Lucene search
K

23177 matches found

OpenVAS
OpenVAS
added 2025/01/09 12:0 a.m.3 views

Fedora: Security Advisory (FEDORA-2024-ccdbd92d7b)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
CNNVD
CNNVD
added 2025/01/09 12:0 a.m.2 views

SonicWALL SonicOS 安全漏洞

SonicWALL SonicOS is a set of operating systems designed for SonicWall firewall appliances from SonicWALL, Inc. A security vulnerability exists in SonicWALL SonicOS, which stems from a format string issue that can be exploited by an authenticated, remote attacker to crash the firewall and...

7.2CVSS7.5AI score0.00697EPSS
Exploits0References1
SUSE Linux
SUSE Linux
added 2025/01/08 9:47 a.m.4 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-48853: swiotlb: fix info leak with DMAFROMDEVICE bsc1228015. CVE-2024-26801: Bluetooth: Avoid potential use-after-free in hcierrorreset bsc1222413...

7.8CVSS8.3AI score0.03301EPSS
Exploits3References316
OSV
OSV
added 2025/01/08 4:15 a.m.3 views

CVE-2024-56455

Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability...

5.5CVSS5.8AI score0.00105EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/01/08 12:0 a.m.6 views

The vulnerability of the DWFX software file used for viewing 3D models and project documents in Autodesk Navisworks Freedom; the software for modeling and analyzing 3D models in Autodesk Navisworks Simulate; and the software for analyzing, coordinating, and verifying 3D models and project data in Autodesk Navisworks Manage. This allows a malicious individual to cause service interruptions or execute arbitrary code.

The vulnerability of the DWFX software for viewing 3D models and project documents, as well as the software for modeling and analysis of 3D models Autodesk Navisworks Freedom, the software for analyzing, coordinating, and verifying 3D models and project data Autodesk Navisworks Manage, is related...

7.8CVSS7.9AI score0.00468EPSS
Exploits0References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/01/08 12:0 a.m.6 views

The vulnerability of the DWFX software file used for viewing 3D models and project documents in Autodesk Navisworks Freedom; the software for modeling and analyzing 3D models in Autodesk Navisworks Simulate; and the software for analyzing, coordinating, and verifying 3D models and project data in Autodesk Navisworks Manage. This allows a malicious individual to cause service interruptions or execute arbitrary code.

The vulnerability of the DWFX software file used for viewing 3D models and project documents in Autodesk Navisworks Freedom, as well as the software for modeling, analyzing, and coordinating 3D models and project data in Autodesk Navisworks Manage, is related to a buffer overflow in the dynamic...

7.8CVSS7.9AI score0.00329EPSS
Exploits0References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/01/08 12:0 a.m.3 views

The vulnerability of the DWFX software file used for viewing 3D models and project documents in Autodesk Navisworks Freedom; the software for modeling and analyzing 3D models in Autodesk Navisworks Simulate; and the software for analyzing, coordinating, and verifying 3D models and project data in Autodesk Navisworks Manage, allows a malicious individual to execute arbitrary code.

The vulnerability of the DWFX software file used for viewing 3D models and project documents in Autodesk Navisworks Freedom, as well as the software for modeling, analyzing, and simulating 3D models in Autodesk Navisworks Simulate, and the software for analyzing, coordinating, and verifying 3D...

7.8CVSS7.6AI score0.00325EPSS
Exploits0References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/01/08 12:0 a.m.6 views

The vulnerability of the DWFX software file used for viewing 3D models and project documents in Autodesk Navisworks Freedom; the software for modeling and analyzing 3D models in Autodesk Navisworks Simulate; and the software for analyzing, coordinating, and verifying 3D models and project data in Autodesk Navisworks Manage. This allows a malicious individual to cause service interruptions or execute arbitrary code.

The vulnerability of the DWFX software file used for viewing 3D models and project documents in Autodesk Navisworks Freedom, as well as the software for modeling, analyzing, and coordinating 3D models and project data in Autodesk Navisworks Manage, is related to a buffer overflow in the dynamic...

7.8CVSS7.9AI score0.00329EPSS
Exploits0References4Affected Software3
Positive Technologies
Positive Technologies
added 2025/01/08 12:0 a.m.5 views

PT-2025-3300 · Unknown · 3D Engine Module

Name of the Vulnerable Software and Affected Versions: 3D engine module affected versions not specified Description: The issue concerns the vulnerability of input parameters not being verified during the loading of glTF models in the 3D engine module. Successful exploitation of this vulnerability...

6.8CVSS6.9AI score0.00106EPSS
Exploits0References4
SonicWall
SonicWall
added 2025/01/07 4:56 p.m.8 views

SonicOS Multiple Post-authentication Vulnerabilities

1 CVE-2024-12803 - SonicOS Post-authentication Stack-based buffer overflow vulnerabilityA post-authentication stack-based buffer overflow vulnerability in SonicOS management allows a remote attacker to crash a firewall and potentially leads to code execution. CVSS Score: 6.0 CVSS Vector:...

6CVSS7.8AI score0.00792EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2025/01/07 4:15 p.m.3 views

CVE-2025-0240

Parsing a JavaScript module as JSON could, under some circumstances, cause cross-compartment access, which may result in a use-after-free. This vulnerability was fixed in Firefox 134, Firefox ESR 128.6, Thunderbird 134, and Thunderbird 128.6...

4CVSS6.7AI score0.00664EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2025/01/07 10:42 a.m.2 views

Security update for python-Jinja2

This update for python-Jinja2 fixes the following issues: CVE-2024-56326: Fixed sandbox breakout through indirect reference to format method bsc1234809 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.1CVSS7.2AI score0.005EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/01/07 12:0 a.m.15 views

openSUSE Security Advisory (SUSE-SU-2025:0006-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.7AI score0.005EPSS
Exploits0References5
NVD
NVD
added 2025/01/06 5:15 p.m.11 views

CVE-2023-6604

A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially leading to degraded performance or denial of service via the demuxing of arbitrary data as XBIN-formatted data without proper format validation...

5.3CVSS0.0043EPSS
Exploits1References2
OSV
OSV
added 2025/01/06 5:15 p.m.0 views

DEBIAN-CVE-2023-6604

A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially leading to degraded performance or denial of service via the demuxing of arbitrary data as XBIN-formatted data without proper format validation...

5.3CVSS6AI score0.0043EPSS
Exploits1References1
CVE
CVE
added 2025/01/06 4:41 p.m.97 views

CVE-2023-6604

CVE-2023-6604 affects FFmpeg and is described across multiple connected sources as a flaw where demuxing arbitrary data as XBIN-formatted data can cause unexpected CPU load or storage consumption, leading to degraded performance or DoS. The Debian LTS advisory (DLA-4241-1) and related Nessus entr...

5.3CVSS5.3AI score0.0043EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVE
added 2025/01/06 4:41 p.m.9 views

CVE-2023-6604

A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially leading to degraded performance or denial of service via the demuxing of arbitrary data as XBIN-formatted data without proper format validation...

5.3CVSS6AI score0.0043EPSS
Exploits1
Cvelist
Cvelist
added 2025/01/06 4:41 p.m.20 views

CVE-2023-6604 Ffmpeg: hls xbin demuxer dos amplification in ffmpeg

A flaw was found in FFmpeg. This vulnerability allows unexpected additional CPU load and storage consumption, potentially leading to degraded performance or denial of service via the demuxing of arbitrary data as XBIN-formatted data without proper format validation...

5.3CVSS0.0043EPSS
Exploits1References1
SUSE Linux
SUSE Linux
added 2025/01/06 9:2 a.m.3 views

Security update for python-Jinja2

This update for python-Jinja2 fixes the following issues: CVE-2024-56326: sandbox breakout through indirect reference to format method in template file. bsc1234809 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch...

8.1CVSS7.3AI score0.005EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/01/05 12:0 a.m.2 views

PT-2025-5656 · Avif · Avif

Name of the Vulnerable Software and Affected Versions: avif affected versions not specified Description: A heap buffer overflow read issue has been identified. The crash occurs in the avifImageAddUUIDProperty function, as indicated by the crash state. Technical details about the issue include the...

7.4AI score
Exploits0References2
Rows per page
Query Builder