Lucene search
+L

889 matches found

RedhatCVE
RedhatCVE
added 2024/09/06 7:14 p.m.27 views

CVE-2024-45294

A flaw was found in HAPI FHIR - HL7 FHIR Core Artifacts. eXtensible Stylesheet Language Transformations XSLT transforms performed by various components are vulnerable to XML external entity injections. A processed XML file with a malicious DTD tag could produce XML containing data from the host...

8.6CVSS6.4AI score0.00975EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/08/20 12:0 a.m.11 views

PT-2024-6611 · Unknown · Pdf-Xchange Editor

Name of the Vulnerable Software and Affected Versions: PDF-XChange Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this issue, where the target...

7.8CVSS7.2AI score0.00271EPSS
Exploits0References9
OSV
OSV
added 2024/08/19 3:4 p.m.2 views

USN-6968-1 postgresql-12, postgresql-14, postgresql-16 vulnerability

Noah Misch discovered that PostgreSQL incorrectly handled certain SQL objects. An attacker could possibly use this issue to execute arbitrary SQL functions as the superuser...

8.8CVSS7AI score0.01565EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/08/03 12:0 a.m.8 views

PT-2024-8735 · Foxit · Foxit Pdf Reader +1

Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader affected versions not specified Foxit PDF Editor affected versions not specified Description: This issue allows remote attackers to disclose sensitive information on affected installations. User interaction is required, where...

5CVSS7.8AI score0.00598EPSS
Exploits0References9
OSV
OSV
added 2024/07/29 4:15 p.m.1 views

DEBIAN-CVE-2024-41093

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: avoid using null object of framebuffer Instead of using state-fb-obj0 directly, get object from framebuffer by calling drmgemfbgetobj and return error code when object is null to avoid using null object of framebuffer...

5.5CVSS5.7AI score0.00225EPSS
Exploits0References1
Veracode
Veracode
added 2024/05/30 1:49 a.m.24 views

Type Confusion

chromium is vulnerable to a Type Confusion. The vulnerability is due to improper handling of object types, potentially allowing a remote attacker to execute arbitrary read/write operations via a crafted HTML page...

8.1CVSS8.6AI score0.0061EPSS
Exploits1References5Affected Software3
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.19 views

RHEL 8 : pyopenssl (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - pyOpenSSL: Use-after-free in X509 object handling CVE-2018-1000807 - Python Cryptographic Authority...

6.9AI score0.04075EPSS
Exploits0References2
NVD
NVD
added 2024/05/07 11:15 p.m.19 views

CVE-2021-34974

Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS8AI score0.00349EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/07 10:54 p.m.34 views

CVE-2021-34959 Foxit PDF Editor Square Annotation Use-After-Free Remote Code Execution Vulnerability

Foxit PDF Editor Square Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS8.2AI score0.00349EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/07 10:54 p.m.16 views

CVE-2021-34957 Foxit PDF Editor Highlight Annotation Use-After-Free Remote Code Execution Vulnerability

Foxit PDF Editor Highlight Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS7.4AI score0.00349EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/05/07 12:0 a.m.20 views

Adobe Acrobat Reader DC Annotation Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handli...

7.8CVSS6.9AI score0.00562EPSS
Exploits0References1
OSV
OSV
added 2024/05/03 3:16 a.m.5 views

CVE-2023-51555

Foxit PDF Reader Doc Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a...

3.3CVSS4.9AI score0.00397EPSS
Exploits0References2
OSV
OSV
added 2024/05/03 3:15 a.m.2 views

CVE-2023-42090

Foxit PDF Reader XFA Doc Object Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must...

7.1CVSS4.9AI score0.00437EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/03 2:13 a.m.34 views

CVE-2023-42098 Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability

Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a...

3.3CVSS6AI score0.00412EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/03 1:59 a.m.22 views

CVE-2023-38113 Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability

Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a...

3.3CVSS6.1AI score0.00424EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/03 1:55 a.m.17 views

CVE-2023-27329 Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability

Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS7.4AI score0.03925EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/04/03 4:23 p.m.26 views

CVE-2024-30331 Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability

Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious pa...

7.8CVSS8.2AI score0.00914EPSS
Exploits0References2
CVE
CVE
added 2024/04/02 8:17 p.m.79 views

CVE-2024-30358

CVE-2024-30358 is a Foxit PDF Reader AcroForm Use-After-Free remote code execution vulnerability. The flaw arises from not validating the existence of an object before performing operations on it during AcroForm handling, allowing an attacker to execute code in the process context after a user vi...

7.8CVSS8.2AI score0.0081EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/04/02 12:0 a.m.9 views

The vulnerability of the PDF document viewing program Foxit PDF Reader (formerly Foxit Reader) and the PDF file editing program Foxit PDF Editor (formerly Foxit PhantomPDF) lies in the use of memory after it is freed, allowing an attacker to execute arbitrary code.

The vulnerability of the PDF document viewing program Foxit PDF Reader formerly Foxit Reader and the PDF file editing program Foxit PDF Editor formerly Foxit PhantomPDF is related to the use of memory after it is freed during the processing of Doc objects. Exploiting this vulnerability can allow ...

7.8CVSS7.6AI score0.00914EPSS
Exploits0References3Affected Software2
Zero Day Initiative
Zero Day Initiative
added 2024/03/28 12:0 a.m.27 views

Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.8CVSS7.2AI score0.00793EPSS
Exploits0References1
Rows per page
Query Builder