Lucene search
K

120934 matches found

ATTACKERKB
ATTACKERKB
added 2026/02/04 11:15 p.m.4 views

CVE-2019-25267

Wing FTP Server 6.0.7 contains an unquoted service path vulnerability that allows local attackers to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path in the service configuration to inject malicious executables that will be launche...

8.5CVSS5.9AI score0.00222EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2026/02/04 11:15 p.m.12 views

CVE-2019-25267

Wing FTP Server 6.0.7 is affected by an unquoted service path vulnerability that lets local attackers insert and execute malicious executables with LocalSystem privileges. The issue stems from unquoted binary paths in the service configuration, enabling privilege escalation. Impact is described a...

8.5CVSS5.9AI score0.00222EPSS
Exploits1References3Affected Software1
RedHat Linux
RedHat Linux
added 2026/02/04 7:31 p.m.5 views

Important: Red Hat Security Advisory: python3.12-wheel security update

An update for python3.12-wheel is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabili...

7.1CVSS6.8AI score0.00311EPSS
Exploits2References2
RedHat Linux
RedHat Linux
added 2026/02/04 7:31 p.m.3 views

wheel: wheel: Privilege Escalation or Arbitrary Code Execution via malicious wheel file unpacking

A path traversal flaw has been discovered in the python wheel too. The unpack function is vulnerable to file permission modification through mishandling of file permissions after extraction. The logic blindly trusts the filename from the archive header for the chmod operation, even though the...

7.1CVSS6.3AI score0.00311EPSS
Exploits2References7
NVD
NVD
added 2026/02/04 7:16 p.m.5 views

CVE-2026-0536

A maliciously crafted GIF file, when parsed through Autodesk 3ds Max, can cause a Stack-Based Buffer Overflow vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

7.8CVSS0.00178EPSS
Exploits0References2
OSV
OSV
added 2026/02/04 7:16 p.m.6 views

CVE-2026-0536

A maliciously crafted GIF file, when parsed through Autodesk 3ds Max, can cause a Stack-Based Buffer Overflow vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

7.8CVSS6.1AI score0.00178EPSS
Exploits0References2
CVE
CVE
added 2026/02/04 6:12 p.m.17 views

CVE-2026-0536

The CVE-2026-0536 issue affects Autodesk 3ds Max (prior to 2026.3.2). A malicious GIF can trigger a Stack-Based Buffer Overflow in the GIF parser, enabling arbitrary code execution in the current process. Public details specify the affected version range and root cause as parsing a crafted GIF; u...

7.8CVSS6AI score0.00178EPSS
Exploits0References2Affected Software1
Snyk
Snyk
added 2026/02/04 6:3 p.m.7 views

Improper Control of Dynamically-Managed Code Resources

Overview n8n-workflow is a Workflow base code of n8n Affected versions of this package are vulnerable to Improper Control of Dynamically-Managed Code Resources via the workflow expression evaluation system. An attacker can execute arbitrary code with the privileges of the underlying process by...

9.9CVSS6.7AI score0.97875EPSS
Exploits29References2
OSV
OSV
added 2026/02/04 5:16 p.m.4 views

CVE-2026-0538

A maliciously crafted GIF file, when parsed through Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

8.4CVSS6.1AI score0.00175EPSS
Exploits0References2
OSV
OSV
added 2026/02/04 5:16 p.m.4 views

CVE-2026-0660

A maliciously crafted GIF file, when parsed through Autodesk 3ds Max, can cause a Stack-Based Buffer Overflow vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

8.4CVSS6.2AI score0.00188EPSS
Exploits0References2
OSV
OSV
added 2026/02/04 5:16 p.m.3 views

CVE-2026-0659

A maliciously crafted USD file, when loaded or imported into Autodesk Arnold or Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

7.8CVSS6.2AI score0.0021EPSS
Exploits0References3
EUVD
EUVD
added 2026/02/04 4:28 p.m.5 views

EUVD-2026-5412

A maliciously crafted project directory, when opening a max file in Autodesk 3ds Max, could lead to execution of arbitrary code in the context of the current process due to an Untrusted Search Path being utilized...

7.8CVSS6AI score0.00182EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/04 4:28 p.m.2 views

CVE-2026-0662 Untrusted Search Path Vulnerability when opening max Files

A maliciously crafted project directory, when opening a max file in Autodesk 3ds Max, could lead to execution of arbitrary code in the context of the current process due to an Untrusted Search Path being utilized...

7.8CVSS6AI score0.00182EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/04 4:27 p.m.5 views

CVE-2026-0660 Stack Based Buffer Overflow in GIF File Parsing

A maliciously crafted GIF file, when parsed through Autodesk 3ds Max, can cause a Stack-Based Buffer Overflow vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

8.4CVSS6AI score0.00188EPSS
Exploits0References2
CVE
CVE
added 2026/02/04 4:27 p.m.16 views

CVE-2026-0661

CVE-2026-0661 is described across multiple sources as an issue in Autodesk 3ds Max where parsing a malicious RGB file can cause a memory corruption/Out-of-Bounds Write vulnerability, enabling arbitrary code execution in the context of the current process. The affected software is Autodesk 3ds Max...

8.4CVSS6AI score0.00175EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/04 4:27 p.m.4 views

CVE-2026-0661 Out-of-Bounds Write in RGB File Parsing

A maliciously crafted RGB file, when parsed through Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

8.4CVSS6AI score0.00175EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/04 4:27 p.m.27 views

CVE-2026-0661 Out-of-Bounds Write in RGB File Parsing

A maliciously crafted RGB file, when parsed through Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

8.4CVSS0.00175EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/04 4:26 p.m.3 views

CVE-2026-0537

A maliciously crafted RGB file, when parsed through Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

7.8CVSS6AI score0.00172EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/02/04 4:26 p.m.27 views

CVE-2026-0537 RGB File Parsing Memory Corruption

A maliciously crafted RGB file, when parsed through Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

8.4CVSS0.00172EPSS
Exploits0References2
EUVD
EUVD
added 2026/02/04 4:26 p.m.5 views

EUVD-2026-5395

A maliciously crafted RGB file, when parsed through Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

7.8CVSS6AI score0.00172EPSS
Exploits0References2
Rows per page
Query Builder