Lucene search
K

7655 matches found

Cvelist
Cvelist
added 2023/10/19 5:27 p.m.22 views

CVE-2023-5059 Santesoft Sante FFT Imaging Out-of-bounds Read

Santesoft Sante FFT Imaging lacks proper validation of user-supplied data when parsing DICOM files. This could lead to an out-of-bounds read. An attacker could leverage this vulnerability to execute arbitrary code in the context of the current process...

7.8CVSS8AI score0.00201EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/10/19 12:0 a.m.42 views

Siemens Tecnomatix Plant Simulation IGS File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.8AI score0.00228EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/10/19 12:0 a.m.28 views

Siemens Tecnomatix Plant Simulation SPP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.8AI score0.00222EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/10/19 12:0 a.m.34 views

Siemens Tecnomatix Plant Simulation IGS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.8AI score0.00222EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/10/19 12:0 a.m.19 views

Siemens Tecnomatix Plant Simulation STP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.8AI score0.00213EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/10/17 12:0 a.m.7 views

Slackware Linux 15.0 / current util-linux Vulnerability (SSA:2023-290-01)

The version of util-linux installed on the remote host is prior to 2.37.4 / 2.39.2. It is, therefore, affected by a vulnerability as referenced in the SSA:2023-290-01 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version...

5.6AI score
Exploits0References1
OpenVAS
OpenVAS
added 2023/10/12 12:0 a.m.28 views

Slackware: Security Advisory (SSA:2023-284-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.78483EPSS
Exploits6References6
OpenVAS
OpenVAS
added 2023/10/12 12:0 a.m.27 views

Slackware: Security Advisory (SSA:2023-284-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.8AI score0.99999EPSS
Exploits19References6
Zero Day Initiative
Zero Day Initiative
added 2023/10/11 12:0 a.m.15 views

Siemens Tecnomatix Plant Simulation PRT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.8AI score0.00246EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/10/11 12:0 a.m.18 views

Siemens Tecnomatix Plant Simulation PAR File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.8AI score0.00209EPSS
Exploits0References1
CNVD
CNVD
added 2023/10/11 12:0 a.m.11 views

Siemens Tecnomatix Plant Simulation Out-of-Bounds Read Vulnerability (CNVD-2023-75583)

Siemens Tecnomatix Plant Simulation is an industrial control device from Siemens, Germany. Using the function of discrete event simulation for production volume analysis and optimization, and thus improve the manufacturing system performance. Siemens Tecnomatix Plant Simulation suffers from an...

7.8CVSS7.1AI score0.00216EPSS
Exploits0References1
CNVD
CNVD
added 2023/10/11 12:0 a.m.28 views

Siemens Tecnomatix Plant Simulation File Analysis Vulnerability

Siemens Tecnomatix Plant Simulation is an industrial control device from Siemens, Germany. Using the function of discrete event simulation for production volume analysis and optimization, and thus improve the manufacturing system performance. A file analysis vulnerability exists in Siemens...

7.8CVSS7.1AI score0.00224EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/10/11 12:0 a.m.16 views

(Pwn2Own) Microsoft Teams Cross-Site Scripting Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Teams. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of...

5CVSS7.1AI score
Exploits0References1
OpenVAS
OpenVAS
added 2023/10/11 12:0 a.m.6 views

Slackware: Security Advisory (SSA:2023-283-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
OpenVAS
OpenVAS
added 2023/10/11 12:0 a.m.14 views

Slackware: Security Advisory (SSA:2023-283-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.8AI score0.1657EPSS
Exploits1References3
Slackware Linux
Slackware Linux
added 2023/10/10 7:41 p.m.24 views

[slackware-security] libnotify

New libnotify packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libnotify-0.8.3-i586-1slack15.0.txz: Upgraded. This release contains a critical stability/minor security update which affects...

7AI score
Exploits0
CISA KEV Catalog
CISA KEV Catalog
added 2023/10/10 12:0 a.m.21 views

Adobe Acrobat and Reader Use-After-Free Vulnerability

Adobe Acrobat and Reader contains a use-after-free vulnerability that allows for code execution in the context of the current user...

7.8CVSS7.4AI score0.61475EPSS
In wildExploits2
VulnCheck KEV
VulnCheck KEV
added 2023/10/10 12:0 a.m.4 views

VulnCheck KEV: CVE-2023-21608

Adobe Acrobat and Reader contains a use-after-free vulnerability that allows for code execution in the context of the current user...

7.8CVSS7.6AI score0.61475EPSS
Exploits2References1
CNNVD
CNNVD
added 2023/10/10 12:0 a.m.4 views

SmodBIP Cross-Site Request Forgery Vulnerability

SmodBIP is a free BIP program. SmodBIP has a security vulnerability that stems from the presence of a cross-site request forgery CSRF vulnerability. An attacker can exploit the vulnerability to perform malicious actions under the current identity using elevated privileges...

8.8CVSS6.9AI score0.00328EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2023/10/10 12:0 a.m.5 views

The vulnerability of the software environment of Siemens Tecnomatix Plant Simulation in simulation models for systems and processes involves writing code beyond the buffer boundaries of memory, allowing attackers to execute arbitrary code with privileges of the current process.

The vulnerability of the software environment of Siemens Tecnomatix Plant Simulation lies in the writing beyond buffer boundaries. Exploiting this vulnerability allows an attacker to execute arbitrary code with privileges of the current process, using a specially crafted SPP file...

7.8CVSS7.8AI score0.00226EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder