Lucene search
K

7657 matches found

Cvelist
Cvelist
added 2024/05/03 1:56 a.m.18 views

CVE-2023-32131 Sante DICOM Viewer Pro DCM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

Sante DICOM Viewer Pro DCM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability in that the target...

7.8CVSS8.2AI score0.00916EPSS
Exploits0References1
CVE
CVE
added 2024/05/03 1:56 a.m.73 views

CVE-2023-27366

CVE-2023-27366 affects Foxit PDF Reader. It is a Doc object handling Use-After-Free vulnerability that allows an attacker to execute code in the context of the current process. Exploitation requires user interaction (target visits a malicious page or opens a malicious file). The vulnerability is ...

7.8CVSS8AI score0.00538EPSS
Exploits0References2Affected Software2
Vulnrichment
Vulnrichment
added 2024/05/03 1:56 a.m.14 views

CVE-2023-27342 PDF-XChange Editor EMF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability

PDF-XChange Editor EMF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the targe...

7.8CVSS7.5AI score0.00501EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 1:55 a.m.74 views

CVE-2023-27330

CVE-2023-27330 describes a remote code execution flaw in Foxit PDF Reader tied to the handling of XFA annotations. The root cause is the lack of validating the existence of an Annotation object before performing operations, enabling an attacker to run code in the process context after a user open...

7.8CVSS8AI score0.03925EPSS
Exploits0References2Affected Software2
Vulnrichment
Vulnrichment
added 2024/05/03 1:55 a.m.15 views

CVE-2023-27330 Foxit PDF Reader XFA Annotation Use-After-Free Remote Code Execution Vulnerability

Foxit PDF Reader XFA Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS7.8AI score0.03925EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/05/03 12:0 a.m.6 views

PT-2024-7514 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the pac1934 read raw function in the drivers/iio/adc/pac1934.c module of the Linux kernel, which is associated with accessing memory beyond the allocated buffer...

7.8CVSS6.3AI score0.00214EPSS
Exploits0References13
CNNVD
CNNVD
added 2024/05/02 12:0 a.m.3 views

Adobe Acrobat Reader 缓冲区错误漏洞

Adobe Acrobat Reader is a PDF viewer from the American company Audobee Adobe. The software is used to print, sign and annotate PDF. Adobe Acrobat Reader suffers from a buffer overflow vulnerability that stems from the presence of an out-of-bounds read vulnerability that can be exploited by an...

7.8CVSS7.5AI score0.00512EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/02 12:0 a.m.4 views

Adobe Acrobat Reader 资源管理错误漏洞

Adobe Acrobat Reader is a PDF viewer from the American company Audobee Adobe. The software is used to print, sign and annotate PDF. Adobe Acrobat Reader suffers from a resource management error vulnerability that stems from the presence of post-release reuse, which can be exploited by an attacker...

7.8CVSS7.2AI score0.00562EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/02 12:0 a.m.4 views

Adobe Acrobat Reader 资源管理错误漏洞

Adobe Acrobat Reader is a PDF viewer from the American company Audobee Adobe. The software is used to print, sign and annotate PDF. Adobe Acrobat Reader suffers from a resource management error vulnerability that stems from the presence of post-release reuse, which can be exploited by an attacker...

7.8CVSS7.2AI score0.00562EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/05/02 12:0 a.m.4 views

Adobe Acrobat Reader 资源管理错误漏洞

Adobe Acrobat Reader is a PDF viewer from the American company Audobee Adobe. The software is used to print, sign and annotate PDF. Adobe Acrobat Reader suffers from a resource management error vulnerability that stems from the presence of post-release reuse, which can be exploited by an attacker...

7.8CVSS7.2AI score0.00562EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/05/02 12:0 a.m.3 views

PT-2024-21430 · WordPress · Barcode Scanner/Inventory Manager

Name of the Vulnerable Software and Affected Versions: The Barcode Scanner and Inventory manager. POS Point of Sale – scan barcodes & create orders with barcode reader. plugin for WordPress versions up to, and including, 1.5.4 Description: The issue is related to blind SQL Injection via the...

8.8CVSS7.4AI score0.00613EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2024/05/01 6:15 a.m.16 views

CVE-2024-26995

In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: Correct the PDO counting in pdset Off-by-one errors happen because nrsnkpdo and nrsrcpdo are incorrectly added one. The index of the loop is equal to the number of PDOs to be updated when leaving the loop and it...

7.8CVSS6.5AI score0.00236EPSS
Exploits0References8
OSV
OSV
added 2024/05/01 5:28 a.m.13 views

CVE-2024-26995 usb: typec: tcpm: Correct the PDO counting in pd_set

In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: Correct the PDO counting in pdset Off-by-one errors happen because nrsnkpdo and nrsrcpdo are incorrectly added one. The index of the loop is equal to the number of PDOs to be updated when leaving the loop and it...

7.8CVSS6.2AI score0.00236EPSS
Exploits0References8
CVE
CVE
added 2024/05/01 5:28 a.m.3644 views

CVE-2024-26995

The CVE-2024-26995 issue affects the Linux kernel USB Type-C controller (tcpdm) code path, specifically pd_set handling in usb: typec: tcpm. The root cause is an off-by-one error where nr_snk_pdo and nr_src_pdo are incremented one time too many, causing loop index misalignment during Power Negoti...

7.8CVSS6.6AI score0.00236EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2024/05/01 5:28 a.m.24 views

CVE-2024-26995 usb: typec: tcpm: Correct the PDO counting in pd_set

In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: Correct the PDO counting in pdset Off-by-one errors happen because nrsnkpdo and nrsrcpdo are incorrectly added one. The index of the loop is equal to the number of PDOs to be updated when leaving the loop and it...

7.7AI score0.00236EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2024/05/01 5:28 a.m.40 views

CVE-2024-26995

In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: Correct the PDO counting in pdset Off-by-one errors happen because nrsnkpdo and nrsrcpdo are incorrectly added one. The index of the loop is equal to the number of PDOs to be updated when leaving the loop and it...

7.8CVSS7.3AI score0.00236EPSS
Exploits0
OpenVAS
OpenVAS
added 2024/04/26 12:0 a.m.29 views

Slackware: Security Advisory (SSA:2024-116-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.87784EPSS
Exploits0References4
Zero Day Initiative
Zero Day Initiative
added 2024/04/25 12:0 a.m.61 views

Microsoft Windows MHT File Mark-Of-The-Web Bypass Remote Code Execution Vulnerability

This vulnerability allows remote attackers to bypass the Mark-Of-The-Web security feature to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. T...

7.5CVSS5.4AI score0.00649EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/04/25 12:0 a.m.17 views

Progress Software Telerik Reporting ObjectReader Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Progress Software Telerik Reporting. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS8.6AI score0.01129EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2024/04/24 12:0 a.m.26 views

Slackware: Security Advisory (SSA:2024-114-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.02364EPSS
Exploits0References8
Rows per page
Query Builder