CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2110 matches found

Zero Day Initiative•added 2021/09/30 12:0 a.m.•25 views

Siemens Solid Edge Viewer OBJ File Parsing Uninitialized Pointer Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

3.3CVSS3.7AI score0.00935EPSS

Exploits0References2

OSV•added 2021/09/28 12:15 p.m.•4 views

CVE-2021-41538

A vulnerability has been identified in NX 1953 Series All versions V1973.3700, NX 1980 Series All versions V1988, Solid Edge SE2021 All versions SE2021MP8. The affected application is vulnerable to information disclosure by unexpected access to an uninitialized pointer while parsing user-supplied...

3.3CVSS5.7AI score0.00935EPSS

Exploits0References3

NVD•added 2021/09/28 12:15 p.m.•21 views

CVE-2021-41538

4.3CVSS0.00935EPSS

Exploits0References3

Prion•added 2021/09/28 12:15 p.m.•21 views

Information disclosure

4.3CVSS4.2AI score0.00935EPSS

Exploits0References3Affected Software7

Cvelist•added 2021/09/28 11:12 a.m.•23 views

CVE-2021-41538

3.7AI score0.00935EPSS

Exploits0References3

CVE•added 2021/09/28 11:12 a.m.•54 views

CVE-2021-41538

CVE-2021-41538 : Siemens Solid Edge/NX OBJ parsing uninitialized pointer information disclosure. Affected products and versions include: NX 1953 Series (all versions < V1973.3700) and NX 1980 Series (all versions < V1988); Solid Edge SE2021 (all versions = V1973.3700, NX 1980 >= V1988, a...

4.3CVSS3.4AI score0.00935EPSS

Exploits0References3Affected Software1

ICS•added 2021/09/28 12:0 a.m.•59 views

Siemens Solid Edge

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Siemens Equipment: Solid Edge, 3D CAD and solid modeling software Vulnerabilities: Use After Free, Out-of-bounds Read, Access of Uninitialized Pointer 2. RISK EVALUATION Successful exploitation of these vulnerabilities...

7.8CVSS7.5AI score0.01517EPSS

Exploits0References11

NVD•added 2021/09/27 2:15 p.m.•10 views

CVE-2021-36219

An issue was discovered in SKALE sgxwallet 1.58.3. The provided input for ECALL 14 triggers a branch in trustedEcdsaSign that frees a non-initialized pointer from the stack. An attacker can chain multiple enclave calls to prepare a stack that contains a valid address. This address is then freed,...

9.8CVSS0.01578EPSS

Exploits0References2

Zero Day Initiative•added 2021/08/27 12:0 a.m.•16 views

Fatek Automation FvDesigner FPJ File Parsing Uninitialized Pointer Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fatek Automation FvDesigner. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5.4AI score0.0201EPSS

Exploits0References1

Zero Day Initiative•added 2021/08/27 12:0 a.m.•28 views

Fatek Automation FvDesigner FPJ File Parsing Uninitialized Pointer Remote Code Execution Vulnerability

7.8CVSS5.4AI score0.0201EPSS

Exploits0References1

OSV•added 2021/08/25 8:45 p.m.•30 views

GHSA-R43H-GMRM-H5C9 Access of Uninitialized Pointer in linked-hash-map

An issue was discovered in the linked-hash-map crate before 0.5.3 for Rust. It creates an uninitialized NonNull pointer, which violates a non-null constraint...

9.8CVSS9.3AI score0.01777EPSS

Exploits1References4

OSV•added 2021/08/25 7:15 p.m.•2 views

CVE-2021-33015

Cscape All Versions prior to 9.90 SP5 lacks proper validation of user-supplied data when parsing project files. This could lead to an out-of-bounds write via an uninitialized pointer. An attacker could leverage this vulnerability to execute code in the context of the current process...

7.8CVSS6AI score0.00995EPSS

Exploits0References1

NVD•added 2021/08/25 7:15 p.m.•16 views

CVE-2021-33015

7.8CVSS0.00995EPSS

Exploits0References1

Prion•added 2021/08/25 7:15 p.m.•10 views

Design/Logic Flaw

6.8CVSS7.7AI score0.00995EPSS

Exploits0References1Affected Software1

Cvelist•added 2021/08/25 6:13 p.m.•20 views

CVE-2021-33015

7.9AI score0.00995EPSS

Exploits0References1

CVE•added 2021/08/25 6:13 p.m.•47 views

CVE-2021-33015

CVE-2021-33015 affects Cscape: all versions prior to 9.90 SP5 lack proper validation of user-supplied data when parsing project files, causing an out-of-bounds write via an uninitialized pointer and enabling code execution in the current process. Affected product: Horner Automation Cscape (indust...

7.8CVSS7.7AI score0.00995EPSS

Exploits0References1Affected Software1

OSV•added 2021/08/20 7:15 p.m.•1 views

CVE-2021-35991

Adobe Bridge version 11.0.2 and earlier is affected by an Access of Uninitialized Pointer vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to disclose arbitrary memory information in the context of the current user. Exploitation of...

3.3CVSS5.7AI score

Exploits0References1

OSV•added 2021/08/20 7:15 p.m.•4 views

CVE-2021-36014

Adobe Media Encoder version 15.2 and earlier is affected by an uninitialized pointer vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to read arbitrary file system information in the context of the current user. Exploitation of thi...

3.3CVSS5.9AI score0.01865EPSS

Exploits0References1

NVD•added 2021/08/20 7:15 p.m.•15 views

CVE-2021-35991

4.3CVSS0.01805EPSS

Exploits0References1

NVD•added 2021/08/20 7:15 p.m.•21 views

CVE-2021-36014

4.3CVSS0.01865EPSS

Exploits0References1

Rows per page