Lucene search
K

493 matches found

Positive Technologies
Positive Technologies
added 2024/12/10 12:0 a.m.3 views

PT-2024-9950 · Adobe · Substance3D - Modeler

Name of the Vulnerable Software and Affected Versions: Substance3D - Modeler versions 1.14.1 and earlier Description: The issue is related to an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations...

5.5CVSS7.4AI score0.00434EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/12/10 12:0 a.m.3 views

Adobe Substance 3D Modeler 缓冲区错误漏洞

Adobe Substance 3D Modeler is a powerful 3D modeling and sculpting software from the American company Audobee Adobe. An out-of-bounds read vulnerability exists in Adobe Substance 3D Modeler, which can be exploited by an attacker to cause a sensitive memory leak...

5.5CVSS6.5AI score0.00407EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/10 12:0 a.m.3 views

PT-2024-9853 · Adobe · Substance3D - Modeler

Name of the Vulnerable Software and Affected Versions: Substance3D - Modeler versions 1.14.1 and earlier Description: The issue is related to an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations...

5.5CVSS7.3AI score0.00407EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/12/10 12:0 a.m.2 views

Adobe Substance 3D Modeler 代码问题漏洞

Adobe Substance 3D Modeler is a 3D modeling and sculpting software from the American company Audobee Adobe. Adobe Substance 3D Modeler suffers from a null pointer dereference vulnerability that can be exploited by an attacker to cause a denial of service...

5.5CVSS6.6AI score0.00388EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/10 12:0 a.m.3 views

PT-2024-9947 · Adobe · Substance3D - Modeler

Name of the Vulnerable Software and Affected Versions: Substance3D - Modeler versions 1.14.1 and earlier Description: The issue is related to an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires...

7.8CVSS8.2AI score0.00431EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/11/15 12:0 a.m.3 views

PT-2024-9666 · Adobe · Substance3D - Modeler

Name of the Vulnerable Software and Affected Versions: Substance3D - Modeler versions 1.14.1 and earlier Description: The issue is related to a NULL Pointer Dereference that could result in an application denial-of-service. An attacker could exploit this to crash the application, leading to a...

5.5CVSS7AI score0.00388EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2024/03/08 12:0 a.m.20 views

Fedora: Security Advisory for apache-commons-modeler (FEDORA-2024-129d8ca6fc)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.2AI score0.02557EPSS
Exploits3References2
Fedora
Fedora
added 2024/03/07 10:32 p.m.22 views

[SECURITY] Fedora 40 Update: apache-commons-modeler-2.0.1-40.fc40

Commons Modeler makes the process of setting up JMX Java Management Extensions MBeans easier by configuring the required meta data using an XML descriptor. In addition, Modeler provides a factory mechanism to create the actual Model MBean instances...

8.8CVSS6.8AI score0.02557EPSS
Exploits3
OSV
OSV
added 2023/06/22 2:15 a.m.3 views

CVE-2023-33842

IBM SPSS Modeler on Windows 17.0, 18.0, 18.2.2, 18.3, 18.4, and 18.5 requires the end user to have access to the server SSL key which could allow a local user to decrypt and obtain sensitive information. IBM X-Force ID: 256117...

5.5CVSS5.8AI score
Exploits0References2
NVD
NVD
added 2023/06/22 2:15 a.m.24 views

CVE-2023-33842

IBM SPSS Modeler on Windows 17.0, 18.0, 18.2.2, 18.3, 18.4, and 18.5 requires the end user to have access to the server SSL key which could allow a local user to decrypt and obtain sensitive information. IBM X-Force ID: 256117...

6.2CVSS6.1AI score0.00188EPSS
Exploits0References2
Prion
Prion
added 2023/06/22 2:15 a.m.18 views

Code injection

IBM SPSS Modeler on Windows 17.0, 18.0, 18.2.2, 18.3, 18.4, and 18.5 requires the end user to have access to the server SSL key which could allow a local user to decrypt and obtain sensitive information. IBM X-Force ID: 256117...

1.7CVSS5.2AI score0.00188EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/22 1:34 a.m.13 views

CVE-2023-33842 IBM SPSS Modeler information disclosure

IBM SPSS Modeler on Windows 17.0, 18.0, 18.2.2, 18.3, 18.4, and 18.5 requires the end user to have access to the server SSL key which could allow a local user to decrypt and obtain sensitive information. IBM X-Force ID: 256117...

6.2CVSS6.2AI score0.00188EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/06/22 1:34 a.m.25 views

CVE-2023-33842 IBM SPSS Modeler information disclosure

IBM SPSS Modeler on Windows 17.0, 18.0, 18.2.2, 18.3, 18.4, and 18.5 requires the end user to have access to the server SSL key which could allow a local user to decrypt and obtain sensitive information. IBM X-Force ID: 256117...

6.2CVSS6.1AI score0.00188EPSS
Exploits0References2
CVE
CVE
added 2023/06/22 1:34 a.m.51 views

CVE-2023-33842

CVE-2023-33842 affects IBM SPSS Modeler on Windows (versions 17.0, 18.0, 18.2.2, 18.3, 18.4, 18.5). The root cause is a requirement that an end user must have access to the server SSL private key, which could allow a local user to decrypt traffic and obtain sensitive information (information disc...

6.2CVSS5.4AI score0.00188EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/06/22 12:0 a.m.4 views

IBM SPSS Modeler Subscription Installer 安全漏洞

IBM SPSS Modeler Subscription Installer is a software application from International Business Machines IBM, Inc. Used for a set of data mining, the tools allow the adoption of business techniques to quickly build predictive models and apply them to business activities, thus improving the...

6.2CVSS5.7AI score0.00188EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2022/11/02 2:15 a.m.80 views

Security Bulletin: IBM SPSS Modeler is vulnerable to Apache Commons Text [CVE-2022-42889]

Summary Apache Commons Text is used by IBM SPSS Modeler as part of the spark function. This vulnerability is addressed. CVE-2022-42889 Vulnerability Details CVEID:CVE-2022-42889 DESCRIPTION: Apache Commons Text could allow a remote attacker to execute arbitrary code on the system, caused by an...

9.8CVSS9.8AI score0.99931EPSS
Exploits41Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/26 5:45 a.m.20 views

Security Bulletin: IBM SPSS Modeler Premium - Text Analytics SSL Spoofing (CVE-2012-5785)

Abstract Last updated on December 11, 2012. When using the Text Analytics Server from the IBM SPSS Modeler Premium product with the SSL option enabled default is disabled, then an SSL connection can be established without verifying the hostname of the target connection against the name on the SSL...

5.8CVSS8.7AI score0.02206EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/25 11:13 p.m.22 views

Security Bulletin: IBM SPSS Modeler - XML (CVE-2012-5769)

Abstract If an attacker makes a victim open a specially crafted XML document, IBM SPSS Modeler installed on the victim's system could be made to automatically send the contents of local or remote resource to the attacker's server. It could also be possible to conduct denial of service attacks...

5.8CVSS6AI score0.01438EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/25 11:13 p.m.36 views

Security Bulletin: SPSS Modeler Java API Documentation Frame Injection Vulnerability (CVE-2013-1571)

Abstract Java API Documentation contains a frame injection vulnerability Content VULNERABILITY DETAILS: CVEID: CVE-2013-1571 DESCRIPTION: HTML documentation generated by the Javadoc tool contains a security vulnerability. The vulnerability allows an attacker to craft a malicious link to the...

4.3CVSS7.6AI score0.66817EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/25 9:6 p.m.33 views

Security Bulletin: IBM SPSS Modeler - XML (CVE-2013-2407)

Abstract If an attacker makes a victim open a specially crafted XML document, it could be possible to conduct denial of service attacks using IBM SPSS Modeler installed on the victim's system. Content VULNERABILITY DETAILS CVE ID: CVE-2013-2407 DESCRIPTION: If an attacker makes a victim open a...

6.4CVSS7.1AI score0.05166EPSS
Exploits0Affected Software1
Rows per page
Query Builder