313 matches found
CVE-2020-5975
NVIDIA GeForce NOW, versions prior to 2.0.23 on Windows and macOS, contains a vulnerability in the desktop application software that includes sensitive information as part of a URL, which may lead to information disclosure...
CVE-2020-3808
Creative Cloud Desktop Application versions 5.0 and earlier have a time-of-check to time-of-use toctou race condition vulnerability. Successful exploitation could lead to arbitrary file deletion...
CVE-2020-14454
An issue was discovered in Mattermost Desktop App before 4.4.0. Attackers can open web pages in the desktop application because server redirection is mishandled, aka MMSA-2020-0008...
CVE-2020-28249
Joplin 1.2.6 for Desktop allows XSS via a LINK element in a note...
CVE-2019-7093
Creative Cloud Desktop Application installer versions 4.7.0.400 and earlier have an insecure library loading dll hijacking vulnerability. Successful exploitation could lead to privilege escalation...
Zoom Workplace 安全漏洞
Zoom Workplace is a desktop application from Zoom USA. A security vulnerability exists in Zoom Workplace that stems from a competitive condition that could lead to elevated privileges...
CVE-2025-1087
Kong Insomnia Desktop Application before 11.0.2 contains a template injection vulnerability that allows attackers to execute arbitrary code. The vulnerability exists due to insufficient validation of user-supplied input when processing template strings, which can lead to arbitrary JavaScript...
CVE-2025-1087
CVE-2025-1087 : Kong Insomnia Desktop Application prior to 11.0.2 contains a template injection flaw that allows arbitrary code execution. The issue arises from insufficient validation of user-supplied input during template string processing, enabling arbitrary JavaScript execution within the app...
Zoom Workplace 安全漏洞
Zoom Workplace is a desktop application from Zoom USA. A security vulnerability exists in Zoom Workplace that stems from an improper assignment of ownership and could lead to information disclosure...
Zoom Workplace 安全漏洞
Zoom Workplace is a desktop application from Zoom USA. A security vulnerability exists in Zoom Workplace that stems from a business logic error that could lead to compromised information being accessed by unauthenticated users over the network...
CVE-2024-50307
Use of potentially dangerous function issue exists in Chatwork Desktop Application Windows versions prior to 2.9.2. If a user clicks a specially crafted link in the application, an arbitrary file may be downloaded from an external website and executed. As a result, arbitrary code may be executed ...
CVE-2024-50307
Use of potentially dangerous function issue exists in Chatwork Desktop Application Windows versions prior to 2.9.2. If a user clicks a specially crafted link in the application, an arbitrary file may be downloaded from an external website and executed. As a result, arbitrary code may be executed ...
CVE-2024-48605
An issue in Helakuru Desktop Application v1.1 allows a local attacker to execute arbitrary code via the lack of proper validation of the wow64log.dll file...
CVE-2024-48605
An issue in Helakuru Desktop Application v1.1 allows a local attacker to execute arbitrary code via the lack of proper validation of the wow64log.dll file...
CVE-2024-48605
CVE-2024-48605 describes a vulnerability in the Helakuru Desktop Application v1.1 where a local attacker can execute arbitrary code due to improper validation of the wow64log.dll . The issue is rooted in DLL hijacking/validation weakness allowing local privilege escalation. The NVD entry assigns ...
CVE-2024-25661
In Infinera TNMS Transcend Network Management System 19.10.3, cleartext storage of sensitive information in memory of the desktop application TNMS Client allows guest OS administrators to obtain various users' passwords by reading memory dumps of the desktop application...
CVE-2024-25661
Infinera TNMS 19.10.3 is affected by CVE-2024-25661 due to cleartext storage of sensitive information in memory of the TNMS Client desktop app. This allows guest OS administrators to obtain user passwords by reading memory dumps. The vulnerability is local with high impact on confidentiality, int...
CVE-2024-28807
An issue was discovered in Infinera hiT 7300 5.60.50. Cleartext storage of sensitive information in the memory of the @CT desktop management application allows guest OS administrators to obtain various users' passwords by accessing memory dumps of the desktop application...
CVE-2024-28807
An issue was discovered in Infinera hiT 7300 5.60.50. Cleartext storage of sensitive information in the memory of the @CT desktop management application allows guest OS administrators to obtain various users' passwords by accessing memory dumps of the desktop application...
CVE-2024-45989
Monica AI Assistant desktop application v2.3.0 is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor. A prompt injection allows an attacker to modify chatbot answer with an unloaded image that exfiltrates the user's sensitive chat data of the current session to a malicious...