PT-2024-33522 · Unknown · Libswmfextractor.So

Name of the Vulnerable Software and Affected Versions: libswmfextractor.so versions prior to SMR Dec-2024 Release 1 Description: The issue is an out-of-bounds write in libswmfextractor.so, allowing local attackers to execute arbitrary code. This enables attackers to potentially gain control over...

CVE-2024-29404

An issue in Razer Synapse 3 v.3.9.131.20813 and Synapse 3 App v.20240213 allows a local attacker to execute arbitrary code via the export parameter of the Chroma Effects function in the Profiles component...

CVE-2024-11495

Buffer overflow vulnerability in OllyDbg, version 1.10, which could allow a local attacker to execute arbitrary code due to lack of proper bounds checking...

needrestart 权限许可和访问控制问题漏洞

needrestart is a tool by liske personal developer for checking which daemons need to be restarted after an upgrade. A security vulnerability exists in versions prior to needrestart 3.8, which stems from a vulnerability that allows a local attacker to run the Python interpreter by tricking...

PT-2024-34415 · Micro Star International · Msi Center Pro

Name of the Vulnerable Software and Affected Versions: Micro-star International MSI Center Pro version 2.1.37.0 Description: The issue allows a local attacker to execute arbitrary code via the Device DeviceID.dat.bak file within the C:ProgramDataMSIOne Dragon CenterData folder. This is due to an...

UBUNTU-CVE-2024-50986

An issue in Clementine v.1.3.1 allows a local attacker to execute arbitrary code via a crafted DLL file...

PT-2024-34600 · Ultimaker · Ultimaker Cura

Name of the Vulnerable Software and Affected Versions: UltiMaker Cura versions 4.41 and 5.8.1 and earlier Description: The issue allows a local attacker to execute arbitrary code via the Inter-process communication IPC mechanism between the Cura application and CuraEngine processes, localhost...

PT-2024-11915 · Undefined · Undefined

CVE-2024-50986 CVE-20224-50986 DLL Hijacking Exploit for Clementine Description: An issue in Clementine v.1.3.1 allows a local attacker to execute arbitrary code via a crafted DLL file. Version Affected: Clementi... https://t.co/QByf3fJ8GI...

CVE-2024-50322

Path traversal in Ivanti Endpoint Manager before 2024 November Security Update or 2022 SU6 November Security Update allows a local unauthenticated attacker to achieve code execution. User interaction is required...

OESA-2024-2326 vorbis-tools security update

Ogg Vorbis is a fully open, non-proprietary, patent-and-royalty-free, general-purpose compressed audio format for mid to high quality 8kHz-48.0kHz, 16+ bit, polyphonic audio and music at fixed and variable bitrates from 16 to 128 kbps/channel. This places Vorbis in the same competitive class as...

CVE-2024-48807

Cross Site Scripting vulnerability in PHPGurukul Doctor Appointment Management System v.1.0 allows a local attacker to execute arbitrary code via the search parameter...

SUSE CVE-2024-48423

An issue in assimp v.5.4.3 allows a local attacker to execute arbitrary code via the CallbackToLogRedirector function within the Assimp library...

DEBIAN-CVE-2024-48423

An issue in assimp v.5.4.3 allows a local attacker to execute arbitrary code via the CallbackToLogRedirector function within the Assimp library...

PYSEC-2024-120

An issue in assimp v.5.4.3 allows a local attacker to execute arbitrary code via the CallbackToLogRedirector function within the Assimp library...

PT-2024-33103 · Assimp +2 · Assimp +2

Name of the Vulnerable Software and Affected Versions: assimp version 5.4.3 Description: An issue in the Assimp library allows a local attacker to execute arbitrary code via the CallbackToLogRedirector function. This enables the attacker to potentially gain control over the system. Recommendation...

Adobe Illustrator < 24.0 Multiple Vulnerabilities (APSB19-36)

The version of Adobe Illustrator installed on the remote Windows host is prior to 24.0. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB19-36 advisory. - Adobe Illustrator CC versions 23.1 and earlier have a memory corruption vulnerability. Successful exploitation...

Adobe Illustrator < 24.0 Multiple Vulnerabilities (APSB19-36) (macOS)

The version of Adobe Illustrator installed on the remote macOS host is prior to 24.0. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB19-36 advisory. - Adobe Illustrator CC versions 23.1 and earlier have a memory corruption vulnerability. Successful exploitation...

CVE-2024-29821

CVE-2024-29821 affects Ivanti Desktop and Server Management (DSM) prior to 2024.2. The vulnerability allows authenticated local users to execute code with elevated privileges due to insecure ACLs, via an unspecified attack vector. Public sources confirm impact is a local privilege escalation with...

CVE-2024-29213

Ivanti DSM version 2024.2 allows authenticated users on the local machine to run code with elevated privileges due to insecure ACL via unspecified attack vector...

CVE-2024-4131

A DLL hijack vulnerability was reported in Lenovo Emulator that could allow a local attacker to execute code with elevated privileges...