Lucene search
K

23182 matches found

CNNVD
CNNVD
added 2024/12/10 12:0 a.m.3 views

Adobe Acrobat Reader 代码问题漏洞

Adobe Acrobat Reader is a PDF viewer from the American company Audobee Adobe. The software is used to print, sign and annotate PDF. Adobe Acrobat Reader has a security vulnerability that can be exploited by an attacker to cause a denial of service...

5.5CVSS6.6AI score0.00261EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/12/10 12:0 a.m.5 views

PT-2024-10222 · Document Foundation +5 · Libreoffice +5

Name of the Vulnerable Software and Affected Versions: LibreOffice versions 24.8 through 24.8.3 Description: The issue is related to an improper limitation of a pathname to a restricted directory, allowing absolute path traversal. An attacker can write to arbitrary locations, albeit suffixed with...

7.2CVSS5.7AI score0.00528EPSS
Exploits0References60
CNNVD
CNNVD
added 2024/12/09 12:0 a.m.4 views

Autodesk FBX-SDK 缓冲区错误漏洞

Autodesk FBX-SDK is a C++ software development platform and API toolkit from Autodesk, Inc. that is primarily used to convert existing content to FBX format. A security vulnerability exists in Autodesk FBX-SDK that stems from a possible forced out-of-bounds write vulnerability when Autodesk FBX S...

8.8CVSS7.6AI score0.00312EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2024/12/06 11:20 p.m.22 views

CVE-2024-53589

A buffer overflow vulnerability exists in GNU Binutils’ objdump utility when processing tekhex format files. During format identification, the vulnerability occurs in the Binary File Descriptor BFD library’s tekhex parser. A specially crafted tekhex file, when processed by objdump, may trigger an...

6.6CVSS7.2AI score0.00268EPSS
Exploits0References5
OSV
OSV
added 2024/12/06 5:15 p.m.5 views

CVE-2024-50402

A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to obtain secret data or modify memory. We have already fixed the...

7.2CVSS5.8AI score0.00533EPSS
Exploits0References1
OSV
OSV
added 2024/12/06 5:15 p.m.4 views

CVE-2024-50403

A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to obtain secret data or modify memory. We have already fixed the...

7.2CVSS5.8AI score
Exploits0References1
Cvelist
Cvelist
added 2024/12/06 4:36 p.m.35 views

CVE-2024-50403 QTS, QuTS hero

A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to obtain secret data or modify memory. We have already fixed the...

2.1CVSS0.00465EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/06 4:36 p.m.11 views

CVE-2024-50402 QTS, QuTS hero

A use of externally-controlled format string vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to obtain secret data or modify memory. We have already fixed the...

2.1CVSS7AI score0.00533EPSS
Exploits0References1
OSV
OSV
added 2024/12/06 10:15 a.m.7 views

AZL-54087 CVE-2024-53142 affecting package kernel for versions less than 5.15.176.3-1

In the Linux kernel, the following vulnerability has been resolved: initramfs: avoid filename buffer overrun The initramfs filename field is defined in Documentation/driver-api/early-userspace/buffer-format.rst as: 37 cpiofile := ALGN4 + cpioheader + filename + "\0" + ALGN4 + data ... 55...

7.8CVSS6.6AI score0.00245EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/06 12:0 a.m.6 views

QNAP Systems QTS和QuTS hero 格式化字符串错误漏洞

QNAP Systems QTS and QNAP Systems QuTS hero are both products of China Weilian Technology QNAP Systems.QNAP Systems QTS is an entry operating system.QNAP Systems QuTS hero is an operating system. QNAP Systems QTS and QuTS hero have a format string error vulnerability that stems from a format stri...

7.2CVSS6.6AI score0.00465EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/06 12:0 a.m.6 views

PT-2024-10311 · Qnap · Qnap Qts +1

Name of the Vulnerable Software and Affected Versions: QNAP QTS versions prior to 5.2.2.2950 build 20241114 QNAP QuTS hero versions prior to 5.2.2.2952 build 20241116 Description: A use of externally-controlled format string issue has been reported to affect several QNAP operating system versions...

2.1CVSS7.4AI score0.00465EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/12/06 12:0 a.m.4 views

QNAP Systems QTS和QuTS hero 格式化字符串错误漏洞

QNAP Systems QTS and QNAP Systems QuTS hero are both products of China Weilian Technology QNAP Systems.QNAP Systems QTS is an entry operating system.QNAP Systems QuTS hero is an operating system. QNAP Systems QTS and QuTS hero have a format string error vulnerability that stems from a format stri...

7.2CVSS6.8AI score0.00533EPSS
Exploits0References1
OSV
OSV
added 2024/12/05 8:15 p.m.10 views

CVE-2024-53589

GNU objdump 2.43 is vulnerable to Buffer Overflow in the BFD Binary File Descriptor library's handling of tekhex format files...

6.6AI score
Exploits0References3
NVD
NVD
added 2024/12/05 8:15 p.m.21 views

CVE-2024-53589

GNU objdump 2.43 is vulnerable to Buffer Overflow in the BFD Binary File Descriptor library's handling of tekhex format files...

8.4CVSS0.00268EPSS
Exploits0References3
OSV
OSV
added 2024/12/05 8:15 p.m.0 views

UBUNTU-CVE-2024-53589

GNU objdump 2.43 is vulnerable to Buffer Overflow in the BFD Binary File Descriptor library's handling of tekhex format files...

8.4CVSS5.8AI score0.00268EPSS
Exploits0References4
OSV
OSV
added 2024/12/05 5:49 p.m.5 views

CLSA-2024-1733420952 cups: Fix of CVE-2023-32324

CVE-2023-32324: Fix heap buffer overflow vulnerability in formatlogline function...

7.5CVSS6.9AI score0.01473EPSS
Exploits1References1
CVE
CVE
added 2024/12/05 3:17 p.m.74 views

CVE-2024-54001

CVE-2024-54001 affects Kanboard: HTML can be injected via settings fields application_language, application_date_format, application_timezone, and application_time_format, reflected to users and potentially executed as XSS if input contains JavaScript that bypasses CSP. Root cause is unescaped us...

5.5CVSS5.5AI score0.00382EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2024/12/05 12:0 a.m.85 views

CVE-2024-53589

CVE-2024-53589 affects GNU objdump 2.43 (part of the GNU binutils suite). The vulnerability is a Buffer Overflow in the BFD library when processing tekhex format files. Reports indicate a high-severity issue (CVSS v3.1: AV=L, AC=L, PR=N, UI=N, S=U, C=H, I=H, A=H) with local attack vector and no u...

8.4CVSS6.9AI score0.00268EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/12/05 12:0 a.m.20 views

CVE-2024-53589

GNU objdump 2.43 is vulnerable to Buffer Overflow in the BFD Binary File Descriptor library's handling of tekhex format files...

0.00268EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2024/12/05 12:0 a.m.247 views

CVE-2024-53589

GNU objdump 2.43 is vulnerable to Buffer Overflow in the BFD Binary File Descriptor library's handling of tekhex format files...

8.4CVSS6.4AI score0.00268EPSS
Exploits0
Rows per page
Query Builder