20 matches found
CVE-2024-20677
CVE-2024-20677 is a Microsoft Office RCE vulnerability tied to inserting FBX 3D files. MS mitigation disables the FBX insertion feature in Word, Excel, PowerPoint and Outlook on Windows and Mac; affected Office versions (Office 2019, 2021, Office LTSC for Mac 2021, Microsoft 365) lose the ability...
Microsoft Office Remote Code Execution Vulnerability
A security vulnerability exists in FBX that could lead to remote code execution. To mitigate this vulnerability, the ability to insert FBX files has been disabled in Word, Excel, PowerPoint and Outlook for Windows and Mac. Versions of Office that had this feature enabled will no longer have acces...
WordPress 3D viewer – Embed 3D Models Plugin < 1.3.4 is vulnerable to Cross Site Scripting (XSS)
Software 3D viewer – Embed 3D Models Type Plugin Vulnerable versions 1.3.4 Fixed in 1.3.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 42920a97a20a Credits Rafie Muhammad...
Siemens Teamcenter Visualization and JT2Go Memory Corruption Vulnerability
JT2Go is a 3D JT viewing tool that allows users to view JT, PDF, Solid Edge, PLM XML with available JT, VFZ, CGM and TIF data.Teamcenter Visualization software is able to enhance its Product Lifecycle Management PLM environments with a comprehensive range of visualization solutions. PLM environme...
Siemens JT2Go and Teamcenter Visualization Buffer Overflow Vulnerability
JT2Go is a 3D JT viewing tool that allows users to view JT, PDF, Solid Edge, PLM XML, and available JT, VFZ, CGM, and TIF data. teamcenter Visualization enables companies to enhance their product lifecycle management PLM environments with a comprehensive family of visualization solutions. The...
Siemens Teamcenter Visualization and JT2Go缓冲区溢出漏洞
JT2Go is a 3D JT viewing tool that allows users to view JT, PDF, Solid Edge, PLM XML, and available JT, VFZ, CGM, and TIF data. teamcenter Visualization enables companies to enhance their product lifecycle management PLM environments with a comprehensive family of visualization solutions. The...
Siemens JT2Go and Teamcenter Visualization越界读取漏洞
JT2Go is a 3D JT viewing tool that allows users to view JT, PDF, Solid Edge, PLM XML, and available JT, VFZ, CGM, and TIF data. teamcenter Visualization enables companies to enhance their product lifecycle management PLM environments with a comprehensive family of visualization solutions. The...
Siemens JT2Go and Teamcenter Visualization Out-of-Bounds Read Vulnerability (CNVD-2022-51433)
JT2Go is a 3D JT viewing tool that allows users to view JT, PDF, Solid Edge, PLM XML, and available JT, VFZ, CGM, and TIF data. teamcenter Visualization enables companies to enhance their product lifecycle management PLM environments with a comprehensive family of visualization solutions. The...
WordPress 3D viewer – Embed 3D Models plugin <= 1.2.6 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability
Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress 3D viewer – Embed 3D Models plugin versions = 1.2.6. Solution Update the WordPress 3D viewer – Embed 3D Models plugin to the latest available version at least 1.2.7...
JT2Go and Teamcenter Visualization File Parsing Vulnerability (CNVD-2021-100357)
JT2Go, a 3D JT viewing tool, and Teamcenter Visualization software enable companies to enhance their Product Lifecycle Management PLM environments with a comprehensive family of visualization solutions. The software allows business users to access documents, 2D drawings and 3D models in a single...
JT2Go and Teamcenter Visualization File Parsing Vulnerability (CNVD-2021-100358)
JT2Go, a 3D JT viewing tool, and Teamcenter Visualization software enable companies to enhance their Product Lifecycle Management PLM environments with a comprehensive family of visualization solutions. The software allows business users to access documents, 2D drawings and 3D models in a single...
JT2Go and Teamcenter Visualization File Parsing Vulnerability (CNVD-2021-100366)
JT2Go is a 3D JT viewing tool, Teamcenter visualization software enables organizations to enhance their product lifecycle management PLM environments with a comprehensive family of visualization solutions. The software allows business users to access documents, 2D drawings and 3D models in a sing...
JT2Go and Teamcenter Visualization File Parsing Vulnerability (CNVD-2021-100356)
JT2Go, a 3D JT viewing tool, and Teamcenter Visualization software enable companies to enhance their Product Lifecycle Management PLM environments with a comprehensive family of visualization solutions. The software allows business users to access documents, 2D drawings and 3D models in a single...
JT2Go and Teamcenter Visualization File Parsing Vulnerability (CNVD-2021-100359)
JT2Go, a 3D JT viewing tool, and Teamcenter Visualization software enable companies to enhance their Product Lifecycle Management PLM environments with a comprehensive family of visualization solutions. The software allows business users to access documents, 2D drawings and 3D models in a single...
JT2Go and Teamcenter Visualization File Parsing Vulnerability (CNVD-2021-100360)
JT2Go, a 3D JT viewing tool, and Teamcenter Visualization software enable companies to enhance their Product Lifecycle Management PLM environments with a comprehensive family of visualization solutions. The software allows business users to access documents, 2D drawings and 3D models in a single...
JT2Go and Teamcenter Visualization File Parsing Vulnerability (CNVD-2021-100365)
JT2Go, a 3D JT viewing tool, and Teamcenter Visualization software enable companies to enhance their Product Lifecycle Management PLM environments with a comprehensive family of visualization solutions. The software allows business users to access documents, 2D drawings and 3D models in a single...
Fedora: Security Advisory for openscad (FEDORA-2021-8349f28cb9)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
ICSA-20-098-05_KUKA.Sim Pro
1. EXECUTIVE SUMMARY CVSS v3 4.3 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: KUKA Equipment: Sim Pro Vulnerability: Improper Enforcement of Message Integrity During Transmission in a Communication Channel 2. RISK EVALUATION Successful exploitation of this vulnerability...
Mesa: security fixes for Intel drivers (important)
Mesa was updated to fix a security problem in the Intel drivers, where potentially remote attackers via 3D models could inject code. CVE-2013-1872 - i965: fix problem with constant out of bounds access bnc 828007...
Adobe Shockwave Player 3D Model Buffer Overflow Vulnerabilities
Adobe Shockwave Player is prone to buffer overflow vulnerabilities. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...