CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2609 matches found

0day.today•added 2021/09/15 12:0 a.m.•476 views

Ulfius Web Framework Remote Memory Corruption Exploit

Ulfius Web Framework suffers from a remote memory corruption vulnerability. When parsing malformed HTTP requests, a heap-related initialization bug is triggered resulting in a crash in the server or potentially remote code execution with privileges of the running process. !/usr/bin/python3 guul.p...

9.8CVSS0.6AI score0.0275EPSS

Exploits3

Packet Storm•added 2021/09/14 12:0 a.m.•251 views

Ulfius Web Framework Remote Memory Corruption

!/usr/bin/python3 guul.py Ulfius Web Framework Remote Memory Corruption Vulnerability Jeremy Brown Sept 2021 Intro Ulfius Web Framework is used by a number of different projects to build web services. Some of the projects tested and confirmed vulnerable are Glewlwyd SSO Server, Taliesin Audio...

7.5CVSS0.3AI score0.0275EPSS

Exploits3

Kitploit•added 2021/08/27 12:30 p.m.•110 views

adalanche - Active Directory ACL Visualizer and Explorer

Tags: API Documentation, Access, Active Directory, Analysis, Binary, LDAP, Linux, Max, Memory, Parameter, Reverse, Takeover, Windows, pwned, Adalanche adalanche - Active Directory ACL Visualizer - who's really Domain Admin? Adalanche - Active Directory Acl Visualizer - Who'S Really Domain Admin?...

7.2AI score

Exploits0References3

CNVD•added 2021/08/16 12:0 a.m.•36 views

Nagios XI file inclusion vulnerability

Nagios XI is a commercial monitoring solution built on Nagios Core, including dashboards, web-based configuration, advanced reporting, and rich data visualization.A local file inclusion vulnerability exists in versions of Nagios XI prior to 5.8.5. The vulnerability stems from an improper...

5CVSS2.7AI score0.11694EPSS

Exploits0Affected Software1

CNVD•added 2021/08/11 12:0 a.m.•29 views

Siemens Jt2go and Teamcenter Visualization null pointer dereference vulnerability

Siemens Jt2go is a JT file viewer. Siemens Teamcenter Visualization is a software that provides team collaboration capabilities for designing 2D and 3D scenes. a security vulnerability exists in Siemens Jt2go and Teamcenter Visualization, which stems from the fact that when parsing specially...

5.5CVSS2.9AI score0.00164EPSS

Exploits0References1

CNVD•added 2021/08/11 12:0 a.m.•21 views

Siemens Jt2go and Siemens Teamcenter Visualization Out-of-Bounds Read Vulnerability (CNVD-2021-61121)

Siemens Jt2go is a JT file viewer. Siemens Teamcenter Visualization is a software that provides team collaboration capabilities for designing 2D and 3D scenes. A security vulnerability exists in Siemens Jt2go and Siemens Teamcenter Visualization, which stems from the lack of proper validation of...

4.3CVSS2.6AI score0.00276EPSS

Exploits0References1

NVD•added 2021/08/10 11:15 a.m.•15 views

CVE-2021-33738

A vulnerability has been identified in JT2Go All versions V13.2.0.2, Teamcenter Visualization All versions V13.2.0.2. The plmxmlAdapterSE70.dll library in affected applications lacks proper validation of user-supplied data when parsing PAR files. This could result in an out of bounds read past th...

4.3CVSS0.00276EPSS

Exploits0References2

OSV•added 2021/08/10 11:15 a.m.•1 views

CVE-2021-33738

3.3CVSS5.7AI score0.00276EPSS

Exploits0References2

OSV•added 2021/08/10 11:15 a.m.•0 views

CVE-2021-33717

A vulnerability has been identified in JT2Go All versions V13.2.0.1, Teamcenter Visualization All versions V13.2.0.1. When parsing specially crafted CGM Files, a NULL pointer deference condition could cause the application to crash. The application must be restarted to restore the service. An...

5.5CVSS6AI score

Exploits0References1

Prion•added 2021/08/10 11:15 a.m.•20 views

Null pointer dereference

4.3CVSS5.7AI score0.00164EPSS

Exploits0References1Affected Software2

Prion•added 2021/08/10 11:15 a.m.•17 views

Design/Logic Flaw

4.3CVSS3.7AI score0.00276EPSS

Exploits0References2Affected Software2

CVE•added 2021/08/10 10:35 a.m.•60 views

CVE-2021-33738

CVE-2021-33738 affects Siemens JT2Go and Teamcenter Visualization (all versions before 13.2.0.2). The plmxmlAdapterSE70.dll library fails to validate user-supplied data when parsing PAR files, causing an out-of-bounds read past the end of an allocated buffer and allowing information leakage withi...

4.3CVSS3.6AI score0.00276EPSS

Exploits0References2Affected Software2

Cvelist•added 2021/08/10 10:35 a.m.•19 views

CVE-2021-33717

6AI score0.00164EPSS

Exploits0References1

CVE•added 2021/08/10 10:35 a.m.•61 views

CVE-2021-33717

The CVE-2021-33717 vulnerability affects Siemens JT2Go and Teamcenter Visualization (versions before 13.2.0.1). It is a NULL pointer dereference when parsing specially crafted CGM files, which can crash the application and require a restart, enabling a denial-of-service condition. Affected produc...

5.5CVSS5.2AI score0.00164EPSS

Exploits0References1Affected Software2

ICS•added 2021/08/10 12:0 a.m.•38 views

Siemens JT2Go and Teamcenter Visualization (Update A)

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Siemens Equipment: JT2Go & Teamcenter Visualization Vulnerabilities: Improper Check for Unusual or Exceptional Conditions, Out-of-bounds Write, Out-of-bounds Read 2. UPDATE INFORMATION This updated advisory is a follow-up...

7.8CVSS7.1AI score0.00375EPSS

Exploits0References11

CNNVD•added 2021/08/10 12:0 a.m.•1 views

Siemens Teamcenter Visualization和Siemens Jt2go缓冲区错误漏洞

4.3CVSS5.5AI score0.00276EPSS

Exploits0References5

ICS•added 2021/08/10 12:0 a.m.•44 views

Siemens JT2Go and Teamcenter Visualization products

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Siemens Equipment: JT2Go & Teamcenter Visualization Vulnerabilities: Use After Free, Out-of-bounds Write, Out-of-bounds Read, NULL Pointer Dereference 2. RISK EVALUATION Successful exploitation of these vulnerabilities...

7.8CVSS7.9AI score0.00375EPSS

Exploits0References11

CNNVD•added 2021/08/10 12:0 a.m.•2 views

JT2Go 和Teamcenter Visualization 代码问题漏洞

5.5CVSS5.6AI score0.00164EPSS

Exploits0References4

OpenVAS•added 2021/08/09 12:0 a.m.•11 views

Huawei EulerOS: Security Advisory for graphviz (EulerOS-SA-2021-2296)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.01191EPSS

Exploits1References2

Prion•added 2021/07/21 3:16 p.m.•15 views

Design/Logic Flaw

Vulnerability in the Oracle Hyperion BI+ product of Oracle Hyperion component: UI and Visualization. Supported versions that are affected are 11.1.2.4 and 11.2.5.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Hyperion BI+...

4.3CVSS3.6AI score0.00814EPSS

Exploits0References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by