34 matches found
OESA-2026-2240 pdfbox security update
Apache PDFBox is an open source Java PDF library for working with PDF documents. This project allows creation of new PDF documents, manipulation of existing documents and the ability to extract content from documents. Apache PDFBox also includes several command line utilities. Apache PDFBox is...
CVE-2026-33929
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Apache PDFBox Examples. This issue affects the ExtractEmbeddedFiles example in Apache PDFBox: from 2.0.24 through 2.0.36, from 3.0.0 through 3.0.7. Users are recommended to update to version 2.0.37 or...
CVE-2026-33929 Apache PDFBox Examples: Path Traversal in PDFBox ExtractEmbeddedFiles Example Code
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Apache PDFBox Examples. This issue affects the ExtractEmbeddedFiles example in Apache PDFBox: from 2.0.24 through 2.0.36, from 3.0.0 through 3.0.7. Users are recommended to update to version 2.0.37 or...
PT-2026-32604
Name of the Vulnerable Software and Affected Versions Apache PDFBox versions 2.0.24 through 2.0.36 Apache PDFBox versions 3.0.0 through 3.0.7 Description The ExtractEmbeddedFiles example contains a path traversal issue, which occurs when an application does not properly restrict the pathnames use...
Apache PDFBox 安全漏洞
Apache PDFBox is an open-source tool library based on the Java language, developed by the Apache Foundation. This product provides functions for creating and editing PDF documents. Versions of Apache PDFBox from 2.0.24 to 2.0.36, as well as 3.0.0 to 3.0.7, have security vulnerabilities due to...
CVE-2025-53597
A buffer overflow vulnerability has been reported to affect License Center. If a remote attacker gains an administrator account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following version: License Center 2.0.36 and...
CVE-2025-52871
An out-of-bounds read vulnerability has been reported to affect License Center. If a remote attacker gains a user account, they can then exploit the vulnerability to obtain secret data. We have already fixed the vulnerability in the following version: License Center 2.0.36 and later...
CVE-2025-53597
A buffer overflow vulnerability has been reported to affect License Center. If a remote attacker gains an administrator account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following version: License Center 2.0.36 and...
CVE-2025-53597 License Center
A buffer overflow vulnerability has been reported to affect License Center. If a remote attacker gains an administrator account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following version: License Center 2.0.36 and...
CVE-2025-53597 License Center
A buffer overflow vulnerability has been reported to affect License Center. If a remote attacker gains an administrator account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following version: License Center 2.0.36 and...
CVE-2025-53597
CVE-2025-53597 describes a buffer overflow in QNAP License Center. The vulnerability affects License Center versions prior to 2.0.36, where an attacker with administrative privileges could trigger memory corruption or cause processes to crash. The fixed version is License Center 2.0.36 and later....
CVE-2025-52871
CVE-2025-52871 affects QNAP License Center. The vulnerability is an out-of-bounds read in License Center prior to version 2.0.36, exploitable by a remote attacker who has a user account to obtain secret data. Patches exist in License Center 2.0.36 and later. Publicly reported details across multi...
CVE-2025-52871 License Center
An out-of-bounds read vulnerability has been reported to affect License Center. If a remote attacker gains a user account, they can then exploit the vulnerability to obtain secret data. We have already fixed the vulnerability in the following version: License Center 2.0.36 and later...
QNAP Systems License Center 缓冲区错误漏洞
QNAP Systems License Center is a license management center of Taiwan, China-based QNAP Systems. A buffer error vulnerability exists in QNAP Systems License Center versions prior to 2.0.36, which originates from an out-of-bounds read and could lead to the acquisition of secret data...
PT-2026-1095
Name of the Vulnerable Software and Affected Versions License Center versions prior to 2.0.36 Description A buffer overflow issue exists in License Center. Successful exploitation could allow a remote attacker with administrator privileges to modify memory or cause processes to crash...
QNAP Systems License Center 安全漏洞
QNAP Systems License Center is a license management center from QNAP Systems, a Taiwan, China-based company. A security vulnerability exists in QNAP Systems License Center versions prior to 2.0.36, which stems from a buffer overflow that could result in modification of memory or process crash...
OpenIPMI before 2.0.36 has an out-of-bounds array access (for authentication type) in the ipmi_sim simulator resulting in denial of service or (with very low probability) authentication bypass or code execution.
...
CVE-2024-42934 affecting package OpenIPMI for versions less than 2.0.36-1
CVE-2024-42934 affecting package OpenIPMI for versions less than 2.0.36-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-42934
CVE-2024-42934 affects OpenIPMI before 2.0.36 due to an out-of-bounds array access in the ipmi_sim simulator (authentication type). This can cause denial of service and, with very low probability, authentication bypass or code execution. Multiple connected Nessus advisories/source entries confirm...
CVE-2024-43257
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Nouthemes Leopard - WordPress offload media.This issue affects Leopard - WordPress offload media: from n/a through 2.0.36...