Lucene search
K

7655 matches found

Zero Day Initiative
Zero Day Initiative
added 2023/11/15 12:0 a.m.39 views

Adobe Acrobat Reader DC Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS7.2AI score0.01846EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/11/15 12:0 a.m.13 views

Adobe Acrobat Reader DC Font Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS7.2AI score0.04907EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/11/15 12:0 a.m.47 views

Microsoft Office Word FBX File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Word. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing ...

7.8CVSS7.2AI score0.00979EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/11/15 12:0 a.m.19 views

Adobe Audition MP4 File Parsing Uninitialized Variable Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe Audition. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing...

3.3CVSS6.4AI score0.00358EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/11/15 12:0 a.m.36 views

Adobe Acrobat Reader DC Font Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS7.2AI score0.02149EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/11/15 12:0 a.m.13 views

Adobe Acrobat Reader DC Font Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS7.2AI score0.04907EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/11/15 12:0 a.m.20 views

Adobe Acrobat Reader DC Font Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS7.1AI score0.04907EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/11/15 12:0 a.m.13 views

Adobe Acrobat Reader DC Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS7.2AI score0.04907EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/11/15 12:0 a.m.22 views

Adobe Media Encoder MP4 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Media Encoder. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS7.2AI score0.00329EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2023/11/14 3:53 p.m.2 views

libreoffice: Empty entry in Java class path

A flaw was found in LibreOffice. When an empty Java class path entry is configured, LibreOffice will search for Java classes in the current working directory, allowing malicious Java classes to load when opening a document using the file manager, resulting in arbitrary code execution...

7.8CVSS6AI score0.00872EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/11/14 3:46 p.m.3 views

kernel: mm/page_owner: use strscpy() instead of strlcpy()

In the Linux kernel, the following vulnerability has been resolved: mm/pageowner: use strscpy instead of strlcpy current-comm is not a string no guarantee for a zero byte in it. strlcpys1, s2, l is calling strlens2, potentially causing out-of-bound access, as reported by syzbot: detected buffer...

7.1CVSS6.5AI score0.00241EPSS
Exploits0References5
Zero Day Initiative
Zero Day Initiative
added 2023/11/14 12:0 a.m.20 views

Siemens Tecnomatix Plant Simulation WRL File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.6AI score0.00313EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/11/14 12:0 a.m.21 views

Apple macOS Hydra ABC File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the Hydra framework is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the...

3.3CVSS6.9AI score0.00394EPSS
Exploits0References1
Adobe
Adobe
added 2023/11/14 12:0 a.m.39 views

APSB23-53 : Security update available for Adobe RoboHelp Server

Adobe has released a security update for RoboHelp Server. This update resolves vulnerabilities rated critical and important. Successful exploitation could lead to arbitrary code execution and memory leak in the context of the current user...

8.1AI score
Exploits0Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2023/11/14 12:0 a.m.23 views

GIMP PSP File Parsing Off-By-One Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSP files...

7.8CVSS6.7AI score0.56404EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2023/11/14 12:0 a.m.17 views

Slackware: Security Advisory (SSA:2023-317-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7AI score0.02685EPSS
Exploits0References15
Zero Day Initiative
Zero Day Initiative
added 2023/11/14 12:0 a.m.17 views

Apple macOS Hydra Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the Hydra library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the Hydr...

3.3CVSS6.9AI score0.00394EPSS
Exploits0References1
Adobe
Adobe
added 2023/11/14 12:0 a.m.61 views

APSB23-66 : Security update available for Adobe After Effects

Adobe has released an update for Adobe After Effects for Windows and macOS. This update addresses critical and moderate security vulnerabilities. Successful exploitation could lead to arbitrary code execution and memory leak in the context of the current user...

8AI score
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/11/14 12:0 a.m.17 views

Zoom Client for Meetings < 5.16.0 Vulnerability (ZSB-23049)

The version of Zoom Client for Meetings installed on the remote host is prior to 5.16.0. It is, therefore, affected by a vulnerability as referenced in the ZSB-23049 advisory. - Improper conditions check in Zoom Team Chat for Zoom clients may allow an authenticated user to conduct a denial of...

6.5CVSS6.5AI score0.00855EPSS
Exploits0References2
Slackware Linux
Slackware Linux
added 2023/11/13 7:27 p.m.41 views

[slackware-security] tigervnc

New tigervnc packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: extra/tigervnc/tigervnc-1.12.0-i586-4slack15.0.txz: Rebuilt. Recompiled against xorg-server-1.20.14, including patches for several security issues...

8.8CVSS7.5AI score0.02685EPSS
Exploits0
Rows per page
Query Builder