Adobe Acrobat and Reader contains a use-after-free vulnerability that allows for code execution in the context of the current user.
// weekly digest
// weekly digest
// weekly digest
2023-10-09 00:00 UTC 2023-10-15 23:59 UTC
// total
0
// critical
0
// high
0
// medium
0
// low
0
// new kev
5
// top critical
No CRITICAL CVEs published this week.
// top high
No HIGH CVEs published this week.
// new kev additions
Adobe Acrobat and Reader contains a use-after-free vulnerability that allows for code execution in the context of the current user.
Cisco IOS and IOS XE contain an out-of-bounds write vulnerability in the Group Encrypted Transport VPN (GET VPN) feature that could allow an authenticated, remote attacker who has administrative control of either a group member or a key server to execute malicious code or cause a device to crash.
Microsoft Skype for Business contains an unspecified vulnerability that allows for privilege escalation.
Microsoft WordPad contains an unspecified vulnerability that allows for information disclosure.
HTTP/2 contains a rapid reset vulnerability that allows for a distributed denial-of-service attack (DDoS).