4292 matches found
CVE-2025-2286 Local Code Execution Vulnerability in Arena®
A local code execution vulnerability exists in the Rockwell Automation Arena® due to an uninitialized pointer. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitrary code on the system. To exploit the...
CVE-2025-2286
CVE-2025-2286 : Local code execution in Rockwell Automation Arena due to an uninitialized pointer from improper validation of user-supplied data. A legitimate user must open a malicious DOE file to exploit, enabling information disclosure and arbitrary code execution on the system. Reported remed...
CVE-2025-2285 Local Code Execution Vulnerability in Arena®
A local code execution vulnerability exists in the Rockwell Automation Arena® due to an uninitialized pointer. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitrary code on the system. To exploit the...
CVE-2025-2285 Local Code Execution Vulnerability in Arena®
A local code execution vulnerability exists in the Rockwell Automation Arena® due to an uninitialized pointer. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitrary code on the system. To exploit the...
CVE-2025-2285
Rockwell Automation Arena is affected by a local code execution vulnerability (CVE-2025-2285) due to an uninitialized pointer from improper validation of user-supplied data. Exploitation requires a legitimate user to open a malicious DOE file, enabling information disclosure and arbitrary code ex...
Windows Media Remote Code Execution Vulnerability
Heap-based buffer overflow in Windows Media allows an authorized attacker to execute code locally...
Rockwell Automation Arena 缓冲区错误漏洞
Rockwell Automation Arena is a discrete-event simulation and automation software from Rockwell Automation USA. A local code execution vulnerability exists in Rockwell Automation Arena due to improper validation of user-supplied data. An attacker could exploit the vulnerability to disclose...
Rockwell Automation Arena 缓冲区错误漏洞
Rockwell Automation Arena is a discrete-event simulation and automation software from Rockwell Automation USA. A local code execution vulnerability exists in Rockwell Automation Arena due to improper validation of user-supplied data. An attacker could exploit the vulnerability to disclose...
Rockwell Automation Arena 缓冲区错误漏洞
Rockwell Automation Arena is a discrete-event simulation and automation software from Rockwell Automation USA. A local code execution vulnerability exists in Rockwell Automation Arena due to improper validation of user-supplied data. An attacker could exploit the vulnerability to disclose...
Rockwell Automation Arena 安全漏洞
Rockwell Automation Arena is a discrete-event simulation and automation software from Rockwell Automation USA. A local code execution vulnerability exists in Rockwell Automation Arena due to improper validation of user-supplied data. An attacker could exploit the vulnerability to disclose...
Rockwell Automation Arena 安全漏洞
Rockwell Automation Arena is a discrete-event simulation and automation software from Rockwell Automation USA. A local code execution vulnerability exists in Rockwell Automation Arena due to improper validation of user-supplied data. An attacker could exploit the vulnerability to disclose...
PT-2025-15575 · Microsoft · Office Excel +1
Name of the Vulnerable Software and Affected Versions: Microsoft Office Excel affected versions not specified Description: The issue is related to a heap-based buffer overflow in Microsoft Office Excel, allowing an unauthorized attacker to execute code locally. This can enable remote attackers to...
PT-2025-15595 · Microsoft · Office Excel
Name of the Vulnerable Software and Affected Versions: Microsoft Office Excel affected versions not specified Description: The issue is related to a use after free condition in Microsoft Office Excel, which allows an unauthorized attacker to execute code locally. This could potentially lead to...
Rockwell Automation Arena 安全漏洞
Rockwell Automation Arena is a discrete-event simulation and automation software from Rockwell Automation USA. A local code execution vulnerability exists in Rockwell Automation Arena due to improper validation of user-supplied data. An attacker could exploit the vulnerability to disclose...
PT-2025-15553 · Microsoft · Windows Shell +1
Name of the Vulnerable Software and Affected Versions: Windows Shell affected versions not specified Description: The issue is related to a use after free condition in the Windows Shell, which allows an unauthorized attacker to execute code locally. Recommendations: At the moment, there is no...
AZL-59719 CVE-2025-29481 affecting package libbpf for versions less than 1.0.1-2
Buffer Overflow vulnerability in libbpf 1.5.0 allows a local attacker to execute arbitrary code via the bpfobjectinitprog function of libbpf. This has been disputed by third parties who assert that "no one in their sane mind should be passing untrusted ELF files into libbpf while running under...
AZL-59737 CVE-2025-29481 affecting package dwarves for versions less than 1.25-2
Buffer Overflow vulnerability in libbpf 1.5.0 allows a local attacker to execute arbitrary code via the bpfobjectinitprog function of libbpf. This has been disputed by third parties who assert that "no one in their sane mind should be passing untrusted ELF files into libbpf while running under...
DEBIAN-CVE-2025-29481
Buffer Overflow vulnerability in libbpf 1.5.0 allows a local attacker to execute arbitrary code via the bpfobjectinitprog function of libbpf. This has been disputed by third parties who assert that "no one in their sane mind should be passing untrusted ELF files into libbpf while running under...
AZL-59727 CVE-2025-29481 affecting package libbpf for versions less than 1.2.2-2
Buffer Overflow vulnerability in libbpf 1.5.0 allows a local attacker to execute arbitrary code via the bpfobjectinitprog function of libbpf. This has been disputed by third parties who assert that "no one in their sane mind should be passing untrusted ELF files into libbpf while running under...
CVE-2025-29482
Buffer Overflow vulnerability in libheif 1.19.7 allows a local attacker to execute arbitrary code via the SAO Sample Adaptive Offset processing of libde265...