23 matches found
SecureRAG-RTL: A Retrieval-Augmented, Multi-Agent, Zero-Shot LLM-Driven Framework for Hardware Vulnerability Detection
Large language models LLMs have shown remarkable capabilities in natural language processing tasks, yet their application in hardware security verification remains limited due to scarcity of publicly available hardware description language HDL datasets. This knowledge gap constrains LLM performan...
CVE-2025-68924
In Umbraco UmbracoForms through 8.13.16, an authenticated attacker can supply a malicious WSDL aka Webservice URL as a data source for remote code execution...
CVE-2025-34393 Barracuda RMM < 2025.1.1 Service Center Insecure Reflection RCE
Barracuda Service Center, as implemented in the RMM solution, in versions prior to 2025.1.1, does not correctly verify the name of an attacker-controlled WSDL service, leading to insecure reflection. This can result in remote code execution through either invocation of arbitrary methods or...
Ghostscript: NPDL device: Compression buffer overflow
A flaw was found in Artifex Ghostscript. The NPDL device has a compression buffer overflow for contrib/japanese/gdevnpdl.c...
CVE-2024-52574
A vulnerability has been identified in Teamcenter Visualization V14.2 All versions V14.2.0.14, Teamcenter Visualization V14.3 All versions V14.3.0.12, Teamcenter Visualization V2312 All versions V2312.0008, Teamcenter Visualization V2406 All versions V2406.0005, Tecnomatix Plant Simulation V2302...
Web Services Description Language (WSDL) File Detected
A Web Services Description Language WSDL file has been detected on this url. No source data...
SUSE CVE-2023-38560
An integer overflow flaw was found in pcl/pl/plfont.c:418 in plglyphname in ghostscript. This issue may allow a local attacker to cause a denial of service via transforming a crafted PCL file to PDF format...
Web Application Description Language (WADL) File Detected
Web Application Description Language WADL file has been detected on this url. No source data...
SUSE CVE-2015-2265
The removebadchars function in utils/cups-browsed.c in cups-filters before 1.0.66 allows remote IPP printers to execute arbitrary commands via consecutive shell metacharacters in the 1 model or 2 PDL. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2707...
[SECURITY] Fedora 36 Update: act-1.6.0-7.fc36
The Automatic Component Toolkit ACT is a code generator that takes an instance of an Interface Description Language file and generates a thin C89-API, implementation stubs and language bindings of your desired software component...
[SECURITY] Fedora 35 Update: act-1.6.0-6.fc35
The Automatic Component Toolkit ACT is a code generator that takes an instance of an Interface Description Language file and generates a thin C89-API, implementation stubs and language bindings of your desired software component...
[SECURITY] Fedora 36 Update: act-1.6.0-6.fc36
The Automatic Component Toolkit ACT is a code generator that takes an instance of an Interface Description Language file and generates a thin C89-API, implementation stubs and language bindings of your desired software component...
php: NULL pointer dereference in SoapClient
A NULL pointer dereference issue is in the SOAP extension of PHP. More specifically, the flaw occurs in the SoapClient when parsing a WSDL document due to improper checking of a child node name. A malicious or compromised server replies with a crafted WSDL document, leading to a denial of service...
Multiple RICOH Printer Driver Elevation of Privilege Vulnerabilities
Generic PCL5 Driver, PC FAX Generic Driver, PCL6 PCL XL Driver are RICOH printer drivers. An elevation of privilege vulnerability exists in multiple RICOH printer drivers. An attacker could exploit this vulnerability to gain elevation of privilege...
[SECURITY] Fedora 28 Update: ghostscript-9.26-3.fc28
This package provides useful conversion utilities based on Ghostscript soft ware, for converting PS, PDF and other document formats between each other. Ghostscript is a suite of software providing an interpreter for Adobe Syste ms' PostScript PS and Portable Document Format PDF page description...
SQL Injection Vulnerability in EasySite WebService Interface
easySite Content Management System is a professional portal content management system developed and completed by ZKHUILIAN. EasySite WebService interface SQL injection vulnerability, the vulnerability stems from the WebService WSDL interface fails to submit sufficient data filtering caused by an...
cups-filters remove_bad_chars function arbitrary command execution vulnerability
CUPS is a Universal Unix Printing System, a cross-platform printing solution for Unix environments, based on the Internet Printing Protocol, providing most PostScript and raster printer services. A security vulnerability exists in the removebadchars function in cups-filters utils/cups-browsed.c,...
UBUNTU-CVE-2015-2265
The removebadchars function in utils/cups-browsed.c in cups-filters before 1.0.66 allows remote IPP printers to execute arbitrary commands via consecutive shell metacharacters in the 1 model or 2 PDL. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2707...
DEBIAN-CVE-2014-2707
cups-browsed in cups-filters 1.0.41 before 1.0.51 allows remote IPP printers to execute arbitrary commands via shell metacharacters in the 1 model or 2 PDL, related to "System V interface scripts generated for queues."...
UBUNTU-CVE-2014-2707
cups-browsed in cups-filters 1.0.41 before 1.0.51 allows remote IPP printers to execute arbitrary commands via shell metacharacters in the 1 model or 2 PDL, related to "System V interface scripts generated for queues."...