20 matches found
EUVD-2020-19514
Malware in sbrugna...
EUVD-2020-19515
Malware in sbrugna...
EUVD-2024-52269
Malicious code in bioql PyPI...
CVE-2024-54093
A vulnerability has been identified in Solid Edge SE2024 All versions V224.0 Update 5. The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted ASM files. This could allow an attacker to execute code in the context of the current process...
Siemens Solid Edge SSA-730188 Multiple Vulnerabilities
The version of Siemens Solid Edge installed on the remote Windows host is prior to 224.00.05.04. It is, therefore, affected by multiple vulnerabilities. For more information, consult the vendor advisory. - A vulnerability has been identified in Solid Edge SE2024 All versions V224.0 Update 5. The...
CVE-2024-54093
A vulnerability has been identified in Solid Edge SE2024 All versions V224.0 Update 5. The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted ASM files. This could allow an attacker to execute code in the context of the current process...
CVE-2024-54093
A vulnerability has been identified in Solid Edge SE2024 All versions V224.0 Update 5. The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted ASM files. This could allow an attacker to execute code in the context of the current process...
PT-2023-11599 · Nasm +1 · Nasm +1
Name of the Vulnerable Software and Affected Versions: nasm version 2.15rc0 Description: The issue is related to a Buffer Overflow vulnerability in the scan function in stdscan.c. This vulnerability allows remote attackers to cause a denial of service via crafted asm files. Recommendations: For...
Siemens Solid Edge Heap Buffer Overflow Vulnerability (CNVD-2021-51464)
Siemens Solid Edge is a group of software tools for dealing with various product development processes: 3D design, simulation, manufacturing and design management. A heap buffer overflow vulnerability exists in Siemens Solid Edge where the plmxmlAdapterSE70.dll library in the affected application...
CVE-2021-34327
A vulnerability has been identified in JT2Go All versions V13.2, Solid Edge SE2021 All Versions SE2021MP5, Teamcenter Visualization All versions V13.2. The plmxmlAdapterSE70.dll library in affected applications lacks proper validation of user-supplied data when parsing ASM files. This could resul...
CVE-2021-34327
The CVE affects Siemens Solid Edge, JT2Go, and Teamcenter Visualization with a heap-based buffer overflow in plmxmlAdapterSE70.dll when parsing ASM files. Root cause: improper validation of user-supplied data leading to an out-of-bounds write and potential code execution in the affected process. ...
CVE-2021-34327
A vulnerability has been identified in JT2Go All versions V13.2, Solid Edge SE2021 All Versions SE2021MP5, Teamcenter Visualization All versions V13.2. The plmxmlAdapterSE70.dll library in affected applications lacks proper validation of user-supplied data when parsing ASM files. This could resul...
Siemens JT2Go < 13.1.0.1 Multiple Vulnerabilities (SSA-663999)
The version of Siemens JT2Go installed on the remote Windows hosts is prior to 13.1.0.1. It is, therefore, affected by multiple vulnerabilities, including the following: - A vulnerability has been identified in JT2Go. Affected applications lack proper validation of user-supplied data when parsing...
Siemens JT2Go ASM File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of ASM...
CVE-2020-26991
A vulnerability has been identified in JT2Go All versions V13.1.0.2, Teamcenter Visualization All versions V13.1.0.2. Affected applications lack proper validation of user-supplied data when parsing ASM files. This could lead to pointer dereferences of a value obtained from untrusted source. An...
CVE-2020-26990
A vulnerability has been identified in JT2Go All versions V13.1.0.1, Teamcenter Visualization All versions V13.1.0.1. Affected applications lack proper validation of user-supplied data when parsing ASM files. A crafted ASM file could trigger a type confusion condition. An attacker could leverage...
Type confusion
A vulnerability has been identified in JT2Go All versions V13.1.0.1, Teamcenter Visualization All versions V13.1.0.1. Affected applications lack proper validation of user-supplied data when parsing ASM files. A crafted ASM file could trigger a type confusion condition. An attacker could leverage...
Design/Logic Flaw
A vulnerability has been identified in JT2Go All versions V13.1.0.2, Teamcenter Visualization All versions V13.1.0.2. Affected applications lack proper validation of user-supplied data when parsing ASM files. This could lead to pointer dereferences of a value obtained from untrusted source. An...
CVE-2020-26990
A vulnerability has been identified in JT2Go All versions V13.1.0.1, Teamcenter Visualization All versions V13.1.0.1. Affected applications lack proper validation of user-supplied data when parsing ASM files. A crafted ASM file could trigger a type confusion condition. An attacker could leverage...
CVE-2020-26991
A vulnerability has been identified in JT2Go All versions V13.1.0.2, Teamcenter Visualization All versions V13.1.0.2. Affected applications lack proper validation of user-supplied data when parsing ASM files. This could lead to pointer dereferences of a value obtained from untrusted source. An...