Lucene search
+L

314 matches found

CNNVD
CNNVD
โ€ขadded 2026/03/10 12:0 a.m.โ€ข6 views

Microsoft Azure IoT Explorer ๅฎ‰ๅ…จๆผๆดž

Microsoft Azure IoT Explorer is a free and open-source desktop application developed by Microsoft Corporation. There are security vulnerabilities present in Microsoft Azure IoT Explorer. Attackers can exploit these vulnerabilities to obtain sensitive information...

7.5CVSS5.8AI score0.00703EPSS
Exploits0References1
Vulnrichment
Vulnrichment
โ€ขadded 2026/03/02 1:24 p.m.โ€ข3 views

CVE-2026-1628 Mattermost allows external websites to open within the app, exposing preload functionality to non-trusted sites.

Mattermost Desktop App versions =5.13.3 fail to attach listeners restricting navigation to external sites within the Mattermost app which allows a malicious server to expose preload script functionality to untrusted servers via having a user open an external link in their Mattermost server...

4.6CVSS5.9AI score0.00136EPSS
Exploits0References1
Positive Technologies
Positive Technologies
โ€ขadded 2026/03/02 12:0 a.m.โ€ข11 views

PT-2026-22584

Mattermost Desktop App versions =5.13.3 fail to attach listeners restricting navigation to external sites within the Mattermost app which allows a malicious server to expose preload script functionality to untrusted servers via having a user open an external link in their Mattermost server...

4.6CVSS5.9AI score0.00136EPSS
Exploits0References2
NVD
NVD
โ€ขadded 2026/02/16 1:16 p.m.โ€ข14 views

CVE-2026-1046

Mattermost Desktop App versions =6.0 6.2.0 5.2.13.0 fail to validate help links which allows a malicious Mattermost server to execute arbitrary executables on a userโ€™s system via the user clicking on certain items in the Help menu Mattermost Advisory ID: MMSA-2026-00577...

7.6CVSS0.00235EPSS
Exploits0References1
Cvelist
Cvelist
โ€ขadded 2026/01/22 4:59 p.m.โ€ข23 views

CVE-2026-0534 Stored XSS in the value of a part attribute

A maliciously crafted HTML payload, stored in a partโ€™s attribute and clicked by a user, can trigger a Stored Cross-site Scripting XSS vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to read local files or execute arbitrary code in the...

8.1CVSS0.00469EPSS
Exploits0References3
Vulnrichment
Vulnrichment
โ€ขadded 2026/01/22 4:59 p.m.โ€ข5 views

CVE-2026-0534 Stored XSS in the value of a part attribute

A maliciously crafted HTML payload, stored in a partโ€™s attribute and clicked by a user, can trigger a Stored Cross-site Scripting XSS vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to read local files or execute arbitrary code in the...

8.1CVSS5.9AI score0.00469EPSS
Exploits0References3
CNNVD
CNNVD
โ€ขadded 2026/01/13 12:0 a.m.โ€ข6 views

Eigent ไปฃ็ ๆณจๅ…ฅๆผๆดž

Eigent is a multi-agent workflow desktop application open-sourced by Eigent AI. Eigent suffers from a code injection vulnerability that stems from a CI workflow using the pullrequesttarget trigger and checking out untrusted PR code, which could lead to arbitrary code execution...

9.8CVSS6.1AI score0.00546EPSS
Exploits1References5
RedhatCVE
RedhatCVE
โ€ขadded 2026/01/07 9:35 a.m.โ€ข23 views

CVE-2019-7365

DLL preloading vulnerability in Autodesk Desktop Application versions 7.0.16.29 and earlier. An attacker may trick a user into downloading a malicious DLL file into the working directory, which may then leverage a DLL preloading vulnerability and execute code on the system...

7.8CVSS7.2AI score0.00385EPSS
Exploits0References1
RedhatCVE
RedhatCVE
โ€ขadded 2025/12/24 10:29 p.m.โ€ข7 views

CVE-2025-14408

Soda PDF Desktop PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Soda PDF Desktop. User interaction is required to exploit this vulnerability in that the target must...

3.3CVSS3.2AI score0.00139EPSS
Exploits0References1
Positive Technologies
Positive Technologies
โ€ขadded 2025/12/17 12:0 a.m.โ€ข9 views

PT-2025-51855

Mattermost Desktop App versions 6.0.0 fail to enable the Hardened Runtime on the Mattermost Desktop App when packaged for Mac App Store which allows an attacker to inherit TCC permissions via copying the binary to a tmp folder...

3.9CVSS6.9AI score0.00097EPSS
Exploits0References2
Packet Storm
Packet Storm
โ€ขadded 2025/12/15 12:0 a.m.โ€ข244 views

๐Ÿ“„ Figma Desktop Application 125.6.5 Remote Code Execution

Figma Desktop Application version 125.6.5 proof of concept remote code execution exploit that leverages the plugin manifest. ============================================================================================================================================= | Title : Figma Desktop...

8.4CVSS8.2AI score0.01058EPSS
Exploits3
NVD
NVD
โ€ขadded 2025/12/04 4:16 p.m.โ€ข6 views

CVE-2025-54158

Missing authentication for critical function vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13960 allows local users to execute arbitrary code via unspecified vectors...

7.8CVSS0.00171EPSS
Exploits0References1
EUVD
EUVD
โ€ขadded 2025/12/04 3:17 p.m.โ€ข6 views

EUVD-2025-201163

Origin validation error vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.3-13973 allows local users to write arbitrary files with non-sensitive information via unspecified vectors...

5.6CVSS6AI score0.00084EPSS
Exploits0References2
CNNVD
CNNVD
โ€ขadded 2025/11/12 12:0 a.m.โ€ข6 views

Lenovo App Store ๅฎ‰ๅ…จๆผๆดž

Lenovo App Store is a desktop application from the Chinese company Lenovo Lenovo. A security vulnerability exists in Lenovo App Store that stems from improper permissions and could lead to code execution...

7.3CVSS7.2AI score0.00119EPSS
Exploits0References2
RedhatCVE
RedhatCVE
โ€ขadded 2025/10/22 12:11 a.m.โ€ข23 views

CVE-2025-56801

The Reolink Desktop Application 8.18.12 contains hardcoded credentials as the Initialization Vector IV in its AES-CFB encryption implementation allowing attackers with access to the application environment to reliably decrypt encrypted configuration data. NOTE: the Supplier's position is that...

5.1CVSS6.8AI score0.00129EPSS
Exploits2References1
NVD
NVD
โ€ขadded 2025/10/21 7:21 p.m.โ€ข7 views

CVE-2025-56802

The Reolink desktop application uses a hard-coded and predictable AES encryption key to encrypt user configuration files allowing attackers with local access to decrypt sensitive application data stored in %APPDATA%. A different vulnerability than CVE-2025-56801. NOTE: the Supplier's position is...

5.1CVSS0.00122EPSS
Exploits2References2
NVD
NVD
โ€ขadded 2025/10/21 7:21 p.m.โ€ข6 views

CVE-2025-56799

Reolink desktop application 8.18.12 contains a command injection vulnerability in its scheduled cache-clearing mechanism via a crafted folder name. NOTE: this is disputed by the Supplier because a crafted folder name would arise only if the local user were attacking himself...

6.5CVSS0.01236EPSS
Exploits2References2
CNVD
CNVD
โ€ขadded 2025/10/21 12:0 a.m.โ€ข3 views

Unspecified Vulnerability in Adobe Creative Cloud Desktop

Adobe Creative Cloud Desktop is a suite of applications for managing applications and services in the Creative Cloud Member Management Center from the American company Audobee Adobe. The program supports synchronizing and sharing files, managing fonts, and accessing asset libraries for commercial...

5.6CVSS6.9AI score0.00133EPSS
Exploits0References1
CVE
CVE
โ€ขadded 2025/10/21 12:0 a.m.โ€ข16 views

CVE-2025-56802

The connected Red Hat and NVD entries confirm CVE-2025-56802 affects the Reolink desktop application and centers on a hard-coded and predictable AES encryption key used to encrypt user configuration files. This allows attackers with local access to decrypt sensitive data stored in %APPDATA%. The ...

5.1CVSS6.1AI score0.00122EPSS
Exploits2References2Affected Software1
EUVD
EUVD
โ€ขadded 2025/10/21 12:0 a.m.โ€ข6 views

EUVD-2025-35237

Reolink desktop application 8.18.12 contains a command injection vulnerability in its scheduled cache-clearing mechanism via a crafted folder name...

6.5CVSS7AI score0.01236EPSS
Exploits2References2
Rows per page
Query Builder