EUVD-2022-30433

Malicious code in bioql PyPI...

CVE-2025-46094

LiquidFiles before 4.1.2 allows directory traversal by configuring the pathname of a local executable file as an Actionscript...

CVE-2025-46094

LiquidFiles before 4.1.2 allows directory traversal by configuring the pathname of a local executable file as an Actionscript...

CVE-2025-46093

LiquidFiles before 4.1.2 supports FTP SITE CHMOD for mode 6777 setuid and setgid, which allows FTPDrop users to execute arbitrary code as root by leveraging the Actionscript feature and the sudoers configuration...

CVE-2025-46094

LiquidFiles before 4.1.2 allows directory traversal by configuring the pathname of a local executable file as an Actionscript...

CVE-2025-46094

LiquidFiles before 4.1.2 allows directory traversal by configuring the pathname of a local executable file as an Actionscript...

CVE-2025-46094

LiquidFiles before 4.1.2 allows directory traversal by configuring the pathname of a local executable file as an Actionscript...

PT-2025-31875 · Unknown · Liquidfiles

Name of the Vulnerable Software and Affected Versions: LiquidFiles versions prior to 4.1.2 Description: LiquidFiles is susceptible to a directory traversal issue. This occurs when the pathname of a local executable file is configured as an Actionscript, potentially allowing unauthorized access to...

Liquidfiles 安全漏洞

Liquidfiles is a storage service for large-scale secure file transfer and sharing for companies and organizations from US-based Liquidfiles, Inc. A security vulnerability exists in Liquidfiles versions prior to 4.1.2, which originates from a vulnerability that could cause an FTPDrop user to execu...

PT-2025-31874 · Unknown · Liquidfiles

Name of the Vulnerable Software and Affected Versions: LiquidFiles versions prior to 4.1.2 Description: LiquidFiles versions prior to 4.1.2 support FTP SITE CHMOD for mode 6777 setuid and setgid. This allows FTPDrop users to execute arbitrary code as root by leveraging the Actionscript feature an...

CVE-2025-46094

LiquidFiles is affected prior to version 4.1.2 by a directory traversal vulnerability triggered when the pathname of a local executable file is configured as an Actionscript. The issue exposes risk to confidentiality (Low) and integrity (Low) with no availability impact in the CVE metrics. Concre...

CVE-2022-25793

A Stack-based Buffer Overflow Vulnerability in Autodesk 3ds Max 2022, 2021, and 2020 may lead to code execution through the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer when parsing ActionScript Byte Code files. This...

CVE-2022-25794

An Out-Of-Bounds Read Vulnerability in Autodesk FBX Review version 1.5.2 and prior may lead to code execution through maliciously crafted ActionScript Byte Code 'ABC' files or information disclosure. ABC files are created by the Flash compiler and contain executable code. This vulnerability in...

Adobe Flash Player Code Execution Vulnerability

Adobe Flash Player contains an unspecified vulnerability in the ExternalInterface ActionScript functionality that allows a remote attacker to execute arbitrary code via crafted SWF content...

CVE-2024-23139

A maliciously crafted ABC file, when parsed through Autodesk FBX, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

CVE-2024-23139 ActionScript Byte Code “ABC” Vulnerability in the Autodesk FBX Review software

A maliciously crafted ABC file, when parsed through Autodesk FBX, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

CVE-2024-23139 ActionScript Byte Code “ABC” Vulnerability in the Autodesk FBX Review software

A maliciously crafted ABC file, when parsed through Autodesk FBX, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

CVE-2024-23139

Autodesk FBX Review is affected by CVE-2024-23139 through parsing of ActionScript Byte Code ABC files. The issue is an out-of-bounds write in the ABC file parser that can crash, corrupt data, or allow arbitrary code execution in the process context. Affected are Autodesk FBX Review versions 1.5.3...

Autodesk FBX Review Buffer Error Vulnerability

Autodesk FBX Review is a software application from the American company Autodesk, Inc. A lightweight, standalone software tool for fast, efficient viewing of 3D assets and animations. A buffer error vulnerability exists in Autodesk FBX Review 1.5.3.0 and prior versions, which stems from the...

PT-2024-19689 · Autodesk · Autodesk Fbx Review

Name of the Vulnerable Software and Affected Versions: Autodesk FBX Review versions 1.5.3.0 and prior Description: A maliciously crafted ABC file, when parsed through Autodesk FBX, may force an Out-of-Bounds Write issue. This can be leveraged to cause a crash, data corruption, or execute arbitrar...