Lucene search
K

62 matches found

Prion
Prion
added 2023/07/26 8:15 p.m.27 views

Buffer overflow

A buffer overflow in SumatraPDF Reader v3.4.6 allows attackers to cause a Denial of Service DoS via a crafted text file...

1.9CVSS5.6AI score0.0029EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2023/07/26 12:0 a.m.6 views

Sumatra PDF 安全漏洞

Sumatra PDF is a software application. PDF, ePub, MOBI, CHM, XPS, DjVu, CBZ, CBR readers for Windows. A security vulnerability exists in Sumatra PDF Reader version v3.4.6, which originated from a vulnerability that allows an attacker to cause a denial of service DoS via a crafted text file...

5.5CVSS5.7AI score0.0029EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/07/17 12:0 a.m.6 views

EMQ X 路径遍历漏洞

EMQ X is a fully open source, highly scalable and highly available distributed MQTT message broker. Ideal for IoT, M2M and mobile applications, it can handle tens of millions of concurrent clients. A security vulnerability exists in EMQ X v4.3.8. An attacker exploited the vulnerability to perform...

6.5CVSS6.5AI score0.00738EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/03/18 11:15 p.m.2 views

CVE-2022-25581

Classcms v2.5 and below contains an arbitrary file upload via the component \class\classupload. This vulnerability allows attackers to execute code injection via a crafted .txt file...

7.8CVSS5.8AI score0.01101EPSS
Exploits1References2
CNNVD
CNNVD
added 2021/09/15 12:0 a.m.4 views

RGCMS 代码问题漏洞

RGCMS is a web CMS. v1.06 of RGCMS contains a security vulnerability that can be exploited by attackers to execute arbitrary code via a crafted .txt file, which will later be changed to a PHP file...

7.2CVSS6.1AI score0.01598EPSS
Exploits1References1
OSV
OSV
added 2021/04/02 6:15 p.m.1 views

CVE-2021-1772

A stack overflow was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS 14.4 and iPadOS 14.4. Processing a maliciously crafted text file may lead to arbitrary code...

7.8CVSS6AI score0.01748EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/02/02 12:0 a.m.3 views

Apple CoreText Buffer Error Vulnerability

Apple CoreText is a core component from Apple Inc. that is used in mobile devices for drawing text drawings. A security vulnerability exists in Apple CoreText, which exists as a result of a boundary Apple macOS error within the CoreText component in macOS. A remote attacker can create a specially...

7.8CVSS7.8AI score0.01748EPSS
Exploits0References9
OSV
OSV
added 2020/12/08 8:15 p.m.3 views

CVE-2020-9999

A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.0.1, iTunes for Windows 12.10.9. Processing a maliciously crafted text file may lead to arbitrary code execution...

7.8CVSS7.3AI score0.08491EPSS
Exploits0References7
CNVD
CNVD
added 2019/11/05 12:0 a.m.2 views

Apple macOS Catalina Information Disclosure Vulnerability

Apple macOS Catalina is a specialized operating system developed by Apple for Mac computers, of which UIFoundation is a UI framework component. A security vulnerability exists in the UIFoundation component in Apple macOS Catalina versions prior to 10.15.1. The vulnerability can be exploited to...

5.5CVSS7.1AI score0.01347EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/10 12:0 a.m.2 views

Apple macOS, iCloud for Windows and iTunes for Windows UIFoundation Component Buffer Overflow Vulnerability

Apple iTunes for Windows and others are products of Apple Inc.Apple iTunes for Windows is a media player application based on the Windows platform.Apple iCloud for Windows is a cloud service based on the Windows platform. The product supports storage of music, photos, apps, contacts, etc. Apple...

8.8CVSS7.9AI score0.02224EPSS
Exploits0References1
OSV
OSV
added 2018/06/08 6:29 p.m.3 views

CVE-2018-4198

An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS before 10.13.5 is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "UIKit" component. It allows remote attackers to cause a denial of service via a crafted text fi...

5.5CVSS5.8AI score
Exploits0References5
CNVD
CNVD
added 2018/06/04 12:0 a.m.3 views

Denial of Service Vulnerability in Multiple Apple Products (CNVD-2018-12244)

Apple iOS, macOS High Sierra, tvOS, and watchOS are products of Apple Inc. Apple iOS is an operating system for mobile devices; macOS High Sierra is a specialized operating system for Mac computers; tvOS is a smart TV operating system; watchOS is a smart watch operating system; and UIKit is one o...

5.5CVSS6.1AI score0.01445EPSS
Exploits0References1
CNVD
CNVD
added 2018/05/15 12:0 a.m.3 views

DeviceLock Plug and Play Auditor Buffer Overflow Vulnerability

DeviceLock Plug and Play Auditor freeware is a plug-and-play device scanning program from DeviceLock, Inc. that scans devices that have been or are being accessed by hosts on the LAN. A buffer overflow vulnerability exists in the DLPnpAuditor.exe file in version 5.72 of DeviceLock Plug and Play...

7.8CVSS8.2AI score0.15551EPSS
Exploits5References1
Prion
Prion
added 2017/11/13 3:29 a.m.18 views

Design/Logic Flaw

An issue was discovered in certain Apple products. iOS before 11.1 is affected. tvOS before 11.1 is affected. watchOS before 4.1 is affected. The issue involves the "CoreText" component. It allows remote attackers to cause a denial of service application crash via a crafted text file...

4.3CVSS4.6AI score0.03782EPSS
Exploits4References6Affected Software3
Cvelist
Cvelist
added 2017/11/13 3:0 a.m.22 views

CVE-2017-13849

An issue was discovered in certain Apple products. iOS before 11.1 is affected. tvOS before 11.1 is affected. watchOS before 4.1 is affected. The issue involves the "CoreText" component. It allows remote attackers to cause a denial of service application crash via a crafted text file...

4.8AI score0.03782EPSS
Exploits4References6
BDU FSTEC
BDU FSTEC
added 2015/10/01 12:0 a.m.5 views

The vulnerability of the iOS operating system allows a perpetrator to execute arbitrary code or cause a service failure.

The vulnerability of the Data Detectors Engine component in the iOS operating system arises due to buffer overflow. Exploiting this vulnerability allows a malicious actor to execute arbitrary code or trigger a service denial using a specially crafted text file...

6.8CVSS6.4AI score0.03122EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2015/09/18 10:59 a.m.25 views

Memory corruption

Data Detectors Engine in Apple iOS before 9 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted text file...

6.8CVSS7.8AI score0.03122EPSS
Exploits0References6Affected Software2
NVD
NVD
added 2015/07/03 1:59 a.m.19 views

CVE-2015-3689

CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted text file, a different vulnerability than CVE-2015-3685, CVE-2015-3686, CVE-2015-3687, and CVE-2015-3688...

6.8CVSS7.3AI score0.03119EPSS
Exploits0References6
NVD
NVD
added 2015/07/03 1:59 a.m.18 views

CVE-2015-3685

CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted text file, a different vulnerability than CVE-2015-3686, CVE-2015-3687, CVE-2015-3688, and CVE-2015-3689...

6.8CVSS7.3AI score0.03119EPSS
Exploits0References6
Prion
Prion
added 2015/07/03 1:59 a.m.19 views

Memory corruption

CoreText in Apple iOS before 8.4 and OS X before 10.10.4 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted text file, a different vulnerability than CVE-2015-3685, CVE-2015-3686, CVE-2015-3687, and CVE-2015-3689...

6.8CVSS7.6AI score0.03295EPSS
Exploits0References8Affected Software3
Rows per page
Query Builder