1037 matches found
Advisory ROSA-SA-2025-2713
Software: openblas 2000.3.15 OS: ROSA Virtualization 3.0 packageevrstring: openblas-2000.3.15 CVE-ID: CVE-2021-4048 BDU-ID: 2021-05061 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the Microsoft Visio vector graphics, diagram and flowchart editor is related to memory usage after memory has be...
Security Updates for Microsoft Visio Products C2R (February 2025)
The Microsoft Visio Products are missing a security update. It is, therefore, affected by the following vulnerabilities: - Microsoft Office is affected by a remote code execution vulnerability. CVE-2025-21345, CVE-2025-21356 Note that Nessus has not tested for these issues but has instead relied...
CVE-2025-1175
Reflected Cross-Site Scripting XSS vulnerability in Kelio Visio 1, Kelio Visio X7 and Kelio Visio X4, in versions between 3.2C and 5.1K. This vulnerability could allow an attacker to execute a JavaScript payload by making a POST request and injecting malicious code into the editable ‘username’...
CVE-2025-1175
Reflected Cross-Site Scripting XSS vulnerability in Kelio Visio 1, Kelio Visio X7 and Kelio Visio X4, in versions between 3.2C and 5.1K. This vulnerability could allow an attacker to execute a JavaScript payload by making a POST request and injecting malicious code into the editable ‘username’...
CVE-2025-1175 Cross-Site Scripting (XSS) vulnerability in Kelio Visio
Reflected Cross-Site Scripting XSS vulnerability in Kelio Visio 1, Kelio Visio X7 and Kelio Visio X4, in versions between 3.2C and 5.1K. This vulnerability could allow an attacker to execute a JavaScript payload by making a POST request and injecting malicious code into the editable ‘username’...
CVE-2025-1175
The vulnerability CVE-2025-1175 is a Reflected Cross-Site Scripting (XSS) in Kelio Visio 1, Kelio Visio X7, and Kelio Visio X4, affecting versions 3.2C through 5.1K. The issue occurs in the editable ‘username’ parameter of the endpoint "/PageLoginVisio.do" and can be triggered by a POST request t...
CVE-2025-1175 Cross-Site Scripting (XSS) vulnerability in Kelio Visio
Reflected Cross-Site Scripting XSS vulnerability in Kelio Visio 1, Kelio Visio X7 and Kelio Visio X4, in versions between 3.2C and 5.1K. This vulnerability could allow an attacker to execute a JavaScript payload by making a POST request and injecting malicious code into the editable ‘username’...
Kelio Visio 跨站脚本漏洞
Kelio Visio is a networked touchscreen punch terminal from Kelio that can be used for a variety of tasks. A cross-site scripting vulnerability exists in Kelio Visio, which stems from a reflective cross-site scripting vulnerability caused by injecting malicious code into the username parameter of...
PT-2025-6040 · Kelio · Kelio Visio X4 +2
Name of the Vulnerable Software and Affected Versions: Kelio Visio 1 versions 3.2C through 5.1K Kelio Visio X7 versions 3.2C through 5.1K Kelio Visio X4 versions 3.2C through 5.1K Description: The issue is a Reflected Cross-Site Scripting XSS vulnerability that could allow an attacker to execute ...
Security Updates for Microsoft Visio Products C2R (January 2025)
The Microsoft Visio Products are missing a security update. It is, therefore, affected by the following vulnerabilities: - Microsoft Office is affected by a remote code execution vulnerability. CVE-2025-21345, CVE-2025-21356 Note that Nessus has not tested for these issues but has instead relied...
Microsoft Office Visio Remote Code Execution Vulnerability (CNVD-2025-02828)
Microsoft Office is a widely used office software suite that includes Word, Excel, PowerPoint, Visio, and other components that provide document editing, data analysis, presentation creation, and more. A remote code execution vulnerability exists in Microsoft Office Visio, which arises due to Use...
Microsoft Office Visio Remote Code Execution Vulnerability (CNVD-2025-02827)
Microsoft Office is a widely used office software suite that contains a variety of applications such as Word, Excel, PowerPoint and Visio. A remote code execution vulnerability exists in Microsoft Office Visio, which arises due to the use of incompatible types when accessing resources type...
CVE-2025-21356
Microsoft Office Visio Remote Code Execution Vulnerability...
CVE-2025-21356
Microsoft Office Visio Remote Code Execution Vulnerability...
CVE-2025-21345
Microsoft Office Visio Remote Code Execution Vulnerability...
CVE-2025-21345
Microsoft Office Visio Remote Code Execution Vulnerability...
CVE-2025-21356
CVE-2025-21356 concerns Microsoft Office Visio. Connected sources describe a remote code execution vulnerability in Visio due to type obfuscation and a heap-based buffer overflow when accessing resources, enabling arbitrary code execution on a user’s system. Affected product is Microsoft Visio (O...
CVE-2025-21356 Microsoft Office Visio Remote Code Execution Vulnerability
...
CVE-2025-21356 Microsoft Office Visio Remote Code Execution Vulnerability
...
CVE-2025-21345 Microsoft Office Visio Remote Code Execution Vulnerability
...