Lucene search
+L

89 matches found

CNVD
CNVD
added 2021/09/16 12:0 a.m.22 views

Autodesk Navisworks Out-of-Bounds Read Vulnerability (CNVD-2021-99309)

Autodesk Navisworks, a 3D model review software for architecture, engineering and construction, is vulnerable to an out-of-bounds read vulnerability in Autodesk Navisworks versions 2019, 2020, 2021, 2022. An attacker can exploit the vulnerability to execute arbitrary code via specially crafted PD...

7.8CVSS7AI score0.00957EPSS
Exploits0References1
CNVD
CNVD
added 2021/09/16 12:0 a.m.31 views

Autodesk Navisworks Memory Corruption Vulnerability

Autodesk Navisworks is a 3D model review software for architecture, engineering and construction. A memory corruption vulnerability exists in Autodesk Navisworks versions 2019, 2020, 2021, 2022. An attacker can exploit the vulnerability to execute code via specially crafted DLL files...

7.8CVSS7.9AI score0.00298EPSS
Exploits0References1
NVD
NVD
added 2021/08/24 7:15 p.m.24 views

CVE-2021-30863

This issue was addressed by improving Face ID anti-spoofing models. This issue is fixed in iOS 15 and iPadOS 15. A 3D model constructed to look like the enrolled user may be able to authenticate via Face ID...

6.8CVSS0.0027EPSS
Exploits0References1
Prion
Prion
added 2021/08/24 7:15 p.m.19 views

Design/Logic Flaw

This issue was addressed by improving Face ID anti-spoofing models. This issue is fixed in iOS 15 and iPadOS 15. A 3D model constructed to look like the enrolled user may be able to authenticate via Face ID...

4.6CVSS6.3AI score0.0027EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2021/08/24 6:49 p.m.84 views

CVE-2021-30863

CVE-2021-30863 affects devices with Face ID. The issue describes a spoofing risk where a 3D model resembling the enrolled user may authenticate via Face ID. Apple fixed the vulnerability in iOS 15 and iPadOS 15 by improving Face ID anti-spoofing models. Public-facing details in the connected sour...

6.8CVSS6.2AI score0.0027EPSS
Exploits0References1Affected Software2
Talos
Talos
added 2020/04/21 12:0 a.m.30 views

Prusa Research PrusaSlicer _3MF_Importer::_handle_end_model() use-after-free vulnerability

Summary A use-after-free vulnerability exists in the 3MFImporter::handleendmodel functionality of Prusa Research PrusaSlicer 2.2.0 and Master commit 4b040b856. A specially crafted 3MF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability. Tested...

8.8CVSS7.9AI score0.01342EPSS
Exploits1
NVD
NVD
added 2019/12/18 6:15 p.m.25 views

CVE-2019-8760

This issue was addressed by improving Face ID machine learning models. This issue is fixed in iOS 13. A 3D model constructed to look like the enrolled user may authenticate via Face ID...

6.8CVSS5.9AI score0.00307EPSS
Exploits0References1
Prion
Prion
added 2019/12/18 6:15 p.m.21 views

Design/Logic Flaw

This issue was addressed by improving Face ID machine learning models. This issue is fixed in iOS 13. A 3D model constructed to look like the enrolled user may authenticate via Face ID...

4.6CVSS5.9AI score0.00307EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/03/27 12:0 a.m.18 views

GLSA-201803-13 : PLIB: User-assisted execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-201803-13 PLIB: User-assisted execution of arbitrary code A stack-based buffer overflow within the error function of ssg/ssgParser.cxx was discovered in PLIB. Impact : A remote attacker, by enticing a user to open a specially...

6.8CVSS6.6AI score0.09968EPSS
Exploits0References2
Check Point Advisories
Check Point Advisories
added 2015/11/17 12:0 a.m.2 views

SAP 3D Visual Enterprise Viewer 3DM File Buffer Overflow

A buffer overflow vulnerability exists in SAP 3D Visual Enterprise Viewer. The vulnerability is caused by improper validation of the size value read from a Rhino 3D Model 3DM file. By enticing a user to open a crafted 3DM file with the affected application, an attacker could possibly exploit this...

4.3AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.27 views

PLIB 1.8.5 ssg/ssgParser.cxx Buffer Overflow

No description provided by source. / Exploit Title: Plib + flightgear 3dconvert exploit Date: 08/10/2012 Author: Andres Gomez Software Links: Plib: http://plib.sourceforge.net/ flightgear: http://www.flightgear.org/ 3dconvert: ftp://ftp.ihg.uni-duisburg.de/FlightGear/Win32/old/3dconvert-win32.zip...

7.1AI score
Exploits0
NVD
NVD
added 2012/11/18 11:55 p.m.17 views

CVE-2012-4552

Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, as demonstrated by a .ase file...

6.8CVSS7.7AI score0.09968EPSS
Exploits0References9
OSV
OSV
added 2012/11/18 11:55 p.m.8 views

CVE-2012-4552

Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, as demonstrated by a .ase file...

7.7AI score
Exploits0References9
Prion
Prion
added 2012/11/18 11:55 p.m.10 views

Stack overflow

Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, as demonstrated by a .ase file...

6.8CVSS8.4AI score0.09968EPSS
Exploits0References9Affected Software1
UbuntuCve
UbuntuCve
added 2012/11/18 11:55 p.m.16 views

CVE-2012-4552

Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, as demonstrated by a .ase file...

6.8CVSS6.4AI score0.09968EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2012/11/18 11:0 p.m.34 views

CVE-2012-4552

Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, as demonstrated by a .ase file...

6.8CVSS7.6AI score0.09968EPSS
Exploits0
Cvelist
Cvelist
added 2012/11/18 11:0 p.m.18 views

CVE-2012-4552

Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, as demonstrated by a .ase file...

7.6AI score0.09968EPSS
Exploits0References9
CVE
CVE
added 2012/11/18 11:0 p.m.60 views

CVE-2012-4552

PLIB 1.8.5 is affected by a stack-based buffer overflow in the error function (ssg/ssgParser.cxx) that can be triggered by a crafted 3D model file (e.g., .ase), allowing remote code execution. Public advisories confirm the issue and show remediation guidance; upgrades to newer PLIB versions fix t...

6.8CVSS7.8AI score0.09968EPSS
Exploits0References9Affected Software1
Exploit DB
Exploit DB
added 2012/10/09 12:0 a.m.38 views

PLIB 1.8.5 - 'ssg/ssgParser.cxx' Local Buffer Overflow

/ Exploit Title: Plib + flightgear 3dconvert exploit Date: 08/10/2012 Author: Andres Gomez Software Links: Plib: http://plib.sourceforge.net/ flightgear: http://www.flightgear.org/ 3dconvert: ftp://ftp.ihg.uni-duisburg.de/FlightGear/Win32/old/3dconvert-win32.zip Version: Plib 1.8.5 Tested on:...

7.4AI score
Exploits0
FreeBSD
FreeBSD
added 2012/10/09 12:0 a.m.19 views

plib -- stack-based buffer overflow

CVE reports: Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, as demonstrated by a .ase file...

6.8CVSS7.6AI score0.09968EPSS
Exploits0References1
Rows per page
Query Builder