Lucene search
K

7657 matches found

BDU FSTEC
BDU FSTEC
added 2024/02/14 12:0 a.m.8 views

The vulnerability of the XWiki platform for creating collaborative web applications lies in the insufficient verification of the authenticity of executed queries. This allows attackers to obtain the rights of the current user.

The vulnerability of the XWiki Platform lies in the insufficient verification of the authenticity of executed queries. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain the privileges of the current user through a specially created URL...

10CVSS7.6AI score0.00381EPSS
Exploits0References4Affected Software1
OpenVAS
OpenVAS
added 2024/02/14 12:0 a.m.30 views

Slackware: Security Advisory (SSA:2024-044-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.5AI score0.99995EPSS
Exploits0References12
Slackware Linux
Slackware Linux
added 2024/02/13 7:35 p.m.51 views

[slackware-security] bind

New bind packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/bind-9.16.48-i586-1slack15.0.txz: Upgraded. This update fixes bugs and security issues: Specific DNS answers could cause a...

7.5CVSS7.5AI score0.99995EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2024/02/13 12:0 a.m.17 views

Adobe Audition AVI File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Audition. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of AVI...

7.8CVSS7.1AI score0.00612EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/02/13 12:0 a.m.5 views

Siemens Tecnomatix Plant Simulation 缓冲区错误漏洞

Tecnomatix Plant Simulation models, simulates, explores and optimizes logistics systems and their processes. These models allow material flow, resource utilization and logistics analysis of all manufacturing plans from global production facilities to local plants and specific production lines pri...

7.8CVSS7.3AI score0.00318EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/02/13 12:0 a.m.3 views

Siemens Simcenter Femap 安全漏洞

Simcenter Femap is an advanced simulation application for creating, editing and checking finite element models of complex products or systems. An out-of-bounds read vulnerability exists in Siemens Simcenter Femap, which can be exploited by an attacker to execute code in the context of the current...

7.8CVSS7.3AI score0.0031EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/02/13 12:0 a.m.60 views

Microsoft Office Word PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Word. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing ...

7.8CVSS7.2AI score0.01719EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/02/13 12:0 a.m.46 views

Microsoft Windows Internet Shortcut SmartScreen Bypass Vulnerability

This vulnerability allows remote attackers to bypass the SmartScreen security feature to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The...

8.8CVSS7.3AI score0.95443EPSS
Exploits2References1
Zero Day Initiative
Zero Day Initiative
added 2024/02/13 12:0 a.m.29 views

Adobe Acrobat Pro DC AcroForm Use-After-Free Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS6.3AI score0.03322EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/02/12 12:0 a.m.19 views

Autodesk AutoCAD MODEL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS7.2AI score0.00459EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/02/12 12:0 a.m.15 views

Autodesk AutoCAD SLDPRT File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS7.3AI score0.00526EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/02/12 12:0 a.m.18 views

Autodesk AutoCAD STP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of ST...

7.8CVSS7.2AI score0.00459EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/02/12 12:0 a.m.14 views

Autodesk AutoCAD STP File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of ST...

7.8CVSS7.3AI score0.00515EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/02/12 12:0 a.m.21 views

Autodesk AutoCAD STP File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of ST...

7.8CVSS7.3AI score0.00602EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/02/12 12:0 a.m.15 views

Autodesk AutoCAD STP File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of ST...

7.8CVSS7.2AI score0.00439EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/02/12 12:0 a.m.16 views

Autodesk AutoCAD 3DM File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of 3D...

7.8CVSS7.3AI score0.00401EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/02/12 12:0 a.m.10 views

Autodesk AutoCAD STP File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of ST...

7.8CVSS7.3AI score0.00515EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/02/12 12:0 a.m.20 views

Autodesk AutoCAD MODEL File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS7.2AI score0.00515EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/02/12 12:0 a.m.16 views

Autodesk AutoCAD STP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of ST...

7.8CVSS7.2AI score0.00481EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/02/12 12:0 a.m.13 views

Autodesk AutoCAD STP File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of ST...

7.8CVSS7.3AI score0.00515EPSS
Exploits0References2
Rows per page
Query Builder