Lucene search
K

214 matches found

NCSC
NCSC
added 2026/05/13 9:18 a.m.10 views

vulnerabilities handled in Adobe Illustrator

Adobe has identified several vulnerabilities in Adobe Illustrator versions 29.8.6, 30.3, and earlier. These vulnerabilities lie in the way Adobe Illustrator processes specially crafted files. There are issues with out-of-bounds write operations, NULL pointer dereferences, out-of-bounds reads, and...

7.8CVSS6AI score0.00174EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/04/06 7:50 a.m.3 views

fontforge: FontForge: Remote Code Execution via malicious SFD file parsing

A flaw was found in FontForge. This vulnerability allows a remote attacker to execute arbitrary code by tricking a user into opening a specially crafted SFD Spline Font Database file. The issue stems from improper validation of array indexes during SFD file parsing, which can lead to writing data...

8.8CVSS6.6AI score0.00581EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/03/27 2:27 p.m.11 views

CVE-2021-27034

A heap-based buffer overflow could occur while parsing PICT, PCX, RCL or TIFF files in Autodesk Design Review 2018, 2017, 2013, 2012, 2011. This vulnerability can be exploited to execute arbitrary code...

7.8CVSS7.8AI score0.02208EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/03 2:32 p.m.5 views

CVE-2025-64736

An out-of-bounds read vulnerability exists in the ABF parsing functionality of The Biosig Project libbiosig 3.9.2 and Master Branch 5462afb0. A specially crafted .abf file can lead to an information leak. An attacker can provide a malicious file to trigger this vulnerability...

6.1CVSS5.9AI score0.00184EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/22 1:28 a.m.5 views

CVE-2026-2034

Sante DICOM Viewer Pro DCM File Parsing Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS6.4AI score0.00319EPSS
Exploits0References1
ICS
ICS
added 2026/02/10 12:0 a.m.6 views

Siemens Simcenter Femap and Nastran

SUMMARY Siemens Simcenter Femap and Nastran is affected by multiple file parsing vulnerabilities that could be triggered when the application reads files in NDB and XDB formats. If a user is tricked to open a malicious file with any of the affected products, this could lead the application to...

6.5AI score
Exploits0References10
RedhatCVE
RedhatCVE
added 2026/01/09 11:29 a.m.7 views

CVE-2021-27035

A maliciously crafted TIFF, TIF, PICT, TGA, or DWF files in Autodesk Design Review 2018, 2017, 2013, 2012, 2011 can be forced to read beyond allocated boundaries when parsing the TIFF, PICT, TGA or DWF files. This vulnerability in conjunction with other vulnerabilities could lead to code executio...

7.8CVSS7.2AI score0.01708EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:23 a.m.12 views

CVE-2021-31517

Trend Micro Home Network Security 6.5.599 and earlier is vulnerable to a file-parsing vulnerability which could allow an attacker to exploit the vulnerability and cause a denial-of-service to the device. This vulnerability is similar, but not identical to CVE-2021-31518...

7.8CVSS6.3AI score0.01097EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:36 a.m.26 views

CVE-2020-12498

mwe file parsing in Phoenix Contact PC Worx and PC Worx Express version 1.87 and earlier is vulnerable to out-of-bounds read remote code execution. Manipulated PC Worx projects could lead to a remote code execution due to insufficient input data validation...

7.8CVSS7.8AI score0.02106EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 8:35 a.m.7 views

CVE-2020-17424

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Studio Photo 3.6.6.922. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.8AI score0.0372EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/12/30 12:0 a.m.6 views

(0Day) Anritsu VectorStar CHX File Parsing Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Anritsu VectorStar. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS7.3AI score0.00344EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/12/24 10:29 p.m.4 views

CVE-2025-14420

pdfforge PDF Architect CBZ File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of pdfforge PDF Architect. User interaction is required to exploit this vulnerability in that the target...

7.8CVSS7.8AI score0.00372EPSS
Exploits0References1
OSV
OSV
added 2025/12/09 4:32 p.m.3 views

SUSE-SU-2025:21189-1 Security update for openexr

This update for openexr fixes the following issues: Changes in openexr: - CVE-2025-12495: Fixed a file parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability bsc1253714 - CVE-2025-12839: Fixed a file parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability bsc1253715...

7.8CVSS7.2AI score0.00158EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2025/11/24 3:50 p.m.5 views

gimp: GIMP FF File Parsing Integer Overflow Remote Code Execution Vulnerability

A remote code execution RCE vulnerability exists in GIMP’s FF file parsing functionality. The flaw stems from improper validation of user-supplied data, leading to an integer overflow before buffer allocation. When a user opens a malicious FF image file, the overflow can cause incorrect memory...

7.8CVSS6.7AI score0.00371EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2025/10/29 7:44 p.m.2 views

CVE-2025-11465 Ashlar-Vellum Cobalt CO File Parsing Use-After-Free Remote Code Execution Vulnerability

Ashlar-Vellum Cobalt CO File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must visit...

7.8CVSS7.2AI score0.00193EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-18417

Malware in sbrugna...

7.8CVSS7.5AI score0.01097EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-18418

Malware in sbrugna...

7.8CVSS7.5AI score0.01097EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-27803

Malware in sbrugna...

7.8CVSS7.6AI score0.02706EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-27349

Malware in sbrugna...

7.8CVSS7.6AI score0.00246EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-38367

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00407EPSS
Exploits0References1
Rows per page
Query Builder