20 matches found
CVE-2025-61818
InCopy versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-61815 InDesign Desktop | Use After Free (CWE-416)
InDesign Desktop versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-54221 InCopy | Out-of-bounds Write (CWE-787)
InCopy versions 20.4, 19.5.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
PT-2025-32926 · Adobe · Indesign Desktop
Name of the Vulnerable Software and Affected Versions: InDesign Desktop versions 20.4 and 19.5.4 and earlier Description: InDesign Desktop versions 20.4, 19.5.4, and earlier are affected by a Heap-based Buffer Overflow that may lead to arbitrary code execution within the current user's context...
CVE-2023-23082
A heap buffer overflow vulnerability in Kodi Home Theater Software up to 19.5 allows attackers to cause a denial of service due to an improper length of the value passed to the offset argument...
Adobe InDesign 代码问题漏洞
Adobe InDesign is a set of layout and editing applications from the American company Audobee Adobe. A null pointer dereference vulnerability exists in Adobe InDesign ID20.1, ID19.5.2 and earlier versions, which can be exploited by an attacker to cause a denial of service in the application...
PT-2024-9496 · Adobe · Indesign Desktop
Name of the Vulnerable Software and Affected Versions: InDesign Desktop versions ID19.5, ID18.5.4 and earlier Description: The issue is related to an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue...
PT-2024-9867 · Adobe · Indesign Desktop
Name of the Vulnerable Software and Affected Versions: InDesign Desktop versions ID19.5, ID18.5.4 and earlier Description: The issue is related to an out-of-bounds read vulnerability. This could allow an attacker to bypass mitigations such as ASLR and disclose sensitive memory. Exploitation of th...
PT-2024-12052 · Unknown · Mt Safeline X-Ray X3310
Name of the Vulnerable Software and Affected Versions: MT Safeline X-Ray X3310 webserver version NXG 19.05 Description: An HTML injection issue exists that allows a remote attacker to render malicious HTML, potentially obtaining sensitive information in a victim's browser. Recommendations: For MT...
DEBIAN-CVE-2023-30207
A divide by zero issue discovered in Kodi Home Theater Software 19.5 and earlier allows attackers to cause a denial of service via use of crafted mp3 file...
Kodi Home Theater Software 数字错误漏洞
Kodi Home Theater Software is an award-winning free and open source GPL software media player and digital media entertainment center from the individual developer Peter Frühberger. A security vulnerability exists in Kodi Home Theater Software version 19.5 and earlier, which stems from a de-zeroin...
Kodi Home Theater Software 缓冲区错误漏洞
Kodi Home Theater Software is an award-winning free and open source GPL software media player and digital media entertainment center from the individual developer Peter Frühberger. A security vulnerability exists in Kodi Home Theater Software version 19.5 that originates from a denial of service...
CVE-2022-3226
An OS command injection vulnerability allows admins to execute code via SSL VPN configuration uploads in Sophos Firewall releases older than version 19.5 GA...
PT-2022-6069 · Sophos · Sophos Firewall
Name of the Vulnerable Software and Affected Versions: Sophos Firewall versions prior to 19.5 GA Description: A post-auth read-only SQL injection issue allows API clients to read non-sensitive configuration database contents in the API controller. This can enable a remote attacker to gain...
PT-2022-23805 · Sophos · Sophos Firewall
Name of the Vulnerable Software and Affected Versions: Sophos Firewall versions prior to 19.5 GA Description: A stored XSS vulnerability allows admin to super-admin privilege escalation in the Webadmin import group wizard. Recommendations: For Sophos Firewall versions prior to 19.5 GA, update to...
Sophos Firewall 跨站脚本漏洞
Sophos Firewall is a firewall from Sophos UK. A cross-site scripting vulnerability exists in versions prior to Sophos Firewall 19.5GA that allows administrators to escalate Super Administrator privileges via stored cross-site scripting...
PT-2022-5774 · Sophos · Sophos Firewall
Name of the Vulnerable Software and Affected Versions: Sophos Firewall versions prior to 19.5 GA Description: The issue allows for OS command injection, enabling the execution of code via SSL VPN configuration uploads. This can be exploited by a remote attacker to execute arbitrary code...
Accusoft ImageGear Buffer Overflow Vulnerability (CNVD-2020-27757)
Accusoft ImageGear is a software development kit SDK for image processing from Accusoft, USA. A security vulnerability exists in the 'storedatabuffer' function of the igcore19d.dll library in Accusoft ImageGear version 19.5.0. An attacker can exploit the vulnerability to execute code with the hel...
Accusoft ImageGear Buffer Overflow Vulnerability (CNVD-2020-16504)
Accusoft ImageGear is a software development kit SDK for image processing from Accusoft, USA. A buffer overflow vulnerability exists in the 'uncompressscanline' function of the igcore19d.dll library in Accusoft ImageGear version 19.5.0. A remote attacker could exploit this vulnerability to execut...
SMPlayer Buffer Overflow Vulnerability (CNVD-2019-45407)
SMPlayer is a cross-platform open source multimedia player. A buffer overflow vulnerability exists in SMPlayer version 19.5.0. The vulnerability stems from a networked system or product performing operations in memory without properly validating data boundaries, resulting in incorrect read and...