Fedora: Security Advisory (FEDORA-2024-2647382c5f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of Siemens Solid Edge’s design and simulation tools relates to access to an uninitialized pointer, allowing a malicious actor to execute arbitrary code.

The vulnerability of Siemens Solid Edge’s design and simulation tools relates to access to an uninitialized pointer. Exploiting this vulnerability could allow an attacker to execute arbitrary code using specially crafted PAR files...

The vulnerability of Siemens Solid Edge’s design and simulation tools relates to the execution of operations beyond the buffer boundaries in memory. This allows attackers to execute arbitrary code.

The vulnerability of Siemens Solid Edge’s design and simulation tools relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to execute arbitrary code using specially crafted PAR files...

Applying the Tyson Principle to Cybersecurity: Why Attack Simulation is Key to Avoiding a KO

Picture a cybersecurity landscape where defenses are impenetrable, and threats are nothing more than mere disturbances deflected by a strong shield. Sadly, this image of fortitude remains a pipe dream despite its comforting nature. In the security world, preparedness is not just a luxury but a...

Siemens Solid Edge Buffer Overflow Vulnerability (CNVD-2024-01408)

Solid Edge is a portfolio of software tools that address a variety of product development processes: 3D design, simulation, manufacturing and design management. A buffer overflow vulnerability exists in Samsung Solid Edge, which can be exploited by an attacker to execute code in the context of th...

Siemens Solid Edge Buffer Overflow Vulnerability (CNVD-2024-01409)

Solid Edge is a portfolio of software tools that address a variety of product development processes: 3D design, simulation, manufacturing and design management. A buffer overflow vulnerability exists in Samsung Solid Edge, which can be exploited by an attacker to execute code in the context of th...

Siemens Solid Edge Buffer Overflow Vulnerability (CNVD-2024-01402)

Solid Edge is a portfolio of software tools that address a variety of product development processes: 3D design, simulation, manufacturing and design management. A buffer overflow vulnerability exists in Samsung Solid Edge, which can be exploited by an attacker to execute code in the context of th...

Siemens Solid Edge Buffer Overflow Vulnerability (CNVD-2024-01407)

Solid Edge is a portfolio of software tools that address a variety of product development processes: 3D design, simulation, manufacturing and design management. A buffer overflow vulnerability exists in Samsung Solid Edge, which can be exploited by an attacker to execute code in the context of th...

Siemens Solid Edge Out-of-Bounds Write Vulnerability (CNVD-2024-01403)

Solid Edge is a portfolio of software tools that address a variety of product development processes: 3D design, simulation, manufacturing and design management. Siemens Solid Edge suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to execute code in the context...

Siemens Solid Edge Uninitialized Pointer Access Vulnerability (CNVD-2024-01401)

Solid Edge is a portfolio of software tools that address a variety of product development processes: 3D design, simulation, manufacturing and design management. An uninitialized pointer access vulnerability exists in Siemens Solid Edge, which can be exploited by an attacker to execute code in the...

Siemens Solid Edge Out-of-Bounds Read Vulnerability (CNVD-2024-01405)

Solid Edge is a portfolio of software tools that address a variety of product development processes: 3D design, simulation, manufacturing and design management. Siemens Solid Edge suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to execute code in the context ...

GTKWave VCD get_vartoken realloc use-after-free vulnerabilities

Talos Vulnerability Report TALOS-2023-1806 GTKWave VCD getvartoken realloc use-after-free vulnerabilities January 8, 2024 CVE Number CVE-2023-37576,CVE-2023-37577,CVE-2023-37573,CVE-2023-37578,CVE-2023-37575,CVE-2023-37574 SUMMARY Multiple use-after-free vulnerabilities exist in the VCD getvartok...

GTKWave LXT2 lxt2_rd_iter_radix shift operation integer underflow vulnerabilities

Talos Vulnerability Report TALOS-2023-1824 GTKWave LXT2 lxt2rditerradix shift operation integer underflow vulnerabilities January 8, 2024 CVE Number CVE-2023-39413,CVE-2023-39414 SUMMARY Multiple integer underflow vulnerabilities exist in the LXT2 lxt2rditerradix shift operation functionality of...

GTKWave FST fstReaderIterBlocks2 vesc allocation integer overflow vulnerability

Talos Vulnerability Report TALOS-2023-1790 GTKWave FST fstReaderIterBlocks2 vesc allocation integer overflow vulnerability January 8, 2024 CVE Number CVE-2023-35992 SUMMARY An integer overflow vulnerability exists in the FST fstReaderIterBlocks2 vesc allocation functionality of GTKWave 3.3.115,...

PhantomCrawler - Boost Website Hits By Generating Requests From Multiple Proxy IPs

PhantomCrawler allows users to simulate website interactions through different proxy IP addresses. It leverages Python, requests, and BeautifulSoup to offer a simple and effective way to test website behaviour under varied proxy configurations. Features: Utilizes a list of proxy IP addresses from...

PT-2024-2703 · Siemens · Tecnomatix Plant Simulation

Name of the Vulnerable Software and Affected Versions: Tecnomatix Plant Simulation versions prior to V2201.0012 Tecnomatix Plant Simulation versions prior to V2302.0006 Description: A heap-based buffer overflow vulnerability has been identified in the affected application while parsing specially...

PT-2024-2701 · Siemens · Tecnomatix Plant Simulation

Name of the Vulnerable Software and Affected Versions: Tecnomatix Plant Simulation versions prior to V2201.0012 Tecnomatix Plant Simulation versions prior to V2302.0006 Description: A stack overflow vulnerability has been identified in the affected applications while parsing specially crafted WRL...

PT-2024-2692 · Siemens · Tecnomatix Plant Simulation

Name of the Vulnerable Software and Affected Versions: Tecnomatix Plant Simulation V2201 All versions Tecnomatix Plant Simulation V2302 versions prior to V2302.0007 Description: A null pointer dereference vulnerability has been identified in the affected applications while parsing specially craft...

PT-2024-2691 · Siemens · Tecnomatix Plant Simulation

Name of the Vulnerable Software and Affected Versions: Tecnomatix Plant Simulation versions V2201 through V2302.0006 Description: The issue is related to an out of bounds write past the end of an allocated buffer while parsing a specially crafted SPP file. This could allow an attacker to execute...

PT-2024-2696 · Siemens · Tecnomatix Plant Simulation

Name of the Vulnerable Software and Affected Versions: Tecnomatix Plant Simulation versions V2201 through V2302.0006 Description: The issue is related to a null pointer dereference vulnerability. This vulnerability can be exploited by an attacker using specially crafted SPP files, potentially...