) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Keyword (text search): cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2016-8817 |
All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape where a value passed from a user to the driver is used without validation as the size input to memcpy(), causing a buffer overflow, leading to denial of service or potential escalation of privileges. Published: December 16, 2016; 4:59:00 PM -0500 |
V3.0: 7.8 HIGH V2.0: 7.2 HIGH |
| CVE-2016-8816 |
All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape where a value passed from a user to the driver is used without validation as the index to an array, leading to denial of service or potential escalation of privileges. Published: December 16, 2016; 4:59:00 PM -0500 |
V3.0: 7.8 HIGH V2.0: 7.2 HIGH |
| CVE-2016-8815 |
All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape where a value passed from a user to the driver is used without validation as the index to an array, leading to denial of service or potential escalation of privileges. Published: December 16, 2016; 4:59:00 PM -0500 |
V3.0: 7.8 HIGH V2.0: 7.2 HIGH |
| CVE-2016-8814 |
All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape where multiple pointers are used without checking for NULL, leading to denial of service or potential escalation of privileges. Published: December 16, 2016; 4:59:00 PM -0500 |
V3.0: 7.8 HIGH V2.0: 7.2 HIGH |
| CVE-2016-8813 |
All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape where multiple pointers are used without checking for NULL, leading to denial of service or potential escalation of privileges. Published: December 16, 2016; 4:59:00 PM -0500 |
V3.0: 7.8 HIGH V2.0: 7.2 HIGH |
| CVE-2016-7892 |
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the TextField class. Successful exploitation could lead to arbitrary code execution. Published: December 15, 2016; 1:59:56 AM -0500 |
V3.1: 8.8 HIGH V2.0: 9.3 HIGH |
| CVE-2016-7890 |
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have security bypass vulnerability in the implementation of the same origin policy. Published: December 15, 2016; 1:59:54 AM -0500 |
V3.1: 8.8 HIGH V2.0: 6.8 MEDIUM |
| CVE-2016-7887 |
Adobe ColdFusion Builder versions 2016 update 2 and earlier, 3.0.3 and earlier have an important vulnerability that could lead to information disclosure. Published: December 15, 2016; 1:59:51 AM -0500 |
V3.1: 7.5 HIGH V2.0: 5.0 MEDIUM |
| CVE-2016-7881 |
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the MovieClip class when handling conversion to an object. Successful exploitation could lead to arbitrary code execution. Published: December 15, 2016; 1:59:45 AM -0500 |
V3.1: 8.8 HIGH V2.0: 9.3 HIGH |
| CVE-2016-7880 |
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability when setting the length property of an array object. Successful exploitation could lead to arbitrary code execution. Published: December 15, 2016; 1:59:44 AM -0500 |
V3.1: 8.8 HIGH V2.0: 9.3 HIGH |
| CVE-2016-7879 |
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the NetConnection class when handling an attached script object. Successful exploitation could lead to arbitrary code execution. Published: December 15, 2016; 1:59:43 AM -0500 |
V3.1: 8.8 HIGH V2.0: 6.8 MEDIUM |
| CVE-2016-7878 |
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the PSDK's MediaPlayer class. Successful exploitation could lead to arbitrary code execution. Published: December 15, 2016; 1:59:42 AM -0500 |
V3.1: 8.8 HIGH V2.0: 6.8 MEDIUM |
| CVE-2016-7877 |
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the Action Message Format serialization (AFM0). Successful exploitation could lead to arbitrary code execution. Published: December 15, 2016; 1:59:41 AM -0500 |
V3.1: 8.8 HIGH V2.0: 9.3 HIGH |
| CVE-2016-7876 |
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable memory corruption vulnerability in the Clipboard class related to data handling functionality. Successful exploitation could lead to arbitrary code execution. Published: December 15, 2016; 1:59:40 AM -0500 |
V3.1: 8.8 HIGH V2.0: 9.3 HIGH |
| CVE-2016-7875 |
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable integer overflow vulnerability in the BitmapData class. Successful exploitation could lead to arbitrary code execution. Published: December 15, 2016; 1:59:39 AM -0500 |
V3.1: 8.8 HIGH V2.0: 6.8 MEDIUM |
| CVE-2016-7874 |
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable memory corruption vulnerability in the NetConnection class when handling the proxy types. Successful exploitation could lead to arbitrary code execution. Published: December 15, 2016; 1:59:38 AM -0500 |
V3.1: 8.8 HIGH V2.0: 9.3 HIGH |
| CVE-2016-7873 |
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable memory corruption vulnerability in the PSDK class related to ad policy functionality method. Successful exploitation could lead to arbitrary code execution. Published: December 15, 2016; 1:59:37 AM -0500 |
V3.1: 8.8 HIGH V2.0: 9.3 HIGH |
| CVE-2016-7872 |
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable use after free vulnerability in the MovieClip class related to objects at multiple presentation levels. Successful exploitation could lead to arbitrary code execution. Published: December 15, 2016; 1:59:36 AM -0500 |
V3.1: 8.8 HIGH V2.0: 6.8 MEDIUM |
| CVE-2016-7871 |
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable memory corruption vulnerability in the Worker class. Successful exploitation could lead to arbitrary code execution. Published: December 15, 2016; 1:59:35 AM -0500 |
V3.1: 8.8 HIGH V2.0: 6.8 MEDIUM |
| CVE-2016-7870 |
Adobe Flash Player versions 23.0.0.207 and earlier, 11.2.202.644 and earlier have an exploitable buffer overflow / underflow vulnerability in the RegExp class for specific search strategies. Successful exploitation could lead to arbitrary code execution. Published: December 15, 2016; 1:59:34 AM -0500 |
V3.1: 8.8 HIGH V2.0: 6.8 MEDIUM |