4292 matches found
PT-2024-25347 · Lenovo · Lenovo Baiying
Name of the Vulnerable Software and Affected Versions: Lenovo Baiying affected versions not specified Description: A DLL hijack issue was reported that could allow a local attacker to execute code with elevated privileges. The issue affects Lenovo products and has a high severity level...
OESA-2024-2194 assimp security update
Assimp is a library to load and process geometric scenes from various data formats. Assimp aims to provide a full asset conversion pipeline for use in game engines and real-time rendering systems of any kind, but is not limited to this purpose. Security Fixes: Heap-based buffer overflow...
OESA-2024-2195 assimp security update
Assimp is a library to load and process geometric scenes from various data formats. Assimp aims to provide a full asset conversion pipeline for use in game engines and real-time rendering systems of any kind, but is not limited to this purpose. Security Fixes: Heap-based buffer overflow...
OESA-2024-2197 assimp security update
Assimp is a library to load and process geometric scenes from various data formats. Assimp aims to provide a full asset conversion pipeline for use in game engines and real-time rendering systems of any kind, but is not limited to this purpose. Security Fixes: Heap-based buffer overflow...
CVE-2022-49038
Inclusion of functionality from untrusted control sphere vulnerability in OpenSSL DLL component in Synology Drive Client before 3.3.0-15082 allows local users to execute arbitrary code via unspecified vectors...
SUSE CVE-2024-45679
Heap-based buffer overflow vulnerability in Assimp versions prior to 5.4.3 allows a local attacker to execute arbitrary code by importing a specially crafted file into the product...
UBUNTU-CVE-2024-45679
Heap-based buffer overflow vulnerability in Assimp versions prior to 5.4.3 allows a local attacker to execute arbitrary code by importing a specially crafted file into the product...
assimp 安全漏洞
assimp is an assimp open source library. It is used to import and export various 3D model formats. A security vulnerability exists in versions prior to assimp 5.4.3 that stems from the presence of a heap-based buffer overflow vulnerability that allows a local attacker to execute arbitrary code by...
Exploit for Code Injection in Mjml Mjml_App
MJML Local Code Execution PoC A Proof-Of-Concept for CVE-2024...
Exploit for Cross-site Scripting in Goanother Another_Redis_Desktop_Manager
Another Redis Desktop Manager PoC A Proof-Of-Concept for CVE-2...
CVE-2024-34660
Heap-based out-of-bounds write in Samsung Notes prior to version 4.4.21.62 allows local attackers to execute arbitrary code...
CVE-2024-39816
in OpenHarmony v4.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write...
CVE-2024-38386
in OpenHarmony v4.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write...
PT-2024-28681 · Unknown · Openharmony
Name of the Vulnerable Software and Affected Versions: OpenHarmony versions 4.1.0 and prior Description: The issue allows a local attacker to execute arbitrary code in pre-installed apps through an out-of-bounds write. This poses a security risk to affected systems. Recommendations: For OpenHarmo...
DEBIAN-CVE-2024-42851
Buffer Overflow vulnerability in open source exiftags v.1.01 allows a local attacker to execute arbitrary code via the paresetag function...
PT-2024-30184 · Exiftags +1 · Exiftags +1
Name of the Vulnerable Software and Affected Versions: exiftags version 1.01 Description: A Buffer Overflow vulnerability in exiftags allows a local attacker to execute arbitrary code via the paresetag function. This issue enables local code execution. Recommendations: For exiftags version 1.01, ...
CVE-2024-43791
RequestStore provides per-request global storage for Rack. The files published as part of requeststore 1.3.2 have 0666 permissions, meaning that they are world-writable, which allows local users to execute arbitrary code. This version was published in 2017, and most production environments do not...
UBUNTU-CVE-2024-43791
RequestStore provides per-request global storage for Rack. The files published as part of requeststore 1.3.2 have 0666 permissions, meaning that they are world-writable, which allows local users to execute arbitrary code. This version was published in 2017, and most production environments do not...
CVE-2024-43791
RequestStore provides per-request global storage for Rack. The files published as part of requeststore 1.3.2 have 0666 permissions, meaning that they are world-writable, which allows local users to execute arbitrary code. This version was published in 2017, and most production environments do not...
CVE-2024-42679
SQL Injection vulnerability in Super easy enterprise management system v.1.0.0 and before allows a local attacker to execute arbitrary code via a crafted script to the/ajax/Login.ashx component...