Lucene search
K

7655 matches found

Zero Day Initiative
Zero Day Initiative
added 2023/08/08 12:0 a.m.19 views

VBASE VISAM Automation Base VBASE-Editor WebRemote File Parsing XML External Entity Processing Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of VBASE VISAM Automation Base. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

5.5CVSS5.9AI score0.01761EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/08/08 12:0 a.m.4 views

Siemens Solid Edge 缓冲区错误漏洞

Solid Edge is a portfolio of software tools that address a variety of product development processes: 3D design, simulation, manufacturing and design management. Siemens Solid Edge suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to execute code in the context ...

7.8CVSS7.2AI score0.00207EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/08/08 12:0 a.m.3 views

Siemens Solid Edge 缓冲区错误漏洞

Solid Edge is a portfolio of software tools that address a variety of product development processes: 3D design, simulation, manufacturing and design management. Siemens Solid Edge suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to execute code in the context ...

7.8CVSS7.2AI score0.00219EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2023/08/08 12:0 a.m.21 views

VBASE VISAM Automation Base DBConnections File Parsing XML External Entity Processing Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of VBASE VISAM Automation Base. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

5.5CVSS5.9AI score0.00255EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/08/08 12:0 a.m.3 views

Siemens Solid Edge 缓冲区错误漏洞

Solid Edge is a portfolio of software tools that address a variety of product development processes: 3D design, simulation, manufacturing and design management. Siemens Solid Edge suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to execute code in the context...

7.8CVSS7.4AI score0.00207EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/08/07 12:0 a.m.15 views

Slackware: Security Advisory (SSA:2023-216-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.1AI score0.13694EPSS
Exploits1References15
Slackware Linux
Slackware Linux
added 2023/08/04 8:52 p.m.37 views

[slackware-security] mozilla-firefox

New mozilla-firefox packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-firefox-115.1.0esr-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more...

9.8CVSS9.2AI score0.13694EPSS
Exploits1
Zero Day Initiative
Zero Day Initiative
added 2023/08/04 12:0 a.m.18 views

Delta Industrial Automation CNCSoft DPB File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Industrial Automation CNCSoft. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS6.8AI score0.05322EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/08/04 12:0 a.m.22 views

Siemens Solid Edge Viewer OBJ File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

3.3CVSS6AI score0.00201EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/08/04 12:0 a.m.41 views

Apple Safari PDF Plugin Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple Safari. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the WebKit PDF plugin...

8.8CVSS6.7AI score0.00589EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/08/04 12:0 a.m.18 views

Siemens Solid Edge Viewer STP File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.9AI score0.00226EPSS
Exploits0References1
NVD
NVD
added 2023/08/03 11:15 a.m.17 views

CVE-2023-3662

In CODESYS Development System versions from 3.5.17.0 and prior to 3.5.19.20 a vulnerability allows for execution of binaries from the current working directory in the users context...

7.3CVSS7.1AI score0.00194EPSS
Exploits0References1
OSV
OSV
added 2023/08/03 11:15 a.m.2 views

CVE-2023-3662

In CODESYS Development System versions from 3.5.17.0 and prior to 3.5.19.20 a vulnerability allows for execution of binaries from the current working directory in the users context...

7.3CVSS5.9AI score0.00194EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/08/03 10:55 a.m.19 views

CVE-2023-3662 CODESYS: Vulnerability in CODESYS Development System allows for execution of binaries

In CODESYS Development System versions from 3.5.17.0 and prior to 3.5.19.20 a vulnerability allows for execution of binaries from the current working directory in the users context...

7.3CVSS7.3AI score0.00194EPSS
Exploits0References1
Slackware Linux
Slackware Linux
added 2023/08/02 5:8 p.m.45 views

[slackware-security] openssl

New openssl packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/openssl-1.1.1v-i586-1slack15.0.txz: Upgraded. This update fixes bugs and security issues: Fix excessive time spent checking DH q...

5.3CVSS7AI score0.05533EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/08/01 12:0 a.m.16 views

Slackware: Security Advisory (SSA:2023-212-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.9AI score0.00556EPSS
Exploits0References5
Slackware Linux
Slackware Linux
added 2023/07/31 9:59 p.m.17 views

[slackware-security] seamonkey

New seamonkey packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/seamonkey-2.53.17-i686-1slack15.0.txz: Upgraded. This update contains security fixes and improvements. For more information, see:...

7AI score
Exploits0
Slackware Linux
Slackware Linux
added 2023/07/31 9:58 p.m.32 views

[slackware-security] mozilla-thunderbird

New mozilla-thunderbird packages are available for Slackware 15.0 and -current to fix a security issue. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/mozilla-thunderbird-102.13.1-i686-1slack15.0.txz: Upgraded. This release contains security fixes and improvements. For...

7.5CVSS6.9AI score0.00556EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2023/07/26 12:0 a.m.21 views

Foxit PDF Reader AcroForm Doc Object Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of D...

7.8CVSS6.8AI score0.00438EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/07/26 12:0 a.m.20 views

Foxit PDF Reader XFA Annotation Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.8CVSS6.8AI score0.0045EPSS
Exploits0References1
Rows per page
Query Builder