Lucene search
K

7655 matches found

Zero Day Initiative
Zero Day Initiative
added 2023/09/27 12:0 a.m.27 views

Microsoft Visual Studio FBX File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Visual Studio. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

3.3CVSS5.9AI score0.01779EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2023/09/22 12:0 a.m.24 views

Slackware: Security Advisory (SSA:2023-264-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.2AI score0.02626EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2023/09/22 12:0 a.m.14 views

Slackware: Security Advisory (SSA:2023-264-03)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.5AI score0.99739EPSS
Exploits9References6
OSV
OSV
added 2023/09/21 6:14 p.m.3 views

CLSA-2023-1695320045 Fix CVE(s): CVE-2023-4736

SECURITY UPDATE: An executable file with some well-known name like zip, gzip, and so on can be started from a current directory during some plugin is opening apropriate file that has a one of the extensions .zip, .gzip, .rb, and etc. This issue is effective only if the PATH environment variable h...

7.8CVSS7.1AI score0.00486EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
added 2023/09/19 12:0 a.m.16 views

Autodesk AutoCAD PRT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PR...

7.8CVSS6.8AI score0.00991EPSS
Exploits0References1
Slackware Linux
Slackware Linux
added 2023/09/15 7:55 p.m.44 views

[slackware-security] python3

New python3 packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/python3-3.9.18-i586-1slack15.0.txz: Upgraded. This update fixes a security issue: Fixed an issue where instances of ssl.SSLSocket we...

5.3CVSS6.9AI score0.0079EPSS
Exploits0
Slackware Linux
Slackware Linux
added 2023/09/14 9:21 p.m.32 views

[slackware-security] libwebp

New libwebp packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/libwebp-1.3.2-i586-1slack15.0.txz: Upgraded. Security fix for lossless decoder chromium: 1479274, CVE-2023-4863. For more informatio...

8.8CVSS7AI score0.99739EPSS
Exploits9
CNVD
CNVD
added 2023/09/14 12:0 a.m.23 views

Siemens Teamcenter Visualization and JT2Go Type Obfuscation Vulnerability (CNVD-2023-69807)

Siemens Teamcenter Visualization is a software that provides teamwork capabilities for designing 2D and 3D scenarios.Siemens JT2GO is a JT file viewer. A type confusion vulnerability exists in Siemens Teamcenter Visualization and JT2Go, which can be exploited by an attacker to execute code in the...

7.8CVSS7.1AI score0.00271EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2023/09/14 12:0 a.m.32 views

Slackware: Security Advisory (SSA:2023-256-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.4AI score0.62246EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2023/09/14 12:0 a.m.24 views

Slackware: Security Advisory (SSA:2023-256-03)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.6AI score0.08525EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/09/14 12:0 a.m.57 views

Siemens JT2Go < 14.3.0.1 Multiple Vulnerabilities (SSA-278349)

The version of Siemens JT2Go installed on the remote Windows hosts is prior to 14.3.0.1. It is, therefore, affected by multiple vulnerabilities: - A stack-based buffer overflow vulnerability while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of...

7.8CVSS8.1AI score0.00313EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2023/09/14 12:0 a.m.18 views

Slackware: Security Advisory (SSA:2023-256-04)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.5AI score0.99739EPSS
Exploits9References7
Slackware Linux
Slackware Linux
added 2023/09/13 1:40 a.m.14 views

[slackware-security] mozilla-firefox

New mozilla-firefox packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-115.2.1esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...

6.9AI score
Exploits0
OpenVAS
OpenVAS
added 2023/09/13 12:0 a.m.10 views

Slackware: Security Advisory (SSA:2023-255-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References3
Prion
Prion
added 2023/09/12 10:15 a.m.18 views

Design/Logic Flaw

A vulnerability has been identified in Parasolid V34.1 All versions V34.1.258, Parasolid V35.0 All versions V35.0.253, Parasolid V35.1 All versions V35.1.184, Parasolid V36.0 All versions V36.0.142, Simcenter Femap V2301 All versions V2301.0003, Simcenter Femap V2306 All versions V2306.0001. The...

4.4CVSS7.7AI score0.00226EPSS
Exploits0References3Affected Software2
Zero Day Initiative
Zero Day Initiative
added 2023/09/12 12:0 a.m.23 views

Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.8CVSS6.8AI score0.0046EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/09/12 12:0 a.m.13 views

Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.8CVSS6.8AI score0.0046EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/09/12 12:0 a.m.4 views

Siemens JT2GO 缓冲区错误漏洞

Siemens Teamcenter Visualization is a software that provides teamwork capabilities for designing 2D and 3D scenarios.Siemens JT2GO is a JT file viewer. An out-of-bounds write vulnerability exists in Siemens Teamcenter Visualization and JT2Go, which can be exploited by an attacker to execute code ...

7.8CVSS7.4AI score0.00313EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2023/09/12 12:0 a.m.33 views

Microsoft 3D Builder PLY File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft 3D Builder. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing o...

5.3CVSS6.3AI score0.00697EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2023/09/12 12:0 a.m.18 views

Slackware: Security Advisory (SSA:2023-254-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.00559EPSS
Exploits3References5
Rows per page
Query Builder