Lucene search
K

1541 matches found

CVE
CVE
added 2026/03/20 8:29 p.m.15 views

CVE-2026-33156

CVE-2026-33156 affects ScreenToGif (portable versions up to 2.42.1). The flaw is DLL sideloading through version.dll: when run from a user-writable directory, the executable loads version.dll from its own directory instead of Windows System32, enabling arbitrary code execution in the user’s conte...

7.8CVSS6.4AI score0.00224EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.11 views

ScreenToGif 安全漏洞

ScreenToGif is a screen recording and GIF creation tool developed by Nicke Manarin himself. Versions of ScreenToGif 2.42.1 and earlier contained security vulnerabilities, which were caused by a DLL-side loading vulnerability. This vulnerability could allow arbitrary code to be executed in user...

7.8CVSS6AI score0.00224EPSS
Exploits1References1
EUVD
EUVD
added 2026/03/11 6:30 p.m.4 views

EUVD-2026-11210

Excessive caching of authentication context in Neo4j Enterprise edition versions prior to 2026.01.4 leads to authenticated users inheriting the context of the first user who authenticated after restart. The issue is limited to certain non-default configurations of SSO UserInfo endpoint. We...

2.1CVSS5.8AI score0.00244EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/11 12:31 a.m.3 views

EUVD-2026-10903

Acrobat Reader versions 24.001.30307, 24.001.30308, 25.001.21265 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious...

7.8CVSS6.3AI score0.00222EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/10 6:31 p.m.6 views

EUVD-2026-10452

SAP GUI for Windows allows DLL files to be loaded from arbitrary directories within the application. An unauthenticated attacker could exploit this vulnerability by persuading a victim to place a malicious DLL within one of these directories. The malicious command is executed in the victim user's...

5CVSS5.9AI score0.00176EPSS
Exploits0References3
CNVD
CNVD
added 2026/03/02 12:0 a.m.4 views

Memory Free After Use Vulnerability in Adobe After Effects 25.6 and Prior Versions

Adobe After Effects is a set of visual effects and motion graphics production software from the American company Audobee Adobe. The software is mainly used for 2D and 3D synthesis, animation and visual effects production. Adobe After Effects 25.6 and earlier versions suffer from a Memory Free Aft...

7.8CVSS6.1AI score0.0022EPSS
Exploits0References1
CNVD
CNVD
added 2026/03/02 12:0 a.m.3 views

Adobe Substance 3D Stager suffers from an out-of-bounds read vulnerability (CNVD-2026-12699)

Substance 3D Stager is the United States of America Ordoby Adobe company launched a dedicated to the 3D scene set, lighting settings and high-quality rendering of professional software. An out-of-bounds read vulnerability exists in Adobe Substance 3D Stager, which can be exploited by an attacker ...

7.8CVSS5.9AI score0.00159EPSS
Exploits0References1
CNVD
CNVD
added 2026/03/02 12:0 a.m.4 views

Adobe Substance 3D Stager suffers from an out-of-bounds read vulnerability

Substance 3D Stager is the United States of America Ordoby Adobe company launched a dedicated 3D scene set, lighting setup and high-quality rendering of professional software. An out-of-bounds read vulnerability exists in Adobe Substance 3D Stager, which can be exploited by an attacker to execute...

7.8CVSS5.9AI score0.00159EPSS
Exploits0References1
NVD
NVD
added 2026/02/19 6:24 p.m.11 views

CVE-2026-23606

GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in the Advanced Content Filtering rule creation workflow. An authenticated user can supply HTML/JavaScript in the ctl00$ContentPlaceHolder1$pv1$txtRuleName parameter to...

5.4CVSS0.00173EPSS
Exploits0References2
CNVD
CNVD
added 2026/02/12 12:0 a.m.5 views

Adobe Substance3D Stager Out-of-Bounds Read Vulnerability (CNVD-2026-18674)

Adobe Substance3D Stager is a set and rendering software for 3D scenes from the American company Audobee Adobe. Adobe Substance3D Stager suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to execute code in the context of the current user...

7.8CVSS6AI score0.00157EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/02/11 7:44 p.m.6 views

CVE-2026-21342

Substance3D - Stager versions 3.1.6 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00176EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/02/11 5:28 p.m.4 views

fontforge: FontForge: Remote Code Execution via heap-based buffer overflow in BMP file parsing

A flaw was found in FontForge. This heap-based buffer overflow vulnerability occurs during the parsing of pixels within BMP Bitmap files, due to insufficient validation of user-supplied data length. A remote attacker could exploit this by tricking a user into opening a malicious BMP file or...

7.8CVSS6.5AI score0.00259EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/02/10 7:43 p.m.6 views

CVE-2026-21349 Lightroom Desktop | Out-of-bounds Write (CWE-787)

Lightroom Desktop versions 15.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00139EPSS
Exploits0References1
CVE
CVE
added 2026/02/10 6:24 p.m.16 views

CVE-2026-21347

CVE-2026-21347 affects Adobe Bridge. Affected versions: Bridge 15.1.3 and earlier, and 16.0.1 and earlier. The root cause is an Integer Overflow or Wraparound (CWE-190) that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction —the victim...

7.8CVSS6.3AI score0.00159EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/10 6:8 p.m.5 views

CVE-2026-21334

Substance3D - Designer versions 15.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00184EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/10 12:0 a.m.8 views

Adobe Substance3D Designer 缓冲区错误漏洞

Adobe Substance3D Designer is a texture and material creation software from the American company Audobee Adobe. Adobe Substance3D Designer suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to execute arbitrary code in the current user's context...

7.8CVSS6.2AI score0.00184EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.9 views

PT-2026-7373

Name of the Vulnerable Software and Affected Versions After Effects versions 25.6 and earlier Description The software is susceptible to an Integer Overflow or Wraparound issue that may lead to arbitrary code execution with the privileges of the current user. Successful exploitation requires a us...

7.8CVSS6.2AI score0.00211EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/10 12:0 a.m.10 views

Adobe After Effects 资源管理错误漏洞

Adobe After Effects is a set of visual effects and motion graphics production software from the American company Audobee Adobe. The software is mainly used for 2D and 3D synthesis, animation and visual effects production. Adobe After Effects 25.6 and earlier versions suffer from a Memory Free Aft...

7.8CVSS6.2AI score0.0022EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/10 12:0 a.m.11 views

Adobe Lightroom Desktop 缓冲区错误漏洞

Adobe Lightroom Desktop is a professional photo management and editing software from the American company Audobee Adobe, designed to provide photographers and image editors with powerful workflow and editing tools. Adobe Lightroom Desktop suffers from an out-of-bounds write vulnerability that can...

7.8CVSS6AI score0.00139EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/10 12:0 a.m.11 views

Adobe After Effects 资源管理错误漏洞

Adobe After Effects is a set of visual effects and motion graphics production software from the American company Audobee Adobe. The software is mainly used for 2D and 3D synthesis, animation and visual effects production. Adobe After Effects 25.6 and earlier versions suffer from a Memory Free Aft...

7.8CVSS6.2AI score0.0022EPSS
Exploits0References1
Rows per page
Query Builder