PT-2023-21904 · Jenkins · Jenkins Absint A³ Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins AbsInt a³ Plugin versions 1.1.0 and earlier Description: The issue arises from the plugin not configuring its XML parser to prevent XML external entity XXE attacks. This allows attackers who can control the Project File APX contents t...

Schneider Electric EcoStruxure Control Expert APX project file processing code execution vulnerability

Summary A local code execution vulnerability exists in the APX project file processing functionality of Schneider Electric EcoStruxure Control Expert 14.1. The opening of a STA project archive containing a specially crafted APX project file can lead to code execution. An attacker can provide a...

CVE-2006-7245

Monkey's Audio before 4.01b2 allows remote attackers to cause a denial of service application crash via an APX file that lacks NULL termination...

CVE-2006-7245

Vulnerability: Monkey’s Audio before 4.01b2 is affected. A crafted APX file that lacks NULL termination can cause the application to crash (Denial of Service). Affected component: Monkey’s Audio parser/handling of APX files; root cause is missing NULL termination in APX processing. Impact is DoS ...

CVE-2006-7245

Monkey's Audio before 4.01b2 allows remote attackers to cause a denial of service application crash via an APX file that lacks NULL termination...