PT-2022-18652 · Autodesk · Designreview.Exe

Name of the Vulnerable Software and Affected Versions: DesignReview.exe affected versions not specified Description: The issue arises when a maliciously crafted TIFF file is consumed through the DesignReview.exe application, causing it to read beyond allocated boundaries while parsing the TIFF...

Contec SolarView Compact 输入验证错误漏洞

Contec SolarView Compact is an application system from Contec Japan. which provides photovoltaic power measurement systems. Contec SolarView Compact suffers from an input validation error vulnerability that stems from insufficient input validation provided in the image file management page. An...

Fedora: Security Advisory for libtiff (FEDORA-2022-edf7301147)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

The vulnerability of the graphic editor module for visualizing and controlling parameters of technological processes in V-SFT allows a perpetrator to gain unauthorized access to protected information or execute arbitrary code.

The vulnerability of the graphic editor module for visualizing and controlling parameters of V-SFT processes is related to the use of an uninitialized pointer. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information or execute arbitrary code using a...

Debian DSA-5176-1 : blender - security update

The remote Debian 10 / 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5176 advisory. Multiple vulnerabilities have been discovered in various image parsers in Blender, a 3D modeller/ renderer, which may result in denial of service or the...

AZL-44847 CVE-2022-2056 affecting package openjpeg2 2.3.1-12

Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f3a5e010...

LibTIFF 数字错误漏洞

Silicon Graphics LibTIFF is a library for reading and writing TIFF Tagged Image File Format files from Silicon Graphics, USA. The library contains some command line tools for working with TIFF files. A security vulnerability exists in LibTIFF version 4.4.0. An attacker has exploited the...

CVE-2022-27531

A maliciously crafted TIF file can be forced to read beyond allocated boundaries in Autodesk 3ds Max 2022, and 2021 when parsing the TIF files. This vulnerability in conjunction with other vulnerabilities could lead to code execution in the context of the current process...

CVE-2022-30549

Out-of-bounds read vulnerability exists in V-Server v4.0.11.0 and earlier and V-Server Lite v4.0.13.0 and earlier, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file...

CVE-2022-30546

Out-of-bounds read vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file...

CVE-2022-30538

Out-of-bounds write vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file...

CVE-2022-30549

Out-of-bounds read vulnerability exists in V-Server v4.0.11.0 and earlier and V-Server Lite v4.0.13.0 and earlier, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file...

CVE-2022-30538

Out-of-bounds write vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file...

CVE-2022-30549

Out-of-bounds read vulnerability exists in V-Server v4.0.11.0 and earlier and V-Server Lite v4.0.13.0 and earlier, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file...

CVE-2022-30546

Out-of-bounds read vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file...

Cross site scripting

Out-of-bounds write vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file...

Cross site scripting

Out-of-bounds read vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file...

CVE-2022-30549

CVE-2022-30549 describes an out-of-bounds read in Fuji Electric’s V-Server v4.0.11.0 and earlier and V-Server Lite v4.0.13.0 and earlier, exploitable by opening a specially crafted image file. The Red Hat/NVD entries corroborate the vulnerability in V-Server/V-Server Lite, with potential informat...

CVE-2022-30546

Out-of-bounds read vulnerability exists in the simulator module contained in the graphic editor 'V-SFT' versions prior to v6.1.6.0, which may allow an attacker to obtain information and/or execute arbitrary code by having a user to open a specially crafted image file...

Autodesk 3ds Max 缓冲区错误漏洞

Autodesk 3ds Max is a full-featured, three-dimensional computer graphics software from the American company Autodesk. A security vulnerability exists in Autodesk 3ds Max versions 2022 and 2021, which originates from a maliciously crafted TIF file that may be forced to read beyond allocated...