CVE-2024-9721

The CVE-2024-9721 entry concerns Trimble SketchUp Viewer. Affected component: SKP file parsing in the viewer. Root cause: lack of validating the existence of an object before performing operations, leading to a use-after-free condition. Impact: remote code execution in the context of the current ...

CVE-2024-9717

CVE-2024-9717 affects Trimble SketchUp Viewer through the SKP file parser, where an uninitialized memory access allows remote code execution. The vulnerability enables an attacker to execute arbitrary code in the context of the target process when a user opens a malicious SKP file or visits a cra...

CVE-2024-9716

CVE-2024-9716 affects Trimble SketchUp Viewer via a Use-After-Free in SKP file parsing. The flaw arises from not validating an object’s existence before performing operations, allowing an attacker to execute code in the affected process. Exploitation requires user interaction (visiting a maliciou...

CVE-2024-9716 Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability

Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target mus...

CVE-2024-9714 Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability

Trimble SketchUp Viewer SKP File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Trimble SketchUp Viewer. User interaction is required to exploit this vulnerability in that the target mus...

CVE-2024-11507 IrfanView DXF File Parsing Type Confusion Remote Code Execution Vulnerability

IrfanView DXF File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or...

CVE-2024-11523

Affected software: IrfanView. Vulnerability: DXF file parsing memory corruption that can lead to remote code execution. Root cause: lack of proper validation of user-supplied data during DXF parsing, enabling memory corruption. Impact: arbitrary code execution in the context of the current proces...

CVE-2024-11532 IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious pag...

CVE-2024-11533

CVE-2024-11533 refers to an out-of-bounds write in IrfanView’s DXF file parsing, enabling remote code execution. The flaw stems from insufficient validation of user-supplied data during DXF parsing, which can write past the end of an allocated buffer and execute code in the current process. Explo...

CVE-2024-11534

CVE-2024-11534 concerns IrfanView. The vulnerability is an out-of-bounds read in the DXF file parsing path that can allow arbitrary code execution. It requires user interaction (visiting a malicious page or opening a malicious file) and stems from insufficient validation of input, allowing read p...

CVE-2024-11521

The CVE-2024-11521 entry describes an IrfanView DJVU file parsing Use-After-Free remote code execution vulnerability. Affected software: IrfanView (DJVU parsing path). Root cause: the parser performs operations on an object without validating its existence, enabling manipulation leading to code e...

CVE-2024-11562

CVE-2024-11562 (IrfanView) refers to an out-of-bounds read during CGM file parsing that can lead to remote code execution. The flaw stems from improper validation of data inside CGM files, allowing a read past the end of an allocated buffer and enabling arbitrary code execution in the context of ...

CVE-2024-11539 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability

IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page ...

CVE-2024-11551 IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability

IrfanView DXF File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page ...

CVE-2024-11547 IrfanView DWG File Parsing Memory Corruption Remote Code Execution Vulnerability

IrfanView DWG File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page ...

CVE-2024-11527

CVE-2024-11527 affects IrfanView with a memory corruption condition in DWG file parsing that can lead to remote code execution. The flaw arises from insufficient validation of DWG data during parsing, allowing an attacker to execute code in the target process after the user opens a malicious file...

CVE-2024-11579 Luxion KeyShot OBJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

Luxion KeyShot OBJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Luxion KeyShot. User interaction is required to exploit this vulnerability in that the target must visit a...

CVE-2024-5511

Kofax Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a...

CVE-2024-5511

CVE-2024-5511 affects Kofax Power PDF. The vulnerability is a JP2 file parsing flaw that allows an out-of-bounds read, which can lead to remote code execution in the context of the current process. Exploitation requires user interaction (target user must visit a malicious page or open a malicious...

CVE-2024-5511 Kofax Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

Kofax Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a...