Lucene search
K

1217 matches found

CNVD
CNVD
added 2020/07/24 12:0 a.m.1 views

Shenzhen Xunlei Network Technology Co., Ltd Xunlei X has dll hijacking vulnerability

Founded in 2003, Shenzhen Xunlei Network Technology Co., Ltd. is a shared computing and blockchain technology innovation enterprise. Shenzhen Xunlei Network Technology Co., Ltd Xunlei X suffers from a dll hijacking vulnerability, which can be exploited by an attacker to load a malicious dll and...

7.1AI score
Exploits0
OSV
OSV
added 2020/07/21 6:15 p.m.3 views

CVE-2020-15722

In version 12.1.0.1004 and below of 360 Total Security,when TPI calls the browser process, there exists a local privilege escalation vulnerability. An attacker who could exploit DLL hijacking could execute arbitrary code on the Local system...

7.8CVSS6.1AI score0.00432EPSS
Exploits0References1
CNVD
CNVD
added 2020/07/15 12:0 a.m.2 views

Adobe ColdFusion DLL Search Order Hijacking Vulnerability (CNVD-2020-44849)

Adobe ColdFusion is the United States Odo than Adobe company's set of rapid application development platform. The platform includes an integrated development environment and scripting language. Adobe ColdFusion has a security vulnerability. An attacker could exploit the vulnerability to elevate...

7.8CVSS6.5AI score0.01045EPSS
Exploits0References1
Prion
Prion
added 2020/07/14 11:15 p.m.19 views

Remote code execution

A remote code execution vulnerability exists when Microsoft Office improperly validates input before loading dynamic link library DLL files, aka 'Microsoft Office Remote Code Execution Vulnerability'...

9.3CVSS8.1AI score0.10889EPSS
Exploits0References1
CNVD
CNVD
added 2020/07/06 12:0 a.m.9 views

Python code issue vulnerability (CNVD-2020-53314)

Python is an open source, object-oriented programming language from the Python Software Foundation. The language is extensible, supports modules and packages, and supports multiple platforms. A code issue vulnerability exists in Python Windows that stems from python3X.dll using an invalid search...

7.8CVSS9.3AI score0.00895EPSS
Exploits0
CNVD
CNVD
added 2020/07/03 12:0 a.m.2 views

Mozilla Firefox Code Problem Vulnerability (CNVD-2020-46339)

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in previous versions of Mozilla Firefox 78 for Windows-based platforms. The vulnerability can be exploited by an attacker to execute arbitrary code via a malicious DLL...

7.8CVSS8.9AI score0.00414EPSS
Exploits0References1
CNVD
CNVD
added 2020/07/01 12:0 a.m.2 views

Raonwiz CyMiInstaller322 ActiveX Code Issue Vulnerability

Raonwiz CyMiInstaller322 ActiveX is a version control program from the Korean company Raonwiz. A security vulnerability exists in File Download in Raonwiz CyMiInstaller322 ActiveX 2016.5.26.1 and earlier versions, which stems from the program failing to adequately perform an authentication...

7.2CVSS7AI score0.01144EPSS
Exploits0References1
CNVD
CNVD
added 2020/06/05 12:0 a.m.7 views

Cloud Orange PDF Editor DLL Hijacking Vulnerability

Cloud Orange PDF Editor is a simple and easy to use PDF editing tool of Xunwu Cloud Orange Information Technology Co. Cloud Orange PDF Editor has a DLL hijacking vulnerability, which can be exploited by attackers to execute arbitrary code...

7.5AI score
Exploits0
CNVD
CNVD
added 2020/06/05 12:0 a.m.1 views

Unspecified Vulnerability in Foxit Studio

Foxit Studio Photo is a set of image editing software from the Chinese company Foxit Foxit. A security vulnerability exists in Foxit Studio Photo versions prior to 3.6.6.922. The vulnerability can be exploited by a local attacker to gain privileges via a specially crafted DLL file in the current...

7.8CVSS7AI score0.00768EPSS
Exploits0References1
CNVD
CNVD
added 2020/06/05 12:0 a.m.3 views

Foxit PhantomPDF code issue vulnerability (CNVD-2020-32465)

Foxit PhantomPDF is China's Foxit Foxit company a PDF document reader. A code issue vulnerability exists in Foxit PhantomPDF versions prior to 8.3.6. A remote attacker can exploit this vulnerability to execute code via a DLL...

7.8CVSS7.4AI score0.00792EPSS
Exploits0References1
OSV
OSV
added 2020/06/04 5:15 p.m.2 views

CVE-2018-21241

An issue was discovered in Foxit PhantomPDF before 8.3.6. It has an untrusted search path that allows a DLL to execute remote code...

7.8CVSS5.9AI score0.00792EPSS
Exploits0References1
OSV
OSV
added 2020/06/04 4:15 p.m.3 views

CVE-2020-13812

An issue was discovered in Foxit Studio Photo before 3.6.6.922. It allows local users to gain privileges via a crafted DLL in the current working directory...

7.8CVSS5.8AI score0.00768EPSS
Exploits0References1
CNVD
CNVD
added 2020/05/22 12:0 a.m.2 views

Raonwiz K Upload Parameter Injection Vulnerability

Raonwiz K Upload is a file transfer component from the Korean company Raonwiz. A security vulnerability exists in RAONWIZ K Upload 2018.0.2.51 and earlier versions. An attacker can use the vulnerability to modify parameters, download arbitrary DLL files and perform injection operations...

9.8CVSS7.3AI score0.00689EPSS
Exploits0References1
OSV
OSV
added 2020/05/21 7:15 p.m.3 views

CVE-2020-7808

In RAONWIZ K Upload v2018.0.2.51 and prior, automatic update processing without integrity check on update moduleweb.js allows an attacker to modify arguments which causes downloading a random DLL and injection on it...

9.8CVSS7.3AI score0.00689EPSS
Exploits0References1
CNVD
CNVD
added 2020/05/15 12:0 a.m.4 views

Opto 22 SoftPAC Project Code Issue Vulnerability

Opto 22 SoftPAC Project is an automation software suite from Opto 22 USA. The product is capable of providing industrial automation, process control, building automation, remote monitoring, data acquisition and industrial IoT. A code issue vulnerability exists in Opto 22 SoftPAC Project 9.6 and...

8.8CVSS7.7AI score0.01746EPSS
Exploits0References1
CNVD
CNVD
added 2020/05/09 12:0 a.m.1 views

A4Tech 8-in-one software suffers from dll hijacking vulnerability

Headquartered in Taipei, Taiwan, A4Tech is an independent brand in the computer field and has successfully established sales channels in the global market. A4Tech 8-in-one software suffers from a dll hijacking vulnerability. An attacker can execute arbitrary code by replacing a dll with the same...

7.8AI score
Exploits0
CNVD
CNVD
added 2020/05/07 12:0 a.m.1 views

Accusoft ImageGear Input Validation Error Vulnerability

Accusoft ImageGear is a software development kit SDK for image processing from Accusoft, USA. An input validation error vulnerability exists in the TIFF fillinraster function of the igcore19d.dll library in Accusoft ImageGear versions 19.4, 19.5, and 19.6. An attacker can exploit the vulnerabilit...

9.8CVSS7.3AI score0.03597EPSS
Exploits1References1
CNVD
CNVD
added 2020/04/27 12:0 a.m.1 views

DLL Hijacking Vulnerability in 360 Extreme Browser

360 Extreme Browser is a dual-core browser owned by Beijing Qihoo Technology Co. 360 Extreme Browser suffers from a DLL hijacking vulnerability that can be exploited by attackers to execute malicious code...

7.1AI score
Exploits0
CNVD
CNVD
added 2020/04/27 12:0 a.m.0 views

DLL Hijacking Vulnerability in NetEase Email Master for Windows Edition

NetEase Email Master is an email client that supports multiple platforms. A DLL hijacking vulnerability exists in NetEase Mail Master for Windows, which can be exploited by attackers to execute malicious code...

7.2AI score
Exploits0
CNVD
CNVD
added 2020/04/22 12:0 a.m.1 views

Zijin Bridge Monitoring and Configuration Software 6.5 DLL Hijacking Vulnerability

Zijinqiao monitoring and configuration software is an industrial automation monitoring and configuration software developed by Daqing Zijinqiao Software Technology Company, which is funded by PetroChina. A DLL hijacking vulnerability exists in Zijinqiao Monitoring and Configuration Software 6.5,...

7.9AI score
Exploits0
Rows per page
Query Builder