2110 matches found
CVE-2023-26386
Adobe Substance 3D Stager version 2.0.1 and earlier is affected by an Access of Uninitialized Pointer vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...
Design/Logic Flaw
Adobe Substance 3D Stager version 2.0.1 and earlier is affected by an Access of Uninitialized Pointer vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...
Design/Logic Flaw
Adobe Substance 3D Stager version 2.0.1 and earlier is affected by an Access of Uninitialized Pointer vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...
CVE-2023-26387
Adobe Substance 3D Stager is affected in versions up to 2.0.1 and earlier by an Access of Uninitialized Pointer vulnerability that can disclose memory and bypass ASLR. The issue affects the parsing/handling paths in Stager and requires user interaction (victim must open a malicious file) for expl...
Adobe Substance 3D Stager 缓冲区错误漏洞
Adobe Substance 3D Stager is a virtual 3D studio from the American company Audobee Adobe. An uninitialized pointer access vulnerability exists in Adobe Substance 3D Stager 2.0.1 and prior versions, which can be exploited by an attacker to cause a sensitive memory disclosure and bypass mitigations...
CVE-2023-26387 ZDI-CAN-20265: Adobe Substance 3D Stager USDC File Parsing Uninitialized Variable Information Disclosure Vulnerability
Adobe Substance 3D Stager version 2.0.1 and earlier is affected by an Access of Uninitialized Pointer vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...
PT-2023-6334 · Adobe · Substance3D - Stager
Name of the Vulnerable Software and Affected Versions: Adobe Substance 3D Stager version 2.0.1 and earlier Description: The issue is related to an Access of Uninitialized Pointer vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypa...
CVE-2022-43609
This vulnerability allows remote attackers to execute arbitrary code on affected installations of IronCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of STP files...
IronCAD 缓冲区错误漏洞
IronCAD is a software product for 3D and 2D CAD design from IronCAD, Inc. A buffer error vulnerability exists in IronCAD that originates when parsing a VECTOR element, where the process does not properly initialize the pointer before accessing it...
CVE-2023-26344
Adobe Dimension versions 3.4.7 and earlier is affected by an Access of Uninitialized Pointer vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...
CVE-2023-26344
Adobe Dimension versions 3.4.7 and earlier is affected by an Access of Uninitialized Pointer vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...
CVE-2023-26334
Adobe Dimension versions 3.4.7 and earlier is affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2023-26334
Adobe Dimension versions 3.4.7 and earlier is affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
Null pointer dereference
Adobe Dimension versions 3.4.7 and earlier is affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
Design/Logic Flaw
Adobe Dimension versions 3.4.7 and earlier is affected by an Access of Uninitialized Pointer vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...
CVE-2023-26344 ZDI-CAN-19467: Adobe Dimension USD File Access of Uninitialized Pointer Information Disclosure Vulnerability
Adobe Dimension versions 3.4.7 and earlier is affected by an Access of Uninitialized Pointer vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in...
CVE-2023-26334 ZDI-CAN-20149: Adobe Dimension USD File Parsing Uninitialized Pointer Information Disclosure Vulnerability
Adobe Dimension versions 3.4.7 and earlier is affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2023-26334 ZDI-CAN-20149: Adobe Dimension USD File Parsing Uninitialized Pointer Information Disclosure Vulnerability
Adobe Dimension versions 3.4.7 and earlier is affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
The vulnerability in the vector graphic editor Inkscape, related to access to an uninitialized pointer, allows a malicious actor to gain access to confidential data.
The vulnerability in the vector graphic editor Inkscape relates to access to an uninitialized pointer. Exploiting this vulnerability could allow a remote attacker to gain access to confidential data...
The vulnerability of the SSL-VPN portal for operating systems FortiOS and the proxy server used for protecting against internet attacks by FortiProxy allows attackers to induce a service failure.
The vulnerability of the SSL-VPN portal for FortiOS operating systems and the FortiProxy proxy server used to protect against internet attacks is related to the use of an uninitialized pointer. Exploiting this vulnerability could allow a malicious actor to cause a service failure by sending a...