Lucene search
K

206123 matches found

VulnCheck KEV
VulnCheck KEV
added 2026/04/13 12:0 a.m.5 views

VulnCheck KEV: CVE-2020-9715

Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have an use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution...

9.3CVSS6.4AI score0.48441EPSS
In wildExploits2References2
CNNVD
CNNVD
added 2026/04/13 12:0 a.m.5 views

Dynabook Bluetooth ACPI 安全漏洞

Dynabook Bluetooth ACPI is a system interface component developed by Dynabook Japan, used for managing the power supply of Bluetooth hardware and device status. Dynabook Bluetooth ACPI contains a security vulnerability caused by a stack buffer overflow, which may lead to the execution of arbitrar...

8.4CVSS6.9AI score0.00147EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/13 12:0 a.m.4 views

EUVD-2026-22059

An issue in the pickle protocol of Pyro v3.x allows attackers to execute arbitrary code via supplying a crafted pickled string message...

6.2AI score0.00569EPSS
Exploits0References3
CISA KEV Catalog
CISA KEV Catalog
added 2026/04/13 12:0 a.m.13 views

Adobe Acrobat and Reader Prototype Pollution Vulnerability

Adobe Acrobat and Reader contain a prototype pollution vulnerability that allows for arbitrary code execution...

8.6CVSS6AI score0.07086EPSS
In wildExploits4
Tenable Nessus
Tenable Nessus
added 2026/04/13 12:0 a.m.4 views

Amazon Linux 2023 : plexus-utils, plexus-utils-javadoc (ALAS2023-2026-1545)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1545 advisory. Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in plexus- utils before 6d780b3378829318ba5c2d29547e0012d5b29642. This allows an attacker to execute...

8.8CVSS6.1AI score0.00663EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/13 12:0 a.m.5 views

Keras 代码问题漏洞

Keras is an open-source deep learning framework with multiple backends. Version 3.13.0 of Keras contains a code vulnerability that stems from the TFSLayer class’s unconditional loading of external SavedModels, which may lead to arbitrary code execution...

8.8CVSS7.6AI score0.00328EPSS
Exploits0References2
RubySec
RubySec
added 2026/04/13 12:0 a.m.10 views

ERB has an @_init deserialization guard bypass via def_module / def_method / def_class

ERB implements an @init guard to prevent code execution when ERB objects are reconstructed via Marshal.load on untrusted data. However, ERBdefmethod, ERBdefmodule, and ERBdefclass evaluate the template source without checking this guard, allowing an attacker who controls the data passed to...

8.1CVSS6.2AI score0.01131EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/04/12 3:30 p.m.6 views

EUVD-2019-20133

Easy Video to iPod Converter 1.6.20 contains a local buffer overflow vulnerability in the user registration field that allows local attackers to overwrite the structured exception handler. Attackers can input a crafted payload exceeding 996 bytes in the username field to trigger SEH overwrite and...

8.6CVSS6.4AI score0.00208EPSS
Exploits1References5
EUVD
EUVD
added 2026/04/12 3:30 p.m.3 views

EUVD-2018-21770

RGui 3.5.0 contains a local buffer overflow vulnerability in the GUI preferences dialog that allows attackers to bypass DEP protections through structured exception handling exploitation. Attackers can craft malicious input in the Language for menus and messages field to trigger a stack-based...

8.6CVSS6.5AI score0.00188EPSS
Exploits0References5
NVD
NVD
added 2026/04/12 1:16 p.m.3 views

CVE-2019-25701

Easy Video to iPod Converter 1.6.20 contains a local buffer overflow vulnerability in the user registration field that allows local attackers to overwrite the structured exception handler. Attackers can input a crafted payload exceeding 996 bytes in the username field to trigger SEH overwrite and...

8.6CVSS0.00208EPSS
Exploits1References4
NVD
NVD
added 2026/04/12 1:16 p.m.2 views

CVE-2019-25695

R 3.4.4 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by injecting malicious input into the GUI Preferences language field. Attackers can craft a payload with a 292-byte offset and JMP ESP instruction to execute commands like calc.exe when the...

8.6CVSS0.00191EPSS
Exploits0References6
NVD
NVD
added 2026/04/12 1:16 p.m.4 views

CVE-2018-25258

RGui 3.5.0 contains a local buffer overflow vulnerability in the GUI preferences dialog that allows attackers to bypass DEP protections through structured exception handling exploitation. Attackers can craft malicious input in the Language for menus and messages field to trigger a stack-based...

8.6CVSS0.00188EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/12 12:28 p.m.2 views

CVE-2019-25705 Echo Mirage 3.1 Stack Buffer Overflow via Rules Action Field

Echo Mirage 3.1 contains a stack buffer overflow vulnerability that allows local attackers to crash the application or execute arbitrary code by supplying an oversized string in the Rules action field. Attackers can create a malicious text file with a crafted payload exceeding buffer boundaries a...

8.6CVSS6.4AI score0.00208EPSS
Exploits1References4
CVE
CVE
added 2026/04/12 12:28 p.m.13 views

CVE-2019-25705

Echo Mirage 3.1 is affected by a stack buffer overflow in the Rules action field. A local attacker can cause a crash or arbitrary code execution by supplying an oversized string via the Rules dialog (crafting a payload in a text file and pasting into the action field). This overflow can overwrite...

8.6CVSS6.4AI score0.00208EPSS
Exploits1References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/12 12:28 p.m.3 views

CVE-2019-25701

Easy Video to iPod Converter 1.6.20 contains a local buffer overflow vulnerability in the user registration field that allows local attackers to overwrite the structured exception handler. Attackers can input a crafted payload exceeding 996 bytes in the username field to trigger SEH overwrite and...

8.6CVSS6.4AI score0.00208EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2026/04/12 12:28 p.m.31 views

CVE-2019-25701 Easy Video to iPod Converter 1.6.20 Local Buffer Overflow SEH

Easy Video to iPod Converter 1.6.20 contains a local buffer overflow vulnerability in the user registration field that allows local attackers to overwrite the structured exception handler. Attackers can input a crafted payload exceeding 996 bytes in the username field to trigger SEH overwrite and...

8.6CVSS0.00208EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/04/12 12:28 p.m.4 views

CVE-2019-25701 Easy Video to iPod Converter 1.6.20 Local Buffer Overflow SEH

Easy Video to iPod Converter 1.6.20 contains a local buffer overflow vulnerability in the user registration field that allows local attackers to overwrite the structured exception handler. Attackers can input a crafted payload exceeding 996 bytes in the username field to trigger SEH overwrite and...

8.6CVSS6.4AI score0.00208EPSS
Exploits1References4
CVE
CVE
added 2026/04/12 12:28 p.m.12 views

CVE-2019-25701

CVE-2019-25701 affects Easy Video to iPod Converter 1.6.20. The issue is a local buffer overflow in the user registration field, where a crafted payload exceeding 996 bytes in the username can trigger an SEH overwrite and allow an attacker to execute arbitrary code with user privileges. Documents...

8.6CVSS6.4AI score0.00208EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/12 12:28 p.m.2 views

CVE-2019-25695 R 3.4.4 Local Buffer Overflow Windows XP SP3

R 3.4.4 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by injecting malicious input into the GUI Preferences language field. Attackers can craft a payload with a 292-byte offset and JMP ESP instruction to execute commands like calc.exe when the...

8.6CVSS6.5AI score0.00191EPSS
Exploits0References3
CVE
CVE
added 2026/04/12 12:28 p.m.6 views

CVE-2019-25695

The CVE-2019-25695 entry affects R 3.4.4, describing a local buffer overflow in the GUI Preferences language field. The root cause is improper handling of input in that field, enabling a local attacker to execute arbitrary code by pasting a crafted payload that uses a 292-byte offset and a JMP ES...

8.6CVSS6.5AI score0.00191EPSS
Exploits0References6
Rows per page
Query Builder