CVE-2024-34086

CVE-2024-34086 affects Siemens JT2Go and Teamcenter Visualization (V14.1, V14.2, V14.3, V2312) with all versions prior to specific fixed builds. The vulnerability is an out-of-bounds write while parsing a specially crafted CGM file, enabling code execution in the affected process. Affected versio...

CVE-2024-32635

CVE-2024-32635 affects Siemens JT2Go and Teamcenter Visualization: JT2Go < V2312.0005; Teamcenter Visualization V14.2 < 0.12; V14.3 < 0.10; V2312

CVE-2024-32064

A vulnerability has been identified in Simcenter Femap All versions V2406. The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted IGS files. This could allow an attacker to execute code in the context of the current process...

CVE-2024-32062

Simcenter Femap (all versions

CVE-2024-32060

CVE-2024-32060 affects Simcenter Femap (all versions

CVE-2024-32059

A vulnerability has been identified in Simcenter Femap All versions V2406. The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted IGS files. This could allow an attacker to execute code in the context of the current process...

CVE-2024-31980

The CVE-2024-31980 issue affects Siemens Parasolid: V35.1 (all < V35.1.256), V36.0 (all < V36.0.210), and V36.1 (all

CVE-2024-31980

A vulnerability has been identified in Parasolid V35.1 All versions V35.1.256, Parasolid V36.0 All versions V36.0.210, Parasolid V36.1 All versions V36.1.185. The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted XT part fil...

CVE-2024-31980

A vulnerability has been identified in Parasolid V35.1 All versions V35.1.256, Parasolid V36.0 All versions V36.0.210, Parasolid V36.1 All versions V36.1.185. The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted XT part fil...

Siemens Parasolid 缓冲区错误漏洞

Parasolild Translators is a single-format translator toolkit for high-speed end-to-end translation between Parasolid and several industry formats such as STEP or IGES. A memory corruption vulnerability exists in the Siemens PS/IGES Parasolid Translator component that can be exploited by an attack...

container-selinux bug fix update

An update is available for container-selinux. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The container-selinux package provides SELinux policies for contain...

Dassault Systèmes eDrawings Viewer JT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Dassault Syst��mes eDrawings Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

CVE-2021-34965

CVE-2021-34965 describes a use-after-free in Foxit PDF Editor’s Squiggly Annotation handling. The flaw arises from not validating the existence of an Annotation object before operations, enabling an attacker to execute code in the context of the target process. The vulnerability requires user int...

RLSA-2024:2098 Important: container-tools:rhel8 security and bug fix update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Bug Fixes: containerinitt does not possess ptrace process context rhel-8.9.0.z JIRA:Rocky Linux-28923 Security Fixes: podman: full container escape at build time CVE-2024-1753...

CVE-2023-51552

Foxit PDF Reader AcroForm Signature Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a...

CVE-2023-37329

GStreamer SRT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may va...

CVE-2023-51566

Kofax Power PDF is affected by an OXPS file parsing vulnerability described as a stack-based buffer overflow that can lead to Remote Code Execution. The flaw results from inadequate validation of the length of user-supplied data before copying it into a fixed-length stack buffer during OXPS parsi...

CVE-2023-38104

GStreamer RealMedia File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

CVE-2023-50235

CVE-2023-50235 affects Hancom Office Show. The vulnerability lies in PPT file parsing where a lack of proper validation of the length of user-supplied data before copying to a stack-based buffer can enable remote code execution in the context of the current process. The issue requires user intera...

CVE-2023-40475

GStreamer MXF File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary dependi...