Lucene search
K

39 matches found

BDU FSTEC
BDU FSTEC
added 2023/02/08 12:0 a.m.4 views

The vulnerability of the Adobe Digital Editions e-book reading program, related to the execution of operations beyond the buffer in memory, allows a hacker to execute arbitrary code.

The vulnerability of the Adobe Digital Editions e-book reading program relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code using a specially created malware file...

10CVSS8.6AI score0.08299EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/01/20 12:0 a.m.6 views

The vulnerability of Schneider Electric’s programmable logic controllers’ microprogramming software lies in the insufficient testing of unusual or exceptional states. This allows a intruder to execute arbitrary code or cause malfunctions during maintenance.

The vulnerability of microprogrammed programmable logic controllers from Schneider Electric relates to insufficient testing of exceptional states. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code or cause malfunctions by using a specially created malware file...

7.6CVSS8.5AI score0.01163EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/01/18 12:0 a.m.4 views

The vulnerability of the C-Bus Toolkit software lies in the improper limitation of the path name to the restricted access directory, allowing a perpetrator to execute arbitrary code.

The vulnerability of the C-Bus Toolkit software is related to an incorrect limitation on the path name to the restricted-access directory. Exploiting this vulnerability could allow a attacker to execute arbitrary code using a specially created malware file or a specially created malicious web pag...

7.8CVSS7.7AI score0.27172EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/01/13 12:0 a.m.5 views

The vulnerability of the C-Bus Toolkit software lies in the improper assignment of permissions to critical resources, allowing attackers to increase their privileges or execute arbitrary code.

The vulnerability of the C-Bus Toolkit software is related to the improper assignment of permissions for a critical resource. Exploiting this vulnerability can allow an attacker to enhance their privileges or execute arbitrary code using a specially created malicious file...

7.8CVSS7.6AI score0.00765EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/11/03 12:0 a.m.7 views

The vulnerability in the interface for accessing the chrome.mediaGalleries media gallery in Google Chrome and Microsoft Edge browsers allows a attacker to cause a service failure.

The vulnerability of the interface for accessing the chrome.mediaGalleries media gallery in Google Chrome and Microsoft Edge browsers is related to buffer overflow in dynamic memory. Exploiting this vulnerability can allow a malicious actor to cause service interruptions through a specially creat...

7.5CVSS7.9AI score0.00383EPSS
Exploits0References10Affected Software4
BDU FSTEC
BDU FSTEC
added 2022/08/29 12:0 a.m.5 views

The vulnerability of the PDF-XChange PDF document viewing and editing program, related to the occurrence of operations outside the buffer during AcroForm processing, allows an attacker to execute arbitrary code.

The vulnerability of the PDF document viewing and editing software PDF-XChange is related to the execution of operations outside the buffer during the processing of AcroForms. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created malware file...

10CVSS8.1AI score0.0077EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/29 12:0 a.m.8 views

The vulnerability of the submitForm method in the PDF document viewing and editing program PDF-XChange allows a perpetrator to execute arbitrary code.

The vulnerability of the submitForm method in the PDF document viewing and editing software PDF-XChange arises from the execution of operations outside the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created malware file...

10CVSS8AI score0.0077EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/29 12:0 a.m.11 views

The vulnerability of the PDF-XChange PDF document viewing and editing program lies in the fact that operations outside the buffer are allowed in memory when processing Collab objects, allowing an attacker to execute arbitrary code.

The vulnerability of the PDF document viewing and editing software PDF-XChange lies in the fact that operations may go beyond the buffer in memory when processing Collab objects. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially created malware fil...

10CVSS7.9AI score0.0077EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/08/04 12:0 a.m.5 views

The vulnerability of the Add Photo and Import Staff functions in the school management web system School ERP Pro allows a perpetrator to execute arbitrary codes.

The vulnerability of the Add Photo and Import Staff functions in the school management web system School ERP Pro relates to the unlimited loading of dangerous files. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code by loading a specially created malware file...

10CVSS8AI score0.01994EPSS
Exploits1References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/07/06 12:0 a.m.7 views

The vulnerability of the thread_call() function in the Squirrel programming language allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the threadcall function in the Squirrel programming language is related to the execution of operations outside of memory buffers. Exploiting this vulnerability can allow a remote attacker to cause service failures or execute arbitrary code using a specially created malware fi...

10CVSS8.4AI score0.01142EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2022/04/13 12:0 a.m.6 views

The vulnerability of Adobe InDesign’s computer layout automation tool, related to writing beyond the buffer in memory, allows a hacker to execute arbitrary code.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to writing beyond buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user, using a specially created malware file...

9.3CVSS8AI score0.05751EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/12/20 12:0 a.m.8 views

The vulnerability of the malware scanning service of the Linux web server security platform Imunify360 allows a hacker to execute arbitrary commands.

The vulnerability of the Ai-Boilt malware scanning service for Linux web servers running Imunify360 is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands using a specially created malware file...

8.2CVSS7.7AI score0.01304EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/12/03 12:0 a.m.4 views

The vulnerability of the V-Simulator software module for monitoring the status of Fuji Electric’s V-Server Lite and Tellus Lite V-Simulator lies in the reading beyond the buffer boundaries in memory. This allows a perpetrator to execute arbitrary code.

The vulnerability of the V-Simulator software module for monitoring the status of Fuji Electric’s V-Server Lite and Tellus Lite V-Simulator lies in the reading of data beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a...

10CVSS7.9AI score0.00756EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/06/23 12:0 a.m.6 views

The vulnerability of the application for 3D modeling and Paint 3D printing relates to the execution of operations beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the application for 3D modeling and Paint 3D printing is related to the execution of operations beyond the buffer in memory during the syntactic analysis of GLB and STL files. Exploiting this vulnerability allows a attacker to execute arbitrary code using a specially created...

6.6CVSS7.6AI score0.02938EPSS
Exploits0References8
CNVD
CNVD
added 2020/03/24 12:0 a.m.2 views

Schneider Electric ZigBee Installation Toolkit Code Issue Vulnerability

Schneider Electric ZigBee Installation Toolkit is an installation toolkit software for the ZigBee wireless network protocol from Schneider Electric France. A code issue vulnerability exists in versions of Schneider Electric ZigBee Installation Toolkit prior to 1.0.1. The vulnerability can be...

7.8CVSS7.3AI score0.00419EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2019/07/04 12:0 a.m.5 views

The vulnerability of the configuration import utility for the Cisco Integrated Management Controller allows a perpetrator to gain write access and load any data into the file system.

The vulnerability of the configuration import utility for the Cisco Integrated Management Controller remote management software lies in the lack of authentication for a critical function. Exploiting this vulnerability allows a malicious actor to gain write access and load any data into the file...

5.3CVSS5.6AI score0.01516EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2018/08/17 12:0 a.m.4 views

The vulnerability of microprogrammed software in HP PageWide, DesignJet, AMP, Deskjet, Envy, Ink Tank, Officejet, Photosmart, and Smart Tank printers arises from an operation that goes beyond buffer boundaries in memory, allowing attackers to execute arbitrary code.

The vulnerability of microprogrammed software on HP PageWide, DesignJet, AMP, Deskjet, Envy, Ink Tank, Officejet, Photosmart, and Smart Tank devices arises from operations that go beyond buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code ...

10CVSS6.3AI score0.12227EPSS
Exploits0References2Affected Software146
BDU FSTEC
BDU FSTEC
added 2018/08/17 12:0 a.m.5 views

The vulnerability of microprogrammed software in HP PageWide, DesignJet, AMP, Deskjet, Envy, Ink Tank, Officejet, Photosmart, and Smart Tank printers arises from an operation that goes beyond buffer boundaries in memory, allowing attackers to execute arbitrary code.

The vulnerability of microprogrammed software on HP PageWide, DesignJet, AMP, Deskjet, Envy, Ink Tank, Officejet, Photosmart, and Smart Tank devices arises from operations that go beyond buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code ...

10CVSS6.3AI score0.10886EPSS
Exploits1References2Affected Software146
securityvulns
securityvulns
added 2002/03/20 12:0 a.m.19 views

Code execution in Macromedia Shockwave Flash

"Save" command may be used to place malware file anywhere on user's computer including Startup folder...

2.7AI score
Exploits0References1
Rows per page
Query Builder