CVE-2024-11548

CVE-2024-11548 concerns IrfanView and is tied to an out-of-bounds write vulnerability in DWG file parsing that can lead to remote code execution. The flaw stems from insufficient validation of user-supplied data during DWG parsing, allowing a write past the end of an allocated buffer and enabling...

CVE-2024-11550 IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious pag...

CVE-2024-11526 IrfanView CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

IrfanView CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page...

CVE-2024-11530 IrfanView CGM File Parsing Memory Corruption Remote Code Execution Vulnerability

IrfanView CGM File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page ...

CVE-2024-11579 Luxion KeyShot OBJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

Luxion KeyShot OBJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Luxion KeyShot. User interaction is required to exploit this vulnerability in that the target must visit a...

CVE-2024-5511

Kofax Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a...

CVE-2024-5512

Kofax Power PDF JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must...

CVE-2024-5511

Kofax Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a...

CVE-2024-5510

CVE-2024-5510 affects Kofax Power PDF, specifically JP2 file parsing. The vulnerability stems from improper validation of user-supplied data, causing a read past the end of an allocated object (out-of-bounds read). An attacker can achieve remote code execution in the context of the affected proce...

Hugging Face Transformers 代码问题漏洞

Hugging Face Transformers is advanced natural language processing built for Jax, PyTorch and TensorFlow. A code issue vulnerability exists in Hugging Face Transformers that stems from improper data validation in the parsing of model files, which could lead to untrusted data deserialization and...

Luxion KeyShot 缓冲区错误漏洞

Luxion KeyShot is a software for designing photographs of 3D scenes from Luxion, USA. The software allows real-time 3D rendering workflows to display results immediately and reduce the time required to create photorealistic product photos. Luxion KeyShot suffers from a buffer error vulnerability...

Luxion KeyShot 缓冲区错误漏洞

Luxion KeyShot is a software for designing photographs of 3D scenes from Luxion, USA. The software allows real-time 3D rendering workflows to display results immediately and reduce the time required to create photorealistic product photos. Luxion KeyShot suffers from a buffer error vulnerability...

Allegra 代码问题漏洞

Allegra is a project management software for mid-sized organizations from Allegra, Inc. Allegra suffers from a code issue vulnerability that stems from a lack of proper validation of user-supplied data. An attacker can exploit the vulnerability to execute arbitrary code...

Hugging Face Transformers 代码问题漏洞

Hugging Face Transformers is advanced natural language processing built for Jax, PyTorch and TensorFlow. A code issue vulnerability exists in Hugging Face Transformers that stems from improper data validation in model file processing, which could lead to untrusted data deserialization and allow a...

Allegra 代码问题漏洞

Allegra is a project management software for mid-sized organizations from Allegra, Inc. Allegra suffers from a code issue vulnerability that stems from a lack of proper validation of user-supplied data. An attacker can exploit the vulnerability to execute arbitrary code...

D-Link DI-8100 Buffer Overflow Vulnerability

The D-Link DI-8100 is a wireless broadband router designed for small to medium-sized network environments from China's D-Link. The D-Link DI-8100 suffers from a buffer overflow vulnerability that originates from the ippositionasp function failing to properly validate the length and size of the...

IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DXF files...

Siemens Tecnomatix Plant Simulation WRL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel suffers from an out-of-bounds read vulnerability that stems from a lack of proper validation of user-supplied data, which can be exploited by an attacker to gain...

The vulnerability of the Zelio Soft 2 software for intelligent relays, related to incorrect validation of entered data, allows a perpetrator to cause service interruptions.

The vulnerability of the Zelio Soft 2 software for intelligent relays from Zelio Logic relates to incorrect validation of entered data. Exploiting this vulnerability can allow an attacker to cause a service failure by loading a specially created project file...