19 matches found
CVE-2026-26337 Hyland Alfresco Transformation Service Absolute Path Traversal Arbitrary File Read and SSRF
Hyland Alfresco Transformation Service allows unauthenticated attackers to achieve both arbitrary file read and server-side request forgery through the absolute path traversal...
CVE-2026-26337 Hyland Alfresco Transformation Service Absolute Path Traversal Arbitrary File Read and SSRF
Hyland Alfresco Transformation Service allows unauthenticated attackers to achieve both arbitrary file read and server-side request forgery through the absolute path traversal...
CVE-2022-26337
Trend Micro Password Manager Consumer installer version 5.0.0.1262 and below is vulnerable to an Uncontrolled Search Path Element vulnerability that could allow an attacker to use a specially crafted file to exploit the vulnerability and escalate local privileges on the affected machine...
CVE-2024-26337
creationtimestamp| type| source ---|---|--- 2024-03-05 10:27:28+00:00| seen| https://t.me/ctinow/200076 2024-03-05 10:27:35+00:00| seen| https://t.me/ctinow/200080...
CVE-2024-26337
swftools v0.9.2 was discovered to contain a segmentation violation via the function sfont at swftools/src/swfc.c...
CVE-2024-26337
swftools v0.9.2 was discovered to contain a segmentation violation via the function sfont at swftools/src/swfc.c...
CVE-2024-26337
swftools v0.9.2 was discovered to contain a segmentation violation via the function sfont at swftools/src/swfc.c...
CVE-2024-26337
CVE-2024-26337 affects swftools, specifically version 0.9.2, where a segmentation violation is caused by the s_font function in swftools/src/swfc.c. The issue has limited public exploit detail in the provided sources, with several feeds (e.g., CNVD, NVD, Red Hat, Ubuntu OSV, Nessus) identifying a...
CVE-2023-26337
Adobe Dimension versions 3.4.7 and earlier is affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2023-26337
CVE-2023-26337 is a stack-based buffer overflow in Adobe Dimension ≤ 3.4.7 that allows arbitrary code execution in the context of the current user. Exploitation requires a user to open a crafted file (social/interaction). Public sources confirm the flaw affects Dimension 3.4.7 and earlier. Adobe ...
Adobe Dimension < 3.4.8 Multiple Vulnerabilities (APSB23-20) (macOS)
The version of Adobe Dimension installed on the remote macOS host is prior to 3.4.8. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB23-20 advisory. - Adobe Dimension versions 3.4.7 and earlier is affected by a Stack-based Buffer Overflow vulnerability that could...
AMD Client Vulnerabilities – May 2022
Bulletin ID: AMD-SB-1027 Potential Impact: Varies by CVE, see descriptions below Severity: Varies by CVE, see descriptions below Summary During security reviews in collaboration with Google, Microsoft, and Oracle, potential vulnerabilities in the AMD Secure Processor ASP, AMD System Management Un...
CVE-2022-26337
creationtimestamp| type| source ---|---|--- 2022-03-09 00:41:01+00:00| seen| https://t.me/cibsecurity/38560...
CVE-2022-26337
The CVE-2022-26337 entry concerns Trend Micro Password Manager (Consumer) installer versions 5.0.0.1262 and earlier. The issue is an Uncontrolled Search Path Element vulnerability in the installer, enabling a local attacker to escalate privileges by using a specially crafted file on the affected ...
CVE-2021-26337
Insufficient DRAM address validation in System Management Unit SMU may result in a DMA read from invalid DRAM address to SRAM resulting in SMU not servicing further requests...
CVE-2021-26337
Insufficient DRAM address validation in System Management Unit SMU may result in a DMA read from invalid DRAM address to SRAM resulting in SMU not servicing further requests...
CVE-2021-26337
The CVE-2021-26337 issue is an AMD SMU (System Management Unit) DRAM address validation flaw. It can permit a DMA read from an invalid DRAM address into SRAM, causing the SMU to stop servicing further requests. Mitigations are provided by AMD/AGSIA: update to the specified AGESA PI software versi...
CVE-2020-26337
...
CVE-2020-26337
CVE-2020-26337 is rejected/not used and does not represent an active vulnerability entry.