1541 matches found
CVE-2026-33156
CVE-2026-33156 affects ScreenToGif (portable versions up to 2.42.1). The flaw is DLL sideloading through version.dll: when run from a user-writable directory, the executable loads version.dll from its own directory instead of Windows System32, enabling arbitrary code execution in the user’s conte...
ScreenToGif 安全漏洞
ScreenToGif is a screen recording and GIF creation tool developed by Nicke Manarin himself. Versions of ScreenToGif 2.42.1 and earlier contained security vulnerabilities, which were caused by a DLL-side loading vulnerability. This vulnerability could allow arbitrary code to be executed in user...
EUVD-2026-11210
Excessive caching of authentication context in Neo4j Enterprise edition versions prior to 2026.01.4 leads to authenticated users inheriting the context of the first user who authenticated after restart. The issue is limited to certain non-default configurations of SSO UserInfo endpoint. We...
EUVD-2026-10903
Acrobat Reader versions 24.001.30307, 24.001.30308, 25.001.21265 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious...
EUVD-2026-10452
SAP GUI for Windows allows DLL files to be loaded from arbitrary directories within the application. An unauthenticated attacker could exploit this vulnerability by persuading a victim to place a malicious DLL within one of these directories. The malicious command is executed in the victim user's...
Memory Free After Use Vulnerability in Adobe After Effects 25.6 and Prior Versions
Adobe After Effects is a set of visual effects and motion graphics production software from the American company Audobee Adobe. The software is mainly used for 2D and 3D synthesis, animation and visual effects production. Adobe After Effects 25.6 and earlier versions suffer from a Memory Free Aft...
Adobe Substance 3D Stager suffers from an out-of-bounds read vulnerability (CNVD-2026-12699)
Substance 3D Stager is the United States of America Ordoby Adobe company launched a dedicated to the 3D scene set, lighting settings and high-quality rendering of professional software. An out-of-bounds read vulnerability exists in Adobe Substance 3D Stager, which can be exploited by an attacker ...
Adobe Substance 3D Stager suffers from an out-of-bounds read vulnerability
Substance 3D Stager is the United States of America Ordoby Adobe company launched a dedicated 3D scene set, lighting setup and high-quality rendering of professional software. An out-of-bounds read vulnerability exists in Adobe Substance 3D Stager, which can be exploited by an attacker to execute...
CVE-2026-23606
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in the Advanced Content Filtering rule creation workflow. An authenticated user can supply HTML/JavaScript in the ctl00$ContentPlaceHolder1$pv1$txtRuleName parameter to...
Adobe Substance3D Stager Out-of-Bounds Read Vulnerability (CNVD-2026-18674)
Adobe Substance3D Stager is a set and rendering software for 3D scenes from the American company Audobee Adobe. Adobe Substance3D Stager suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to execute code in the context of the current user...
CVE-2026-21342
Substance3D - Stager versions 3.1.6 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
fontforge: FontForge: Remote Code Execution via heap-based buffer overflow in BMP file parsing
A flaw was found in FontForge. This heap-based buffer overflow vulnerability occurs during the parsing of pixels within BMP Bitmap files, due to insufficient validation of user-supplied data length. A remote attacker could exploit this by tricking a user into opening a malicious BMP file or...
CVE-2026-21349 Lightroom Desktop | Out-of-bounds Write (CWE-787)
Lightroom Desktop versions 15.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2026-21347
CVE-2026-21347 affects Adobe Bridge. Affected versions: Bridge 15.1.3 and earlier, and 16.0.1 and earlier. The root cause is an Integer Overflow or Wraparound (CWE-190) that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction —the victim...
CVE-2026-21334
Substance3D - Designer versions 15.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
Adobe Substance3D Designer 缓冲区错误漏洞
Adobe Substance3D Designer is a texture and material creation software from the American company Audobee Adobe. Adobe Substance3D Designer suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to execute arbitrary code in the current user's context...
PT-2026-7373
Name of the Vulnerable Software and Affected Versions After Effects versions 25.6 and earlier Description The software is susceptible to an Integer Overflow or Wraparound issue that may lead to arbitrary code execution with the privileges of the current user. Successful exploitation requires a us...
Adobe After Effects 资源管理错误漏洞
Adobe After Effects is a set of visual effects and motion graphics production software from the American company Audobee Adobe. The software is mainly used for 2D and 3D synthesis, animation and visual effects production. Adobe After Effects 25.6 and earlier versions suffer from a Memory Free Aft...
Adobe Lightroom Desktop 缓冲区错误漏洞
Adobe Lightroom Desktop is a professional photo management and editing software from the American company Audobee Adobe, designed to provide photographers and image editors with powerful workflow and editing tools. Adobe Lightroom Desktop suffers from an out-of-bounds write vulnerability that can...
Adobe After Effects 资源管理错误漏洞
Adobe After Effects is a set of visual effects and motion graphics production software from the American company Audobee Adobe. The software is mainly used for 2D and 3D synthesis, animation and visual effects production. Adobe After Effects 25.6 and earlier versions suffer from a Memory Free Aft...