Lucene search
K

29 matches found

Vulnrichment
Vulnrichment
added 2026/02/18 7:39 p.m.8 views

CVE-2026-0875 MODEL File Parsing Out-of-Bounds Write

A maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

7.8CVSS6.1AI score0.00215EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2026/02/18 12:0 a.m.7 views

Autodesk AutoCAD MODEL File Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS6.2AI score0.00215EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/18 12:0 a.m.9 views

Autodesk Shared Components 缓冲区错误漏洞

Autodesk Shared Components is a component provided by Autodesk, Inc. in the United States. Autodesk Shared Components has a buffer error vulnerability. This vulnerability arises from the possibility of out-of-bounds write attacks during the parsing of specially crafted MODEL files, which can lead...

7.8CVSS7.6AI score0.00215EPSS
Exploits0References2
NVD
NVD
added 2025/12/23 9:15 p.m.4 views

CVE-2025-14921

Hugging Face Transformers Transformer-XL Model Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this...

7.8CVSS0.00262EPSS
Exploits0References1
OSV
OSV
added 2025/12/23 9:15 p.m.5 views

CVE-2025-14921

Hugging Face Transformers Transformer-XL Model Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this...

7.8CVSS6.5AI score
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/23 9:4 p.m.5 views

CVE-2025-14921 Hugging Face Transformers Transformer-XL Model Deserialization of Untrusted Data Remote Code Execution Vulnerability

Hugging Face Transformers Transformer-XL Model Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hugging Face Transformers. User interaction is required to exploit this...

7.8CVSS7.3AI score0.00262EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/23 12:0 a.m.4 views

Hugging Face Transformers 代码问题漏洞

Hugging Face Transformers is a Hugging Face open source framework for defining state-of-the-art machine learning models covering textual, visual, audio, and multimodal models for inference and training. A code issue vulnerability exists in Hugging Face Transformers that stems from a lack of...

7.8CVSS8AI score0.00262EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/12/17 12:0 a.m.4 views

Autodesk AutoCAD MODEL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS7.1AI score0.0021EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/12/17 12:0 a.m.6 views

Autodesk AutoCAD MODEL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS7.1AI score0.0021EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/12/17 12:0 a.m.6 views

Autodesk AutoCAD MODEL File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS7.1AI score0.00226EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/12/17 12:0 a.m.4 views

Autodesk AutoCAD MODEL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS7.1AI score0.0021EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/12/17 12:0 a.m.3 views

Autodesk AutoCAD MODEL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS7.1AI score0.0021EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/16 12:0 a.m.4 views

Autodesk Shared Components 安全漏洞

Autodesk Shared Components is a component of Autodesk USA. A security vulnerability exists in Autodesk Shared Components that originates from an out-of-bounds write when parsing a specially crafted MODEL file, which could result in a crash, data corruption, or execution of arbitrary code in the...

7.8CVSS7.4AI score0.0021EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/12/16 12:0 a.m.5 views

Autodesk Shared Components 安全漏洞

Autodesk Shared Components is a component of Autodesk USA. A security vulnerability exists in Autodesk Shared Components that originates from an out-of-bounds write when parsing a specially crafted MODEL file, which could result in a crash, data corruption, or execution of arbitrary code in the...

7.8CVSS7.4AI score0.0021EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/12/15 11:45 p.m.3 views

CVE-2025-10899 MODEL File Parsing Out-of-Bounds Write Vulnerability

AA maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

7.8CVSS7.3AI score0.0021EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/15 11:44 p.m.24 views

CVE-2025-10898 MODEL File Parsing Out-of-Bounds Write Vulnerability

AA maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

7.8CVSS0.0021EPSS
Exploits0References2
CVE
CVE
added 2025/12/15 11:43 p.m.25 views

CVE-2025-10888

CVE-2025-10888 is an Autodesk issue where parsing a malicious MODEL file in Autodesk AutoCAD (and related products) can trigger an out-of-bounds write, potentially crashing the process, corrupting data, or allowing code execution. The CVE details show a local attack vector with user interaction r...

7.8CVSS7.3AI score0.0021EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2025/12/15 11:42 p.m.18 views

CVE-2025-10887

CVE-2025-10887 is part of Autodesk Shared Components multi-vulnerability issue. Multiple connected sources describe that parsing a specially crafted MODEL file can trigger memory corruption in Autodesk products, allowing arbitrary code execution in the attacker’s context. Nessus details indicate ...

7.8CVSS7.5AI score0.00131EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/12/15 11:42 p.m.4 views

CVE-2025-10886 MODEL File Parsing Memory Corruption Vulnerability

A maliciously crafted MODEL file, when parsed through certain Autodesk products, can force a Memory corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process...

7.8CVSS7.5AI score0.00226EPSS
Exploits0References2
Veracode
Veracode
added 2025/05/23 4:47 a.m.16 views

Deserialization Of Untrusted Data

transformers is vulnerable to Deserialization Of Untrusted Data. The vulnerability is due to improper validation of user-supplied data during the parsing of model files, which allows deserialization of untrusted data...

8.8CVSS6.6AI score0.02894EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder