Lucene search
K

7657 matches found

Zero Day Initiative
Zero Day Initiative
added 2024/02/12 12:0 a.m.19 views

Autodesk AutoCAD MODEL File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS7.2AI score0.00515EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/02/12 12:0 a.m.24 views

Autodesk AutoCAD STP File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of ST...

7.8CVSS7.3AI score0.00515EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/02/12 12:0 a.m.21 views

Autodesk AutoCAD STEP File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of ST...

7.8CVSS7.3AI score0.00515EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/02/12 12:0 a.m.19 views

Autodesk AutoCAD CATPART File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS7.2AI score0.00639EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/02/12 12:0 a.m.19 views

Autodesk AutoCAD SLDASM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS7.2AI score0.00515EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/02/12 12:0 a.m.27 views

Autodesk AutoCAD SLDPRT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS7.2AI score0.00515EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/02/10 12:0 a.m.6 views

PT-2024-18040 · NetGear · Netgear R7000

Name of the Vulnerable Software and Affected Versions: Netgear R7000 version 1.0.11.136 10.2.120 Description: A vulnerability has been found in the Web Management Interface of the Netgear R7000, affecting an unknown functionality of the file /currentsetting.htm. This vulnerability leads to...

6.5CVSS6.7AI score0.0063EPSS
Exploits1References10
OpenVAS
OpenVAS
added 2024/02/08 12:0 a.m.15 views

Slackware: Security Advisory (SSA:2024-038-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.01815EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2024/02/05 12:0 a.m.13 views

Slackware: Security Advisory (SSA:2024-035-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.01375EPSS
Exploits3References3
Slackware Linux
Slackware Linux
added 2024/02/04 7:43 p.m.35 views

[slackware-security] libxml2

New libxml2 packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libxml2-2.11.7-i586-1slack15.0.txz: Upgraded. Fix the following security issue: xmlreader: Don't expand XIncludes when backtracking...

7.5CVSS7.2AI score0.01375EPSS
Exploits3
Positive Technologies
Positive Technologies
added 2024/02/01 12:0 a.m.6 views

PT-2024-1636 · Unknown · Pixee Java Code Security Toolkit

Name of the Vulnerable Software and Affected Versions: Pixee Java Code Security Toolkit versions =1.1.1 Description: The issue is related to a partial-path traversal bypass vulnerability in the ZipSecurityisBelowCurrentDirectory function. This vulnerability allows attackers to "escape" into sibli...

5.4CVSS5AI score0.00579EPSS
Exploits1References9
Slackware Linux
Slackware Linux
added 2024/01/26 9:3 p.m.25 views

[slackware-security] pam

New pam packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/pam-1.6.0-i586-1slack15.0.txz: Upgraded. pamnamespace.so: fixed a possible local denial-of-service vulnerability. For more information,...

5.5CVSS7.3AI score0.00455EPSS
Exploits1
OpenVAS
OpenVAS
added 2024/01/25 12:0 a.m.15 views

Slackware: Security Advisory (SSA:2024-023-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.4AI score0.02155EPSS
Exploits0References13
Slackware Linux
Slackware Linux
added 2024/01/24 5:3 a.m.28 views

[slackware-security] mozilla-thunderbird

New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-115.7.0-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For mor...

8.8CVSS7AI score0.02155EPSS
Exploits0
OpenVAS
OpenVAS
added 2024/01/24 12:0 a.m.17 views

Slackware: Security Advisory (SSA:2024-023-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.4AI score0.02155EPSS
Exploits0References13
Slackware Linux
Slackware Linux
added 2024/01/23 8:15 p.m.31 views

[slackware-security] mozilla-firefox

New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-115.7.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...

8.8CVSS7AI score0.02155EPSS
Exploits0
OpenVAS
OpenVAS
added 2024/01/23 12:0 a.m.6 views

Slackware: Security Advisory (SSA:2024-022-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References3
Slackware Linux
Slackware Linux
added 2024/01/22 9:2 p.m.17 views

[slackware-security] postfix

New postfix packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/postfix-3.6.14-i586-1slack15.0.txz: Upgraded. Security inbound SMTP smuggling: with "smtpdforbidbarenewline = normalize" default "no...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/01/22 12:0 a.m.9 views

Slackware Linux 15.0 / current postfix Vulnerability (SSA:2024-022-01)

The version of postfix installed on the remote host is prior to 3.6.14 / 3.8.5. It is, therefore, affected by a vulnerability as referenced in the SSA:2024-022-01 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number...

5.6AI score
Exploits0References1
OpenVAS
OpenVAS
added 2024/01/22 12:0 a.m.33 views

Slackware: Security Advisory (SSA:2024-021-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.4AI score0.02106EPSS
Exploits0References10
Rows per page
Query Builder