Lucene search
K

120950 matches found

NVD
NVD
added 2025/10/14 8:15 p.m.3 views

CVE-2025-61802

Substance3D - Stager versions 3.1.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00197EPSS
Exploits0References1
NVD
NVD
added 2025/10/14 8:15 p.m.6 views

CVE-2025-61801

Dimension versions 4.1.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.0021EPSS
Exploits0References1
OSV
OSV
added 2025/10/14 8:15 p.m.6 views

CVE-2025-61801

Dimension versions 4.1.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.0021EPSS
Exploits0References1
NVD
NVD
added 2025/10/14 8:15 p.m.3 views

CVE-2025-54281

Adobe Framemaker versions 2020.9, 2022.7 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00197EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/14 7:42 p.m.8 views

CVE-2025-61803 Substance3D - Stager | Integer Overflow or Wraparound (CWE-190)

Substance3D - Stager versions 3.1.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00188EPSS
Exploits0References1
CVE
CVE
added 2025/10/14 7:42 p.m.17 views

CVE-2025-61802

Adobe Substance 3D Stager is affected up to version 3.1.4 (and earlier) by a Use After Free vulnerability (CVE-2025-61802) that could enable arbitrary code execution in the current user’s context. Exploitation requires user interaction (opening a malicious file). The connected advisory APSB25-104...

7.8CVSS7.3AI score0.00197EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/10/14 7:42 p.m.3 views

CVE-2025-61807 Substance3D - Stager | Integer Overflow or Wraparound (CWE-190)

Substance3D - Stager versions 3.1.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.3AI score0.00188EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/14 7:34 p.m.1 views

CVE-2025-61801 Dimension | Use After Free (CWE-416)

Dimension versions 4.1.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.3AI score0.0021EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/14 7:28 p.m.6 views

CVE-2025-54284 Illustrator | Out-of-bounds Write (CWE-787)

Illustrator versions 29.7, 28.7.9 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00193EPSS
Exploits0References1
CVE
CVE
added 2025/10/14 7:28 p.m.11 views

CVE-2025-54284

Adobe Illustrator CVE-2025-54284 describes an out-of-bounds write vulnerability affecting Illustrator versions 29.7, 28.7.9 and earlier, allowing arbitrary code execution in the current user context. Exploitation requires a user to open a malicious file. Connected sources corroborate the issue an...

7.8CVSS7.5AI score0.00193EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/10/14 7:21 p.m.18 views

CVE-2025-54281

Adobe FrameMaker has a Use After Free vulnerability (CWE-416) affecting versions 2020.9, 2022.7 and earlier, allowing arbitrary code execution in the current user’s context. Exploitation requires user interaction (opening a malicious file). A fix is available: update to a version later than 2022....

7.8CVSS7.3AI score0.00197EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/10/14 7:21 p.m.2 views

CVE-2025-54281 Adobe Framemaker | Use After Free (CWE-416)

Adobe Framemaker versions 2020.9, 2022.7 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.3AI score0.00197EPSS
Exploits0References1
NVD
NVD
added 2025/10/14 7:15 p.m.3 views

CVE-2025-54273

Substance3D - Viewer versions 0.25.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00176EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/14 7:7 p.m.2 views

CVE-2025-54273 Substance3D - Viewer | Out-of-bounds Write (CWE-787)

Substance3D - Viewer versions 0.25.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.5AI score0.00176EPSS
Exploits0References1
CVE
CVE
added 2025/10/14 7:7 p.m.11 views

CVE-2025-54280

Substance3D - Viewer ≤ 0.25.2 is affected by an out-of-bounds write (CWE-787) that could lead to arbitrary code execution in the current user’s context. Exploitation requires user interaction: a victim must open a malicious file. The CVE is confirmed across multiple feeds (CVE-2025-54280; Red Hat...

7.8CVSS7.5AI score0.00176EPSS
Exploits0References1Affected Software1
NCSC
NCSC
added 2025/10/14 6:38 p.m.7 views

Vulnerabilities fixed in Microsoft Office

Microsoft has fixed vulnerabilities in several Office products. A malicious party could exploit the vulnerabilities to cause a denial-of-service, execute arbitrary code with the victim's privileges, or gain access to sensitive data in the victim's context. Successful exploitation requires the...

8.8CVSS7.3AI score0.02245EPSS
Exploits0
NVD
NVD
added 2025/10/14 6:15 p.m.4 views

CVE-2025-60537

Improper input validation in the component /kafka/ui/serdes/CustomSerdeLoader.java of kafka-ui v0.6.0 to v0.7.2 allows attackers to execute arbitrary code via supplying crafted data...

6.5CVSS0.00356EPSS
Exploits0References3
NCSC
NCSC
added 2025/10/14 6:13 p.m.10 views

Vulnerabilities fixed in Microsoft Azure

Microsoft has fixed vulnerabilities in several Azure components. A malicious party could exploit the vulnerabilities to impersonate another user and potentially grant themselves elevated privileges, in order to gain access to sensitive data or execute arbitrary code with elevated privileges. The...

9.8CVSS7.3AI score0.06944EPSS
Exploits0
OSV
OSV
added 2025/10/14 4:15 p.m.4 views

CVE-2025-57741

An Incorrect Permission Assignment for Critical Resource vulnerability CWE-732 in FortiClientMac 7.4.0 through 7.4.3, 7.2.0 through 7.2.11, 7.0 all versions may allow a local attacker to run arbitrary code or commands via LaunchDaemon hijacking...

7.8CVSS6AI score0.00118EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/14 3:31 p.m.2 views

EUVD-2025-34200

Memory safety bugs present in Firefox ESR 140.3, Thunderbird ESR 140.3, Firefox 143 and Thunderbird 143. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox...

7AI score0.00299EPSS
Exploits0References6
Rows per page
Query Builder