Open Design Alliance Drawings SDK has an unspecified vulnerability (CNVD-2021-89165)

Open Design Alliance Drawings SDK is a software development kit for drawing design applications from Open Design Alliance, Inc. The package provides access to data in .dwg and .dgn through a convenient, object-oriented API, providing a C API, support for repair files, support for . An out - bound...

Cross site scripting

An Out-of-Bounds Read vulnerability exists when reading a DXF file using Open Design Alliance Drawings SDK before 2022.11. The specific issue exists within the parsing of DXF files. Crafted data in a DXF file an invalid dash counter in line types can trigger a read past the end of an allocated...

Directory traversal

ServerManagement master branch as of commit 49491cc6f94980e6be7791d17be947c27071eb56 is affected by a directory traversal vulnerability. This vulnerability can be used to extract credentials which can in turn be used to execute code...

Microsoft Chakra Scripting Engine Memory Corruption Vulnerability

Microsoft Windows Scripting is a scripting language for the Windows operating system from Microsoft Corporation USA.A memory corruption vulnerability exists in the Microsoft Chakra Scripting Engine, which can be exploited by attackers to execute code on the target host...

CVE-2021-32022

A low privileged delete vulnerability using CEF RPC server of BlackBerry Protect for Windows versions versions 1574 and earlier could allow an attacker to potentially execute code in the context of a BlackBerry Cylance service that has admin rights on the system and gaining the ability to delete...

Denial of service

A denial of service vulnerability in the message broker of BlackBerry Protect for Windows versions versions 1574 and earlier could allow an attacker to potentially execute code in the context of a BlackBerry Cylance service that has admin rights on the system...

Design/Logic Flaw

A low privileged delete vulnerability using CEF RPC server of BlackBerry Protect for Windows versions versions 1574 and earlier could allow an attacker to potentially execute code in the context of a BlackBerry Cylance service that has admin rights on the system and gaining the ability to delete...

Privilege escalation

An elevation of privilege vulnerability in the message broker of BlackBerry Protect for Windows versions versions 1574 and earlier could allow an attacker to potentially execute code in the context of a BlackBerry Cylance service that has admin rights on the system...

CVE-2021-32022

Affected software: BlackBerry Protect for Windows (Cylance) up to version 1574. Issue: a low-privileged attacker could abuse the CEF RPC server to execute code in the context of the privileged Cylance service and gain the ability to delete data on the local system. Root cause described in public ...

CVE-2021-32022

A low privileged delete vulnerability using CEF RPC server of BlackBerry Protect for Windows versions versions 1574 and earlier could allow an attacker to potentially execute code in the context of a BlackBerry Cylance service that has admin rights on the system and gaining the ability to delete...

CVE-2021-32021

A denial of service vulnerability in the message broker of BlackBerry Protect for Windows versions versions 1574 and earlier could allow an attacker to potentially execute code in the context of a BlackBerry Cylance service that has admin rights on the system...

Vim Buffer Overflow Vulnerability (CNVD-2022-05070)

Vim is a UNIX-based editor. Vim is vulnerable to a buffer overflow vulnerability that could be exploited by attackers to execute code...

Vim Buffer Overflow Vulnerability (CNVD-2022-05071)

Vim is a UNIX-based editor. Vim is vulnerable to a buffer overflow vulnerability that could be exploited by attackers to execute code...

VulnCheck KEV: CVE-2021-23874

McAfee Total Protection MTP contains an improper privilege management vulnerability that allows a local user to gain elevated privileges and execute code, bypassing MTP self-defense...

Apple Multiple Products Memory Corruption Vulnerability

Apple iOS, iPadOS, macOS, and watchOS IOMobileFrameBuffer contain a memory corruption vulnerability which may allow an application to execute code with kernel privileges...

Apple Multiple Products Type Confusion Vulnerability

Apple iOS, iPadOS, macOS, and watchOS contain a type confusion vulnerability that may allow a malicious application to execute code with kernel privileges...

Microsoft Edge and Internet Explorer Memory Corruption Vulnerability

Microsoft Edge and Internet Explorer contain a memory corruption vulnerability that allows attackers to execute code in the context of the current user...

Microsoft Windows Kernel Privilege Escalation Vulnerability

Microsoft Windows kernel contains an unspecified vulnerability when handling objects in memory that allows attackers to escalate privileges and execute code in kernel mode...

Adobe Audition arbitrary code execution vulnerability

Adobe Audition is an audio editor and post-production suite. Adobe Audition 14.4 and earlier versions contain an arbitrary code execution vulnerability that could be exploited by attackers to execute arbitrary code...

Adobe Audition Arbitrary Code Execution Vulnerability (CNVD-2022-00590)

Adobe Audition is an audio editor and post-production suite. Adobe Audition 14.4 and earlier versions contain an arbitrary code execution vulnerability that could be exploited by attackers to execute arbitrary code...