Lucene search
K

6 matches found

NVD
NVD
added 2025/03/11 9:15 p.m.8 views

CVE-2025-2012

Ashlar-Vellum Cobalt VS File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS0.003EPSS
Exploits0References1
OSV
OSV
added 2025/03/11 9:15 p.m.2 views

CVE-2025-2012

Ashlar-Vellum Cobalt VS File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS6.2AI score0.003EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/11 8:42 p.m.8 views

CVE-2025-2012 Ashlar-Vellum Cobalt VS File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

Ashlar-Vellum Cobalt VS File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS8AI score0.003EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/11 8:42 p.m.16 views

CVE-2025-2012 Ashlar-Vellum Cobalt VS File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

Ashlar-Vellum Cobalt VS File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS0.003EPSS
Exploits0References1
CVE
CVE
added 2025/03/11 8:42 p.m.69 views

CVE-2025-2012

CVE-2025-2012 affects Ashlar-Vellum Cobalt, with the vulnerability residing in VS file parsing. The flaw is an out-of-bounds read caused by insufficient validation of user-supplied data, allowing an attacker to execute arbitrary code in the context of the current process. Exploitation requires us...

7.8CVSS8AI score0.003EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2025/03/10 4:0 a.m.8 views

CVE-2025-2012

creationtimestamp| type| source ---|---|--- 2025-03-10 04:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-119/ 2025-04-14 00:47:09+00:00| seen| https://bsky.app/profile/intelrob.bsky.social/post/3lmqdm6lzvc2q...

7.8CVSS6.9AI score0.003EPSS
Exploits0References2
Rows per page
Query Builder