CVE-2023-43339

Cross-Site Scripting XSS vulnerability in cmsmadesimple v.2.2.18 allows a local attacker to execute arbitrary code via a crafted payload injected into the Database Name, DataBase User or Database Port components...

CMS Made Simple Cross-Site Scripting Vulnerability

CMS Made Simple CMSMS is an open source content management system CMS by Cmsms team. The system supports role-based privilege management system, wizard-based installation and update mechanism, intelligent caching mechanism and so on. A security vulnerability exists in CMS Made Simple version...

CVE-2023-32184

A Insecure Storage of Sensitive Information vulnerability in openSUSE opensuse-welcome allows local attackers to execute code as the user that runs opensuse-welcome if a custom layout is chosen This issue affects opensuse-welcome: from 0.1 before 0.1.9+git.35.4b9444a...

DEBIAN-CVE-2023-36250

CSV Injection vulnerability in GNOME time tracker version 3.0.2, allows local attackers to execute arbitrary code via crafted .tsv file when creating a new record...

UBUNTU-CVE-2023-36250

CSV Injection vulnerability in GNOME time tracker version 3.0.2, allows local attackers to execute arbitrary code via crafted .tsv file when creating a new record...

CVE-2023-39063

Buffer Overflow vulnerability in RaidenFTPD 2.4.4005 allows a local attacker to execute arbitrary code via the Server name field of the Step by step setup wizard...

CVE-2023-39070

An issue in Cppcheck 2.12 dev allows a local attacker to execute arbitrary code via the removeContradiction parameter in token.cpp:1934...

CVE-2023-39063

Buffer Overflow vulnerability in RaidenFTPD 2.4.4005 allows a local attacker to execute arbitrary code via the Server name field of the Step by step setup wizard...

DEBIAN-CVE-2023-39070

An issue in Cppcheck 2.12 dev allows a local attacker to execute arbitrary code via the removeContradiction parameter in token.cpp:1934...

AZL-43537 CVE-2023-39070 affecting package cppcheck 2.7-2

An issue in Cppcheck 2.12 dev allows a local attacker to execute arbitrary code via the removeContradiction parameter in token.cpp:1934...

UBUNTU-CVE-2023-39070

An issue in Cppcheck 2.12 dev allows a local attacker to execute arbitrary code via the removeContradiction parameter in token.cpp:1934...

CVE-2023-30722

Protection Mechanism Failure in bctui trustlet from Samsung Blockchain Keystore prior to version 1.3.13.5 allows local attacker to execute arbitrary code...

PT-2023-25437 · Unknown · Hex-Dragon Plain Craft Launcher 2

Name of the Vulnerable Software and Affected Versions: Hex-Dragon Plain Craft Launcher 2 version Alpha 1.3.9 Description: The issue allows local attackers to execute arbitrary code and gain sensitive information due to a Directory Traversal vulnerability. Recommendations: For Hex-Dragon Plain Cra...

PT-2023-22924 · Samsung · Samsung Blockchain Keystore

Name of the Vulnerable Software and Affected Versions: Samsung Blockchain Keystore versions prior to 1.3.13.5 Description: The issue is related to a Protection Mechanism Failure in the bc tui trustlet, allowing a local attacker to execute arbitrary code. Recommendations: For versions prior to...

DEBIAN-CVE-2020-24165

An issue was discovered in TCG Accelerator in QEMU 4.2.0, allows local attackers to execute arbitrary code, escalate privileges, and cause a denial of service DoS. Note: This is disputed as a bug and not a valid security issue by multiple third parties...

PT-2023-4687 · Qemu +2 · Qemu +2

Name of the Vulnerable Software and Affected Versions: QEMU version 4.2.0 Description: An issue was discovered in the TCG Accelerator component of QEMU, related to the use of memory after it has been freed. This issue allows local attackers to execute arbitrary code, escalate privileges, and caus...

QEMU 安全漏洞

QEMU Quick Emulator is a set of simulation processor software by Fabrice Bellard, a French individual developer. The software is fast and cross-platform. A security vulnerability exists in QEMU version 4.2.0, which stems from a problem with the TCG gas pedal and allows a local attacker to execute...

CVE-2023-39985

UNSUPPORTED WHEN ASSIGNED Out-of-bounds Write vulnerability in Hitachi EH-VIEW Designer allows local attackers to potentially execute arbitray code on affected EH-VIEW installations. User interaction is required to exploit the vulnerabilities in that the user must open a malicious file. NOTE: Thi...

PT-2023-25072 · Hitachi · Hitachi Eh-View

Name of the Vulnerable Software and Affected Versions: Hitachi EH-VIEW KeypadDesigner affected versions not specified Description: The issue is an Out-of-bounds Write vulnerability that allows local attackers to potentially execute arbitrary code on affected installations. User interaction is...

PT-2023-27191 · Hitachi · Hitachi Eh-View

Name of the Vulnerable Software and Affected Versions: Hitachi EH-VIEW Designer affected versions not specified Description: An Out-of-bounds Write vulnerability in Hitachi EH-VIEW Designer allows local attackers to potentially execute arbitrary code on affected installations. User interaction is...