CVE-2020-7675

cd-messenger through 2.7.26 is vulnerable to Arbitrary Code Execution. User input provided to the color argument executed by the eval function resulting in code execution...

CGA-7675-MGRM-VF4H

Bulletin has no description...

CVE-2025-7675

The CVE-2025-7675 issue affects Autodesk products that parse 3DM files (notably AutoCAD and related Autodesk tools). The root cause is an Out-of-Bounds Write when parsing 3DM input, enabling crash, data corruption, or arbitrary code execution in the current process. Reported impact includes high-...

RHEL 8 : kernel (RHSA-2025:7675)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:7675 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: netfilter: ipset: add missing range che...

CVE-2024-7675

A maliciously crafted DWF file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Use-After-Free. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process...

Autodesk Navisworks Manage 25.0.x < 25.0.999.0 (2025.3) Multiple Vulnerabilities (adsk-sa-2024-0015)

The version of Autodesk Navisworks Manage installed on the remote host is prior to 25.0.999.0 2025.3. It is, therefore, affected by multiple vulnerabilities as referenced in the adsk-sa-2024-0015 advisory. - A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, ca...

Autodesk Navisworks Freedom 25.0.x < 25.0.999.0 (2025.3) Multiple Vulnerabilities (adsk-sa-2024-0015)

The version of Autodesk Navisworks Freedom installed on the remote host is prior to 25.0.999.0 2025.3. It is, therefore, affected by multiple vulnerabilities as referenced in the adsk-sa-2024-0015 advisory. - A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, c...

Autodesk Navisworks Simulate 25.0.x < 25.0.999.0 (2025.3) Multiple Vulnerabilities (adsk-sa-2024-0015)

The version of Autodesk Navisworks Simulate installed on the remote host is prior to 25.0.999.0 2025.3. It is, therefore, affected by multiple vulnerabilities as referenced in the adsk-sa-2024-0015 advisory. - A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks,...

CVE-2024-7675

creationtimestamp| type| source ---|---|--- 2024-10-01 00:11:30+00:00| seen| https://t.me/cvedetector/6690 2024-10-02 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-24-1315/...

CVE-2024-7675 DWFX File Parsing Vulnerabilities in Autodesk Navisworks Desktop Software

A maliciously crafted DWF file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Use-After-Free. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process...

CVE-2024-7675 DWFX File Parsing Vulnerabilities in Autodesk Navisworks Desktop Software

A maliciously crafted DWF file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Use-After-Free. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process...

Mobotix S14 Camera Cleartext Transmission of Sensitive Information (CVE-2019-7675)

An issue was discovered on MOBOTIX S14 MX-V4.2.1.61 devices. The default management application is delivered over cleartext HTTP with Basic Authentication, as demonstrated by the /admin/index.html URI. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-o...

cd-core (>=0.0.3 <=0.0.11) potentially affected by CVE-2020-7675 via cd-messenger (=2.7.12)

cd-messenger NPM version =2.7.12 is affected by a known vulnerability. The following packages have a transitive dependency on cd-messenger and may be impacted: - cd-core =0.0.3, =0.0.11 Source cves: CVE-2020-7675 Source advisory: OSV:GHSA-V756-4WHV-48VC...

CVE-2020-7675

CVE-2020-7675 affects cd-messenger up to version 2.7.26. The issue is an Arbitrary Code Execution vulnerability caused by unvalidated input passed to the color parameter, which is evaluated via eval. This results in code execution and potential impact on confidentiality, integrity, and availabili...

cd-core (>=0.0.3 <=0.0.11) potentially affected by CVE-2020-7675 via cd-messenger (=2.7.12)

cd-messenger NPM version =2.7.12 is affected by a known vulnerability. The following packages have a transitive dependency on cd-messenger and may be impacted: - cd-core =0.0.3, =0.0.11 Source cves: CVE-2020-7675 Source advisory: SNYK:JS-CDMESSENGER-571493...

CVE-2019-7675

An issue was discovered on MOBOTIX S14 MX-V4.2.1.61 devices. The default management application is delivered over cleartext HTTP with Basic Authentication, as demonstrated by the /admin/index.html URI...

CVE-2019-7675

MOBOTIX S14 MX-V4.2.1.61 devices are affected by CVE-2019-7675, where the default management interface is served over cleartext HTTP with Basic Authentication (/admin/index.html). This exposes credentials in transit, enabling potential interception of authentication material and unauthorized acce...

Security Bulletin: Multiple Vulnerabilities in Apache Tomcat affects IBM UrbanCode Deploy (CVE-2017-7674, CVE-2017-7675)

Summary Previous releases of IBM UrbanCode Deploy are affected by multiple vulnerabilities in Apache Tomcat. Vulnerability Details CVEID: CVE-2017-7674 DESCRIPTION: Apache Tomcat could provide weaker than expected security, caused by the failure to add an HTTP Vary header indicating that the...

Security Bulletin: Vulnerabilities in Apache Tomcat affect IBM Storwize V7000 Unified (CVE-2017-7674, CVE-2017-7675)

Summary Vulnerabilities in Apache Tomcat affect IBM Storwize V7000 Unified CVE-2017-7674, CVE-2017-7675. IBM Storwize V7000 Unified has addressed both CVEs. Vulnerability Details Apache Tomcat is used to provide graphical user interface for managing IBM Storwize V7000 Unified. The command line...

Security Bulletin: Vulnerabilities in Apache Tomcat affect IBM SONAS (CVE-2017-7674, CVE-2017-7675)

Summary Vulnerabilities in Apache Tomcat affect IBM SONAS CVE-2017-7674, CVE-2017-7675. IBM SONAS has addressed both CVEs. Vulnerability Details Apache Tomcat is used to provide graphical user interface for managing SONAS. The command line interface CLI interface is unaffected by these issues...