CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

302 matches found

Positive Technologies•added 2022/10/11 12:0 a.m.•2 views

PT-2022-25003 · Sap +1 · Sap 3D Visual Enterprise Author +1

Name of the Vulnerable Software and Affected Versions: SAP 3D Visual Enterprise Author version 9 Description: The issue arises due to improper memory management. When a victim opens a manipulated SolidWorks Drawing .slddrw file in SAP 3D Visual Enterprise Author, it can trigger a Remote Code...

7.8CVSS7.9AI score0.0019EPSS

Exploits0References5

Cvelist•added 2022/10/11 12:0 a.m.•18 views

CVE-2022-39804

Due to lack of proper memory management, when a victim opens a manipulated SolidWorks Part .sldprt, CoreCadTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a...

8.2AI score0.0019EPSS

Exploits0References2

Positive Technologies•added 2022/10/11 12:0 a.m.•3 views

PT-2022-25004 · Dassault Systèmes +1 · Solidworks +1

Name of the Vulnerable Software and Affected Versions: SAP 3D Visual Enterprise Author version 9 Description: The issue arises due to improper memory management when a user opens a manipulated SolidWorks Drawing .sldasm, CoreCadTranslator.exe file from untrusted sources. This can cause the...

5.5CVSS5.3AI score0.00046EPSS

Exploits0References5

Cvelist•added 2022/10/11 12:0 a.m.•14 views

CVE-2022-39807

Due to lack of proper memory management, when a victim opens manipulated SolidWorks Drawing .sldasm, CoreCadTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible for the application to crash and becomes temporarily unavailable to the us...

5.8AI score0.00046EPSS

Exploits0References2

CVE•added 2022/10/11 12:0 a.m.•59 views

CVE-2022-39804

CVE-2022-39804 affects SAP 3D Visual Enterprise Author (v9) via parsing of SLDPRT files, where CoreCadTranslator.exe may mishandle memory, enabling stack-based overflow or pointer reuse that can overwrite memory space. Connected advisories (ZDI-22-1539/1588) describe remote code execution with us...

7.8CVSS7.8AI score0.0019EPSS

Exploits0References2Affected Software1

Cvelist•added 2022/10/11 12:0 a.m.•17 views

CVE-2022-39806

Due to lack of proper memory management, when a victim opens a manipulated SolidWorks Drawing .slddrw, CoreCadTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a...

8.2AI score0.0019EPSS

Exploits0References2

Positive Technologies•added 2022/10/11 12:0 a.m.•2 views

PT-2022-25001 · Sap · Sap 3D Visual Enterprise Author

Name of the Vulnerable Software and Affected Versions: SAP 3D Visual Enterprise Author version 9 Description: The issue arises due to improper memory management. When a victim opens a manipulated SolidWorks Part .sldprt file in SAP 3D Visual Enterprise Author, it can trigger Remote Code Execution...

7.8CVSS7.8AI score0.0019EPSS

Exploits0References7

CVE•added 2022/10/11 12:0 a.m.•53 views

CVE-2022-39807

CVE-2022-39807 affects SAP 3D Visual Enterprise Author v9. The vulnerability is a memory-management/ buffer-overflow issue in parsing SolidWorks Drawing (.sldasm) files via CoreCadTranslator.exe, potentially crashing the app and rendering it unavailable until restart. Impact is Availability (High...

5.5CVSS5.4AI score0.00046EPSS

Exploits0References2Affected Software1

Openbugbounty•added 2017/10/31 9:37 p.m.•16 views

solidworks.com XSS vulnerability

Open Bug Bounty ID: OBB-382714 Description| Value ---|--- Affected Website:| solidworks.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

6.3AI score

Exploits0

exploitpack•added 2016/10/13 4:0 p.m.•13 views

SolidWorks-Workgroup-PDM-2014

Title: SolidWorks Workgroup PDM 2014 SP2 Arbitrary File Write Vulnerability Date: 2-21-2014 Author: Mohamed Shetta Email: mshetta |at| live |dot| com Vendor Homepage: http://www.solidworks.com/sw/products/product-data-management/workgroup-pdm.htm Tested on: Windows 7 Vulnerability type: Arbitrary...

0.3AI score

Exploits0

Openbugbounty•added 2016/04/11 1:22 p.m.•8 views

forum.solidworks.com Open Redirect vulnerability

Vulnerable URL: https://forum.solidworks.com/external-link.jspa?url=https://www.openbugbounty.org/ Details: Description| Value ---|--- Patched:| Yes, at 18.12.2016 Latest check for patch:| 18.12.2016 12:31 GMT Vulnerability type:| Open Redirect Vulnerability status:| Publicly disclosed Alexa Rank...

6.8AI score

Exploits0

NVD•added 2015/01/13 3:59 p.m.•11 views

CVE-2014-100014

Multiple stack-based buffer overflows in pdmwService.exe in SolidWorks Workgroup PDM 2014 SP2 allow remote attackers to execute arbitrary code via a long string in a 1 2001, 2 2002, or 3 2003 opcode to port 3000...

7.5CVSS7.8AI score0.10079EPSS

Exploits1References3

NVD•added 2015/01/13 3:59 p.m.•14 views

CVE-2014-100015

Directory traversal vulnerability in pdmwService.exe in SolidWorks Workgroup PDM 2014 allows remote attackers to write to arbitrary files via a .. dot dot in the filename in a file upload...

6.4CVSS6.8AI score0.77303EPSS

Exploits1References4

Prion•added 2015/01/13 3:59 p.m.•13 views

Stack overflow

7.5CVSS8.4AI score0.10079EPSS

Exploits1References3Affected Software1

Prion•added 2015/01/13 3:59 p.m.•13 views

Directory traversal

Directory traversal vulnerability in pdmwService.exe in SolidWorks Workgroup PDM 2014 allows remote attackers to write to arbitrary files via a .. dot dot in the filename in a file upload...

6.4CVSS7.3AI score0.77303EPSS

Exploits1References4Affected Software1

Cvelist•added 2015/01/13 3:0 p.m.•18 views

CVE-2014-100015

Directory traversal vulnerability in pdmwService.exe in SolidWorks Workgroup PDM 2014 allows remote attackers to write to arbitrary files via a .. dot dot in the filename in a file upload...

6.8AI score0.77303EPSS

Exploits1References4

Cvelist•added 2015/01/13 3:0 p.m.•19 views

CVE-2014-100014

7.8AI score0.10079EPSS

Exploits1References3

CVE•added 2015/01/13 3:0 p.m.•42 views

CVE-2014-100014

Affected product: SolidWorks Workgroup PDM 2014 SP2. Vulnerability: pdmwService.exe contains multiple stack-based buffer overflows exploitable by sending a long string (opcodes 2001/2002/2003) to port 3000, enabling remote code execution. The connected sources confirm the flaw but do not provide ...

7.5CVSS8AI score0.10079EPSS

Exploits1References3Affected Software1

CVE•added 2015/01/13 3:0 p.m.•44 views

CVE-2014-100015

CVE-2014-100015 affects SolidWorks Workgroup PDM 2014, specifically the pdmwService.exe component. The documented vulnerability is a directory traversal in a file upload mechanism, allowing remote attackers to write to arbitrary files by using a path with "..". Public references indicate exploit ...

6.4CVSS7AI score0.77303EPSS

Exploits1References4Affected Software1

seebug.org•added 2014/07/01 12:0 a.m.•21 views

SolidWorks Workgroup PDM 2014 SP2 - Arbitrary File Write Vulnerability

No description provided by source. ''' Title: SolidWorks Workgroup PDM 2014 SP2 Arbitrary File Write Vulnerability Date: 2-21-2014 Author: Mohamed Shetta Email: mshetta |at| live |dot| com Vendor Homepage: http://www.solidworks.com/sw/products/product-data-management/workgroup-pdm.htm Tested on:...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by