complete control of the system.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2002-0367
Microsoft | Windows
Microsoft Windows Privilege Escalation Vulnerability
smss.exe debugging subsystem in Microsoft Windows does not properly authenticate programs that connect to other programs, which allows local users to gain administrator or SYSTEM privileges.
Added 2022-03-03
Remediation Deadline 2022-03-24
CVE-2022-24682Active Ransomware Campaign
Synacor | Zimbra Collaborate Suite (ZCS)
Synacor Zimbra Collaborate Suite (ZCS) Cross-Site Scripting Vulnerability
Synacor Zimbra Collaboration Suite (ZCS) contains a cross-site scripting (XSS) vulnerability in the Calendar feature that allows an attacker to execute arbitrary code.
Added 2022-02-25
Remediation Deadline 2022-03-11