CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

983 matches found

Prion•added 2020/02/14 6:15 p.m.•16 views

Design/Logic Flaw

This vulnerability allows remote atackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.6.0.25114. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS7.8AI score0.19009EPSS

Exploits0References2Affected Software2

Cvelist•added 2020/02/13 10:20 p.m.•27 views

CVE-2020-8845

7.8CVSS7.8AI score0.19009EPSS

Exploits0References2

Zero Day Initiative•added 2020/02/11 12:0 a.m.•30 views

Foxit PhantomPDF fxhtml2pdf Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the fxhtml2pdf.ex...

7.8CVSS2.3AI score0.05931EPSS

Exploits0References1

Veracode•added 2020/01/29 5:16 a.m.•29 views

Prototype Pollution

dot-prop is vulnerable to prototype pollution. Lack of object validation allows an attacker to inject arbitrary Object properties which can potentially lead to execution of arbitrary code...

7.3CVSS5AI score0.03004EPSS

Exploits1References5Affected Software3

Veracode•added 2020/01/24 1:45 a.m.•18 views

Prototype Pollution

klona is vulnerable to prototype pollution. Lack of object validation allows an attacker to inject arbitrary Object properties which can potentially lead to execution of arbitrary code...

9.8CVSS5.2AI score0.04018EPSS

Exploits1References3Affected Software1

Zero Day Initiative•added 2019/12/09 12:0 a.m.•14 views

Rockwell Automation Arena Simulation DOE File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Rockwell Automation Arena Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

7.8CVSS4.6AI score0.12042EPSS

Exploits0References1

Zero Day Initiative•added 2019/12/09 12:0 a.m.•18 views

Rockwell Automation Arena Simulation DOE File Parsing Use-After-Free Remote Code Execution Vulnerability

7.8CVSS4.6AI score0.12042EPSS

Exploits0References1

Zero Day Initiative•added 2019/12/09 12:0 a.m.•16 views

Rockwell Automation Arena Simulation DOE File Parsing Use-After-Free Remote Code Execution Vulnerability

7.8CVSS4.6AI score0.12042EPSS

Exploits0References1

OSV•added 2019/10/25 7:15 p.m.•1 views

CVE-2019-17143

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PhantomPDF 9.6.0.25114. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

4.3CVSS5AI score0.03881EPSS

Exploits0References1

OSV•added 2019/10/25 7:15 p.m.•2 views

CVE-2019-17142

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.6.0.25114. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

8.8CVSS7.5AI score0.06261EPSS

Exploits0References2

OSV•added 2019/10/25 7:15 p.m.•1 views

CVE-2019-17141

8.8CVSS7.5AI score0.05186EPSS

Exploits0References2

NVD•added 2019/10/25 7:15 p.m.•21 views

CVE-2019-17140

8.8CVSS8.1AI score0.05186EPSS

Exploits0References2

Prion•added 2019/10/25 7:15 p.m.•21 views

Design/Logic Flaw

6.8CVSS8.8AI score0.06261EPSS

Exploits0References2Affected Software1

Cvelist•added 2019/10/25 6:14 p.m.•27 views

CVE-2019-17141

7.8CVSS8.8AI score0.05186EPSS

Exploits0References2

Cvelist•added 2019/10/25 6:14 p.m.•29 views

CVE-2019-17142

7.8CVSS8.8AI score0.06261EPSS

Exploits0References2

Zero Day Initiative•added 2019/10/22 12:0 a.m.•32 views

Foxit PhantomPDF Signature Field OnFocus Use-After-Free Remote Code Execution Vulnerability

7.8CVSS2.1AI score0.05186EPSS

Exploits0References1

Zero Day Initiative•added 2019/10/22 12:0 a.m.•33 views

Foxit PhantomPDF ListBox Field Keystroke Use-After-Free Remote Code Execution Vulnerability

7.8CVSS2.3AI score0.06261EPSS

Exploits0References1

Zero Day Initiative•added 2019/10/15 12:0 a.m.•24 views

Adobe Acrobat Pro DC DWG File Parsing Use-After-Free Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS2.3AI score0.02817EPSS

Exploits0References1

Zero Day Initiative•added 2019/10/15 12:0 a.m.•25 views

Adobe Acrobat Reader DC XFA Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handli...

7.8CVSS2.5AI score0.03637EPSS

Exploits0References1

Zero Day Initiative•added 2019/10/15 12:0 a.m.•21 views

Adobe Acrobat Pro DC DST File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processin...

7.8CVSS4.2AI score0.03637EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by