Siemens Simcenter Femap IGS File Parsing Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Simcenter Femap. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

Siemens PS/IGES Parasolid Translator component out-of-bounds read vulnerability (CNVD-2024-27522)

Parasolild Translators is a single-format translator toolkit for high-speed end-to-end translation between Parasolid and several industry formats such as STEP or IGES. An out-of-bounds read vulnerability exists in the Siemens PS/IGES Parasolid Translator component, which can be exploited by an...

CVE-2024-34773

CVE-2024-34773 affects Siemens Solid Edge: all versions prior to V224.0 Update 2 are vulnerable to a stack overflow while parsing specially crafted PAR files, enabling code execution in the current process. Mitigation per Red Hat/CVE references: update Solid Edge to V224.0 Update 2 or later (or f...

CVE-2024-33492

CVE-2024-33492 affects Siemens Solid Edge: all versions prior to V224.0 Update 5 are vulnerable to an out-of-bounds read past the end of an allocated structure while parsing specially crafted PAR files, which could allow code execution in the current process. This is one entry in a set of vulnera...

CVE-2024-32064

CVE-2024-32064 affects Simcenter Femap versions prior to V2406, where parsing specially crafted IG S files can cause an out-of-bounds read and potentially allow code execution in the current process. The vulnerability is tied to the IGS parsing path in Simcenter Femap; affected software and versi...

Siemens Solid Edge 缓冲区错误漏洞

Siemens Solid Edge is a 3D CAD software from Siemens Germany. The software can be used for part design, assembly design, sheet metal design, welding design and other industries. Siemens Solid Edge suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to execute cod...

Siemens Solid Edge 缓冲区错误漏洞

Siemens Solid Edge is a 3D CAD software from Siemens Germany. The software can be used for part design, assembly design, sheet metal design, welding design and other industries. Siemens Solid Edge suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to execute cod...

Dassault Systèmes eDrawings Viewer JT File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Dassault Syst��mes eDrawings Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

Dassault Systèmes eDrawings Viewer DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Dassault Syst��mes eDrawings Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

Dassault Systèmes eDrawings Viewer JT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Dassault Syst��mes eDrawings Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

Dassault Systèmes eDrawings Viewer DXF File Parsing Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Dassault Syst��mes eDrawings Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

Dassault Systèmes eDrawings Viewer DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Dassault Syst��mes eDrawings Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

Dassault Systèmes eDrawings Viewer DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Dassault Syst��mes eDrawings Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

Dassault Systèmes eDrawings Viewer DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Dassault Syst��me eDrawings Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

CVE-2021-34969

Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a...

CVE-2023-40490

CVE-2023-40490 describes a Use-After-Free vulnerability in Maxon Cinema 4D related to SKP file parsing. The flaw arises when the parser processes SKP objects without validating their existence before performing operations, enabling remote code execution. Exploitation requires user interaction (vi...

CVE-2021-34974

CVE-2021-34974 affects Foxit PDF Reader/Annotation handling where Use-After-Free occurs due to not validating object existence before operations. This leads to remote code execution in the context of the current process, requiring user interaction (visit malicious page or open a malicious file). ...

CVE-2021-34960

Foxit PDF Editor CVE-2021-34960: Use-after-free in Circle Annotation handling allows remote code execution when a user visits a malicious page or opens a malicious file. Root cause: missing validation of object existence before operations on Annotation objects, executing code in the current proce...

Bentley Systems Bentley View 安全漏洞

Bentley Systems Bentley View is a free viewer from Bentley Systems, USA. A security vulnerability exists in Bentley View that stems from a specific flaw in the parsing of SKP files, which can be exploited by an attacker to execute code in the context of the current process...

Adobe Acrobat Reader DC AcroForm Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handli...