PT-2024-4523

Name of the Vulnerable Software and Affected Versions: FFmpeg version N113007-g8d24a28d06 Description: The issue is related to incorrect code generation management in the showwaves filter frame component of the FFmpeg multimedia library. Exploitation of this issue may allow an attacker to execute...

PT-2024-6572

Name of the Vulnerable Software and Affected Versions: Ffmpeg version N113007-g8d24a28d06 Description: The issue is related to a buffer overflow in the libavcodec/jpegxl parser.c file, specifically in the gen alias map function. This can allow a local attacker to execute arbitrary code, potential...

PT-2024-4529

Name of the Vulnerable Software and Affected Versions: Ffmpeg version N113007-g8d24a28d06 Description: The issue is related to a Buffer Overflow vulnerability in the libavfilter/avf showspectrum.c component, specifically in the showspectrumpic request frame function. This vulnerability allows a...

CVE-2023-49501

Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local attacker to execute arbitrary code via the configeqoutput function in the libavfilter/asrcafirsrc.c:495:30 component...

CVE-2023-49502

Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local attacker to execute arbitrary code via the ffbwdiffilterintrac function in the libavfilter/bwdifdsp.c:125:5 component...

Check Point ZoneAlarm 安全漏洞

Check Point ZoneAlarm is a network firewall program from Check Point Israel. A security vulnerability exists in Check Point ZoneAlarm Extreme Security and Identity Agent for Windows that originates from a vulnerability that allows a local attacker to execute code in the context of the ZoneAlarm...

SUSE CVE-2023-49528

Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, allows a local attacker to execute arbitrary code and cause a denial of service DoS via the afdialoguenhance.c:261:5 in the destereo component...

CVE-2024-25545

An issue in Weave Weave Desktop v.7.78.10 allows a local attacker to execute arbitrary code via a crafted script to the nwjs framework component...

UBUNTU-CVE-2023-49528

Buffer Overflow vulnerability in FFmpeg version n6.1-3-g466799d4f5, allows a local attacker to execute arbitrary code and cause a denial of service DoS via the afdialoguenhance.c:261:5 in the destereo component...

PT-2024-20997 · Weave · Weave Desktop

Name of the Vulnerable Software and Affected Versions: Weave Weave Desktop version 7.78.10 Description: An issue in Weave Weave Desktop allows a local attacker to execute arbitrary code via a crafted script to the nwjs framework component. Recommendations: For Weave Weave Desktop version 7.78.10,...

Thesycon Software Solutions TUSBAudio 安全漏洞

Thesycon Software Solutions TUSBAudio is a device driver from Thesycon Software Solutions. A security vulnerability exists in Thesycon Software Solutions TUSBAudio versions prior to 5.68.0. A local attacker can exploit this vulnerability to execute arbitrary code via msiexec.exe repair mode...

FortiClientMac 安全漏洞

Fortinet FortiClientMAC is a security tool for the macOS platform from Fortinet, Inc. A security vulnerability exists in FortiClientMac versions 7.2.3 and earlier, 7.0.10 and earlier, which stems from a vulnerability that could allow a local attacker to execute arbitrary code or commands by writi...

Vulnerabilities fixed in Microsoft Windows

Microsoft has fixed vulnerabilities in Windows. A malicious party can exploit the vulnerabilities to launch attacks execute attacks that can lead to the following categories of damage: Denial-of-Service DoS. Circumvention of security measure Remote code execution User rights Spoofing Accessing...

PT-2024-3562 · Fortinet · Fortios

Name of the Vulnerable Software and Affected Versions: FortiOS versions 7.4.1 and below FortiOS versions 7.2.7 and below FortiOS versions 7.0.14 and below FortiOS versions 6.4.15 and below Description: A use of externally-controlled format string vulnerability in FortiOS command line interface ma...

CVE-2024-26574

Insecure Permissions vulnerability in Wondershare Filmora v.13.0.51 allows a local attacker to execute arbitrary code via a crafted script to the WSNativePushService.exe...

PT-2024-21426 · Wondershare · Wondershare Filmora

Name of the Vulnerable Software and Affected Versions: Wondershare Filmora version 13.0.51 Description: The issue allows a local attacker to execute arbitrary code via a crafted script to the WSNativePushService.exe. This can be exploited by a local attacker. Recommendations: For Wondershare...

Wondershare Filmora 安全漏洞

Wondershare Filmora is a frequency editor from Wondershare. A security vulnerability exists in Wondershare Filmora version v.13.0.51, which stems from the presence of an insecure privilege vulnerability that allows a local attacker to execute arbitrary code via a crafted WSNativePushService.exe...

PT-2024-22489 · Axigen · Axigen Mail Server

Name of the Vulnerable Software and Affected Versions: Axigen Mail Server for Windows versions 10.5.18 and before Description: An issue was discovered in Axigen Mail Server for Windows, allowing local low-privileged attackers to execute arbitrary code and escalate privileges via insecure DLL...

CVE-2024-29074

in OpenHarmony v3.2.4 and prior versions allow a local attacker arbitrary code execution in any apps through improper input...

CVE-2024-24581

in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution through out-of-bounds write...