Code execution vulnerability in multiple Mozilla products (CNVD-2026-11802)

Mozilla Firefox is an open source web browser from the Mozilla Foundation.Mozilla Firefox ESR is an extended support version of Firefox web browser from the Mozilla Foundation.Mozilla Thunderbird is a suite of e-mail client software from the Mozilla Foundation that is separate from the Mozilla...

Google Chrome 资源管理错误漏洞

Google Chrome is a web browser from Google, Inc. Google Chrome suffers from a Resource Management Error vulnerability that stems from a use-after-release issue in the Aura component, which can be exploited to potentially leverage heap corruption by inducing a user to use certain UI gestures and...

Freedesktop Poppler 资源管理错误漏洞

Freedesktop Poppler is a Freedesktop community C++ class library for generating PDFs, which is inherited from Xpdf PDF reader. A resource management error vulnerability exists in Freedesktop Poppler versions prior to 25.06.0, which stems from a reference count overflow that could lead to reuse...

Imagination GPU Driver 安全漏洞

Imagination GPU Driver is a graphics driver from Imagination. A security vulnerability exists in Imagination GPU Driver version 24.1 RTM, which originates from software run by an unprivileged user that can trigger a use-after-release kernel exception by executing an incorrect GPU system call...

Autodesk AutoCAD Resource Management Error Vulnerability

Autodesk AutoCAD is a suite of professional 3D drawing software from Autodesk, Inc. A security vulnerability exists in Autodesk AutoCAD version 2024.1.5, which originates when the Autodesk application parses a maliciously crafted IGES file in ASMImport229A.dll, and can be used to cause a...

Foxit PDF Reader 安全漏洞

Foxit PDF Reader is a PDF reader from China Foxit Foxit.Foxit PDF Editor is a PDF editor from China Foxit Foxit. Foxit PDF Reader and Foxit PDF Editor has a code execution vulnerability, the vulnerability stems from the AcroForm module has a reuse after release problem, an attacker can use the...

Adobe Bridge Security Vulnerability

Adobe Bridge is a file viewer from the American company Audobee Adobe. A security vulnerability exists in Adobe Bridge prior to version 13.0.4 and prior to version 14.0.0, which stems from the presence of a use-after-release vulnerability that could lead to the disclosure of sensitive memory...

Bentley Systems Bentley View 资源管理错误漏洞

Bentley View is a free viewer from Bentley Systems, U.S.A. A security vulnerability exists in Bentley View, which is caused by a use-after-release vulnerability when parsing J2K files. An attacker could exploit this vulnerability to execute arbitrary code on the system...

Siemens NX 资源管理错误漏洞

NX software is an integrated toolset that helps develop design, simulation and manufacturing solutions by supporting all aspects of product development. A use-after-release vulnerability exists in Siemens IFC adapter in NX, which can be exploited by an attacker to execute code in the context of t...