Lucene search
K

7751 matches found

EUVD
EUVD
added 2026/05/12 3:31 p.m.10 views

EUVD-2025-209785

The affected applications contains a memory corruption vulnerability while parsing specially crafted IPT files. This could allow an attacker to execute code in the context of the current process. ZDI-CAN-27349, ZDI-CAN-27389...

7.3CVSS6AI score0.00204EPSS
Exploits0References2
NVD
NVD
added 2026/05/12 2:16 p.m.10 views

CVE-2025-12659

Siemens Simcenter Femap contains a memory corruption vulnerability while parsing specially crafted IPT files. This could allow an attacker to execute code in the context of the current process...

7.8CVSS0.00204EPSS
Exploits0References3
NVD
NVD
added 2026/05/12 10:16 a.m.14 views

CVE-2026-44411

A vulnerability has been identified in Solid Edge SE2026 All versions V226.0 Update 5. The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current...

7.8CVSS0.00105EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/12 8:21 a.m.39 views

CVE-2026-44412

A vulnerability has been identified in Solid Edge SE2026 All versions V226.0 Update 5. The affected applications contain a stack based overflow vulnerability while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current process...

7.8CVSS0.00106EPSS
Exploits0References1
CVE
CVE
added 2026/05/12 8:21 a.m.27 views

CVE-2026-44412

CVE-2026-44412 affects Solid Edge SE2026 (all versions

7.8CVSS6AI score0.00106EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/12 8:21 a.m.36 views

CVE-2026-44411

A vulnerability has been identified in Solid Edge SE2026 All versions V226.0 Update 5. The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current...

7.8CVSS0.00105EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/12 8:21 a.m.10 views

CVE-2026-44411

A vulnerability has been identified in Solid Edge SE2026 All versions V226.0 Update 5. The affected application is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in the context of the current...

7.8CVSS5.9AI score0.00105EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.9 views

Siemens Solid Edge 缓冲区错误漏洞

Siemens Solid Edge is a 3D CAD software developed by the German company Siemens. This software can be used for parts design, assembly design, sheet metal design, welding design, and other industries. Versions of Siemens Solid Edge prior to V226.0 Update 5 contained a buffer error vulnerability...

7.8CVSS7.6AI score0.00105EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2026/05/12 12:0 a.m.17 views

Siemens Simcenter Femap IPT File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Simcenter Femap. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS7.5AI score0.00204EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/11 9:31 p.m.10 views

EUVD-2026-29302

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, iOS 26.5 and iPadOS 26.5, macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. Parsing a maliciously crafted file may lead to an unexpected app termination...

5.8AI score0.00265EPSS
Exploits0References6
EUVD
EUVD
added 2026/05/11 9:31 p.m.13 views

EUVD-2026-29239

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Parsing a maliciously crafted file may lead to an unexpected app termination...

5.8AI score0.00487EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/05/11 8:7 p.m.35 views

CVE-2026-28918

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Tahoe 26.5, tvOS 26.5, visionOS 26.5, watchOS 26.5. Parsing a maliciously crafted file may lead to an unexpected app termination...

0.00487EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.8 views

Unity Linux 20.1070e Security Update: hdf5 (UTSA-2026-017778)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017778 advisory. A SIGFPE signal is raised in the function H5Dcreatechunkfilemaphyper of H5Dchunk.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF...

6.5CVSS6.8AI score0.01972EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/05/04 5:30 a.m.7 views

CVE-2026-7736 osrg GoBGP mrt.go parseRibEntry integer underflow

A vulnerability was determined in osrg GoBGP up to 4.3.0. Affected by this vulnerability is the function parseRibEntry of the file pkg/packet/mrt/mrt.go. Executing a manipulation can lead to integer underflow. It is possible to launch the attack remotely. Upgrading to version 4.4.0 addresses this...

7.5CVSS6.9AI score0.00454EPSS
Exploits0References6
Snyk
Snyk
added 2026/05/01 5:32 p.m.10 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read via the IGES and STEP file parsing process. An attacker can cause a denial of service or access unintended memory contents by submitting specially crafted IGES or STEP files that trigger out-of-bounds reads or infinit...

7.1CVSS5.8AI score0.00098EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2026/04/27 4:55 p.m.7 views

Security update for fontforge

This update for fontforge fixes the following issue: CVE-2025-15270: Remote code execution via malicious SFD file parsing bsc1256031. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run t...

8.8CVSS8.3AI score0.00581EPSS
Exploits0References4
OSV
OSV
added 2026/04/25 5:50 a.m.6 views

OESA-2026-2096 fio security update

fio is a tool used to spawn many threads or processes that perform a specific type of io operation specified by the user.It accepts many global parameters inherited by threads.Its common method is to simulate jobs that match the specified io load. Security Fixes: A NULL pointer dereference...

7.5CVSS5.4AI score0.00278EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/24 12:0 a.m.7 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: fontforge (UTSA-2026-014308)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-014308 advisory. FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on...

8.8CVSS7.8AI score0.0058EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.5 views

SUSE SLED15 / SLES15 Security Update : gegl (SUSE-SU-2026:1496-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:1496-1 advisory. - CVE-2026-2049: improper validation of the length of user-supplied data when parsing HDR files can lead to a heap buff...

7.8CVSS6.1AI score0.00615EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/04/20 10:3 a.m.5 views

fontforge: FontForge: Arbitrary code execution via SFD file parsing buffer overflow

A flaw was found in FontForge. A remote attacker could exploit a heap-based buffer overflow vulnerability during SFD file parsing. This issue arises from insufficient validation of user-supplied data length before copying it to a buffer. Successful exploitation requires user interaction, such as...

8.8CVSS8.2AI score0.0058EPSS
Exploits0References5
Rows per page
Query Builder