13 matches found
CVE-2023-26392
creationtimestamp| type| source ---|---|--- 2023-04-13 02:29:39+00:00| seen| https://t.me/cibsecurity/62042...
CVE-2023-26392
Adobe Substance 3D Stager version 2.0.1 and earlier is affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2023-26392
CVE-2023-26392 affects Adobe Substance 3D Stager versions 2.0.1 and earlier. The root issue is a Use After Free vulnerability in USD file parsing, which could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction: a victim must open a malicious ...
CVE-2023-26392 ZDI-CAN-20235: Adobe Substance 3D Stager USD File Parsing Use-After-Free Remote Code Execution Vulnerability
Adobe Substance 3D Stager version 2.0.1 and earlier is affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2020-26392
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2020. Notes: none...
CVE-2021-26392
creationtimestamp| type| source ---|---|--- 2022-11-10 00:36:21+00:00| seen| https://t.me/cibsecurity/52726...
CVE-2021-26392
Insufficient verification of missing size check in 'LoadModule' may lead to an out-of-bounds write potentially allowing an attacker with privileges to gain code execution of the OS/kernel by loading a malicious TA...
CVE-2021-26392
CVE-2021-26392 involves insufficient verification of a missing size check in LoadModule, leading to an out-of-bounds write that could enable code execution in the OS/kernel via loading a malicious TA. AMD’s related bulletin (AMD-SB-5001) labels this CVE as Medium and provides mitigations through ...
CVE-2022-26392
CVE-2022-26392 is a format-string vulnerability in Baxter Spectrum WBM firmware (v16, v16D38, v17, v17D19, v20D29–v20D32) that is exploitable when the device runs in superuser mode and processes application messages. The issue can let an attacker read memory on the WBM via a Telnet/hostmessage co...
CVE-2022-26392 Format String vulnerability
The Baxter Spectrum WBM v16, v16D38 and Baxter Spectrum WBM v17, v17D19, v20D29 to v20D32 when in superuser mode is susceptible to format string attacks via application messaging. An attacker could use this to read memory in the WBM to access sensitive information...
Baxter Sigma Spectrum Infusion Pump (Update A)
1. EXECUTIVE SUMMARY --------- Begin Update A part 1 of 3 --------- CVSS v3 7.5 --------- End Update A part 1 of 3 --------- ATTENTION: Exploitable remotely Vendor: Baxter Equipment: Sigma and Baxter Spectrum Infusion Pumps Vulnerabilities: Missing Encryption of Sensitive Data, Use of Externally...
CVE-2020-26392
CVE-2020-26392 is rejected and not used; this candidate was in a CNA pool not assigned to issues in 2020.
CVE-2020-26392
...