34 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-57107
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Kitware VTK Visualization Toolkit through 9.5.0 contains a heap buffer overflow vulnerability in vtkGLTFDocumentLoader. When processing specially crafted GLTF...
CVE-2025-57107
Kitware VTK Visualization Toolkit through 9.5.0 contains a heap buffer overflow vulnerability in vtkGLTFDocumentLoader. When processing specially crafted GLTF files, the copy constructor of Accessor objects fails to properly validate buffer boundaries before performing memory read operations...
CVE-2025-57109
Kitware VTK Visualization Toolkit 9.5.0 is vulnerable to Heap Use-After-Free in vtkGLTFImporter::ImportActors. When processing GLTF files with invalid scene node references, the application accesses string members of mesh objects that have been previously freed during actor import operations...
CVE-2025-57109
Kitware VTK Visualization Toolkit 9.5.0 is vulnerable to Heap Use-After-Free in vtkGLTFImporter::ImportActors. When processing GLTF files with invalid scene node references, the application accesses string members of mesh objects that have been previously freed during actor import operations...
CVE-2025-57109
Kitware VTK 9.5.0 is affected by a Heap Use-After-Free vulnerability in vtkGLTFImporter::ImportActors. When processing GLTF files with invalid scene node references, the code may access string members of mesh objects that were freed during actor import, leading to potential instability. Connected...
Kitware VTK 安全漏洞
Kitware VTK is a 3D image generation software from Kitware open source. A security vulnerability exists in Kitware VTK version 9.5.0, which stems from heap-release reuse when processing GLTF files, and could lead to accessing freed string members...
Linux Distros Unpatched Vulnerability : CVE-2025-57109
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Kitware VTK Visualization Toolkit 9.5.0 is vulnerable to Heap Use-After-Free in vtkGLTFImporter::ImportActors. When processing GLTF files with invalid scene nod...
EUVD-2008-4936
Malware in sbrugna...
Kitware GCC-XML 'find_flags'脚本不安全临时文件建立漏洞
Bugraq ID: 36318 CVE ID: CVE-2008-4957 GCC-XML是一款c++语法分析器,是gcc编译器的前端。 Kitware GCC-XML 'findflags'脚本在/tmp中不安全建立临时文件,本地攻击者可以利用漏洞通过符号链接覆盖系统中任意文件。 Kitware GCC-XML 0.9 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=496391...
CVE-2008-4957
findflags in Kitware GCC-XML gccxml 0.9.0 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.cxx temporary file...
CVE-2008-4957
findflags in Kitware GCC-XML gccxml 0.9.0 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.cxx temporary file...
Arbitrary file deletion
findflags in Kitware GCC-XML gccxml 0.9.0 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.cxx temporary file...
CVE-2008-4957
CVE-2008-4957 affects Kitware GCC-XML (gccxml) 0.9.0. The vulnerability arises from insecure temporary file handling in the find_flags routine, which creates/opens a file under /tmp/*.cxx in a way that allows a local attacker to exploit a symlink and overwrite arbitrary files. Impact: potential c...
CVE-2008-4957
findflags in Kitware GCC-XML gccxml 0.9.0 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/.cxx temporary file...