Lucene search
K

1799 matches found

EUVD
EUVD
added 2026/04/12 3:30 p.m.4 views

EUVD-2018-21770

RGui 3.5.0 contains a local buffer overflow vulnerability in the GUI preferences dialog that allows attackers to bypass DEP protections through structured exception handling exploitation. Attackers can craft malicious input in the Language for menus and messages field to trigger a stack-based...

8.6CVSS6.5AI score0.00188EPSS
Exploits0References5
NVD
NVD
added 2026/04/12 1:16 p.m.4 views

CVE-2018-25258

RGui 3.5.0 contains a local buffer overflow vulnerability in the GUI preferences dialog that allows attackers to bypass DEP protections through structured exception handling exploitation. Attackers can craft malicious input in the Language for menus and messages field to trigger a stack-based...

8.6CVSS0.00188EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/12 12:28 p.m.3 views

CVE-2019-25695 R 3.4.4 Local Buffer Overflow Windows XP SP3

R 3.4.4 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by injecting malicious input into the GUI Preferences language field. Attackers can craft a payload with a 292-byte offset and JMP ESP instruction to execute commands like calc.exe when the...

8.6CVSS6.5AI score0.00191EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/12 12:28 p.m.7 views

CVE-2018-25258 RGui 3.5.0 Local Buffer Overflow SEH DEP Bypass

RGui 3.5.0 contains a local buffer overflow vulnerability in the GUI preferences dialog that allows attackers to bypass DEP protections through structured exception handling exploitation. Attackers can craft malicious input in the Language for menus and messages field to trigger a stack-based...

8.6CVSS6.5AI score0.00188EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/12 12:28 p.m.31 views

CVE-2018-25258 RGui 3.5.0 Local Buffer Overflow SEH DEP Bypass

RGui 3.5.0 contains a local buffer overflow vulnerability in the GUI preferences dialog that allows attackers to bypass DEP protections through structured exception handling exploitation. Attackers can craft malicious input in the Language for menus and messages field to trigger a stack-based...

8.6CVSS0.00188EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/04/12 12:28 p.m.4 views

CVE-2018-25258

RGui 3.5.0 contains a local buffer overflow vulnerability in the GUI preferences dialog that allows attackers to bypass DEP protections through structured exception handling exploitation. Attackers can craft malicious input in the Language for menus and messages field to trigger a stack-based...

8.6CVSS6.5AI score0.00188EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/04/12 12:28 p.m.9 views

CVE-2018-25258

CVE-2018-25258 affects RGui 3.5.0. The issue is a local buffer overflow in the GUI preferences dialog, enabling DEP bypass via structured exception handling and a stack-based overflow triggered by input in the Language for menus and messages field. This can be exploited to construct a ROP chain f...

8.6CVSS6.5AI score0.00188EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/12 12:0 a.m.6 views

PT-2026-32178

RGui 3.5.0 contains a local buffer overflow vulnerability in the GUI preferences dialog that allows attackers to bypass DEP protections through structured exception handling exploitation. Attackers can craft malicious input in the Language for menus and messages field to trigger a stack-based...

8.6CVSS6.5AI score0.00188EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/12 12:0 a.m.7 views

RGui 代码问题漏洞

RGui is a web interface system for cloud platform management and resource visualization operations by The R Foundation. Version RGui 3.5.0 has a code vulnerability; this vulnerability stems from a local buffer overflow in the GUI preferences dialog box, which may allow arbitrary code to be execut...

8.6CVSS6.2AI score0.00188EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/12 12:0 a.m.5 views

R 缓冲区错误漏洞

R is a statistical computing software developed by The R Foundation. Version 3.4.4 of R contains a buffer overflow vulnerability, which stems from insufficient input validation for the GUI Preferences language field. This vulnerability could lead to a local buffer overflow and the execution of...

8.6CVSS6.3AI score0.00191EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/08 12:0 a.m.9 views

Oracle Linux 8 : thunderbird (ELSA-2026-6917)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-6917 advisory. 140.9.0-1.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 140.9.0 - Add OpenELA debranding 140.9.0-1 - Update to 140.9.0 ESR Tenab...

10CVSS7.4AI score0.00773EPSS
Exploits0References40
Cvelist
Cvelist
added 2026/04/07 9:18 p.m.15 views

CVE-2026-34765 Electron named window.open targets not scoped to the opener's browsing context

Electron is a framework for writing cross-platform desktop applications using JavaScript, HTML and CSS. Prior to 39.8.5, 40.8.5, 41.1.0, and 42.0.0-alpha.5, when a renderer calls window.open with a target name, Electron did not correctly scope the named-window lookup to the opener's browsing...

6CVSS0.003EPSS
Exploits0References1
Snyk
Snyk
added 2026/04/07 3:52 p.m.5 views

Exposure of Resource to Wrong Sphere

Overview electron is a framework which lets you write cross-platform desktop applications using JavaScript, HTML and CSS. Affected versions of this package are vulnerable to Exposure of Resource to Wrong Sphere via the window.open function. An attacker can gain access to or manipulate the browsin...

8.8CVSS5.9AI score0.003EPSS
Exploits0References2
Snyk
Snyk
added 2026/04/07 3:52 p.m.4 views

Exposure of Resource to Wrong Sphere

Overview org.webjars.npm:electron is a framework which lets you write cross-platform desktop applications using JavaScript, HTML and CSS. Affected versions of this package are vulnerable to Exposure of Resource to Wrong Sphere via the window.open function. An attacker can gain access to or...

8.8CVSS5.9AI score0.003EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2026/04/07 12:0 a.m.12 views

thunderbird security update

140.9.0-1.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 140.9.0 - Add OpenELA debranding 140.9.0-1 - Update to 140.9.0 ESR...

10CVSS7.2AI score0.00773EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/07 12:0 a.m.12 views

PT-2026-30918

Name of the Vulnerable Software and Affected Versions Electron versions prior to 39.8.5 Electron versions prior to 40.8.5 Electron versions prior to 41.1.0 Electron versions prior to 42.0.0-alpha.5 Description Electron did not correctly scope the named-window lookup to the opener's browsing conte...

6CVSS6.1AI score0.003EPSS
Exploits0References10
Packet Storm News
Packet Storm News
added 2026/04/07 12:0 a.m.12 views

WebSP-Eval: Evaluating Web Agents on Website Security and Privacy Tasks

Web agents automate browser tasks, ranging from simple form completion to complex workflows like ordering groceries. While current benchmarks evaluate general-purpose performancee.g., WebArena or safety against malicious actionse.g., SafeArena, no existing framework assesses an agent's ability to...

6AI score
Exploits0
EUVD
EUVD
added 2026/04/05 9:30 p.m.5 views

EUVD-2019-20048

R i386 3.5.0 contains a local buffer overflow vulnerability in the GUI Preferences dialog that allows local attackers to trigger a structured exception handler SEH overwrite by supplying malicious input. Attackers can craft a payload string in the 'Language for menus and messages' field to...

8.6CVSS6.7AI score0.00159EPSS
Exploits0References5
NVD
NVD
added 2026/04/05 9:16 p.m.8 views

CVE-2019-25656

R i386 3.5.0 contains a local buffer overflow vulnerability in the GUI Preferences dialog that allows local attackers to trigger a structured exception handler SEH overwrite by supplying malicious input. Attackers can craft a payload string in the 'Language for menus and messages' field to...

8.6CVSS0.00159EPSS
Exploits0References4
OSV
OSV
added 2026/04/05 9:16 p.m.6 views

UBUNTU-CVE-2019-25656

R i386 3.5.0 contains a local buffer overflow vulnerability in the GUI Preferences dialog that allows local attackers to trigger a structured exception handler SEH overwrite by supplying malicious input. Attackers can craft a payload string in the 'Language for menus and messages' field to...

8.6CVSS6.6AI score0.00159EPSS
Exploits0References6
Rows per page
Query Builder