CVE-2024-54093

A vulnerability has been identified in Solid Edge SE2024 All versions V224.0 Update 5. The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted ASM files. This could allow an attacker to execute code in the context of the current process...

Siemens Solid Edge SSA-730188 Multiple Vulnerabilities

The version of Siemens Solid Edge installed on the remote Windows host is prior to 224.00.05.04. It is, therefore, affected by multiple vulnerabilities. For more information, consult the vendor advisory. - A vulnerability has been identified in Solid Edge SE2024 All versions V224.0 Update 5. The...

CVE-2024-54093

A vulnerability has been identified in Solid Edge SE2024 All versions V224.0 Update 5. The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted ASM files. This could allow an attacker to execute code in the context of the current process...

CVE-2024-54093

A vulnerability has been identified in Solid Edge SE2024 All versions V224.0 Update 5. The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted ASM files. This could allow an attacker to execute code in the context of the current process...

CVE-2024-54093

CVE-2024-54093 affects Siemens Solid Edge SE2024. All versions prior to V224.0 Update 5 expose a heap-based buffer overflow while parsing specially crafted ASM (and PAR per vendor advisory) files, enabling potential code execution in the current process. Public sources consistently describe the i...

CVE-2024-54093

A vulnerability has been identified in Solid Edge SE2024 All versions V224.0 Update 5. The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted ASM files. This could allow an attacker to execute code in the context of the current process...

The vulnerability of the asm-bug component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the asm-bug component in the Linux operating system’s kernel is related to incorrect error handling. Exploiting this vulnerability can allow an attacker to cause a service failure...

ROS-20241205-01

The vulnerability of the asm-bug component of the Linux operating system kernel is related to incorrect error handling in arch/arm64/include/asm/asm-bug.h. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service A vulnerability in the sr component of the...

The vulnerability of the ASMkern229A.dll and ASMBASE229A.dll libraries, which are software components for modeling, design, and drawing in AutoCAD, allows a malicious actor to cause an unexpected termination of the application or execute arbitrary code.

The vulnerability of the ASMkern229A.dll and ASMBASE229A.dll libraries, which are software components for modeling, design, and drafting in AutoCAD, relates to the reading of data beyond the specified buffer. Exploiting this vulnerability can allow an attacker to cause the application to terminat...

The vulnerability of the atf_asm_interface.dll library in the AutoCAD modeling, design, and drafting software allows a malicious actor to cause an unexpected termination of the application or execute arbitrary code.

The vulnerability of the atfasminterface.dll library in AutoCAD simulation, design, and drawing software arises due to an overflow in the buffer of dynamic memory. Exploiting this vulnerability can allow an attacker to cause the application to terminate abnormally or execute arbitrary code using ...

CVE-2024-50181

...

AZL-51300 CVE-2024-47716 affecting package kernel for versions less than 6.6.56.1-5

In the Linux kernel, the following vulnerability has been resolved: ARM: 9410/1: vfp: Use asm volatile in fmrx/fmxr macros Floating point instructions in userspace can crash some arm kernels built with clang/LLD 17.0.6: BUG: unsupported FP instruction in kernel mode FPEXC == 0xc0000780 Internal...

CVE-2024-47716

In the Linux kernel, the following vulnerability has been resolved: ARM: 9410/1: vfp: Use asm volatile in fmrx/fmxr macros Floating point instructions in userspace can crash some arm kernels built with clang/LLD 17.0.6: BUG: unsupported FP instruction in kernel mode FPEXC == 0xc0000780 Internal...

The Main Components of an Attack Surface Management (ASM) Strategy

In part one of this blog series, we looked at some of the core challenges that are driving the demand for a new approach to Attack Surface Management. In this second blog I explore some of the key technology approaches to ASM and also some of the core asset types we need to understand. We can bre...

AI SPERA and Hackers Central Partner to Expand Mexico’s Security Market with ‘Criminal IP ASM’

Torrance, United States / California, 19th August 2024, CyberNewsWire...

CVE-2023-52889 apparmor: Fix null pointer deref when receiving skb during sock creation

In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix null pointer deref when receiving skb during sock creation The panic below is observed when receiving ICMP packets with secmark set while an ICMP raw socket is being created. SKCTXsk-label is updated in...

CVE-2024-23155

A maliciously crafted MODEL file, when parsed in atfasminterface.dll through Autodesk applications, can be used to cause a Heap-based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process...

BokuLoader - A Proof-Of-Concept Cobalt Strike Reflective Loader Which Aims To Recreate, Integrate, And Enhance Cobalt Strike's Evasion Features!

A proof-of-concept User-Defined Reflective Loader UDRL which aims to recreate, integrate, and enhance Cobalt Strike's evasion features! Contributors: Contributor | Twitter | Notable Contributions ---|---|--- Bobby Cooke | @0xBoku | Project original author and maintainer Santiago Pecin | @s4ntiago...

Security update for bitcoin (moderate)

openSUSE Security Update: Security update for bitcoin Announcement ID: openSUSE-SU-2024:0052-1 Rating: moderate References: Cross-References: CVE-2018-17144 CVSS scores: CVE-2018-17144 NVD : 7.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2018-17144 SUSE: 7.4...

CVE-2023-52874

In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Zero out the missing RSI in TDXHYPERCALL macro In the TDXHYPERCALL asm, after the TDCALL instruction returns from the untrusted VMM, the registers that the TDX guest shares to the VMM need to be cleared to avoid...