CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2014-2989

Malware in sbrugna...

10CVSS6.4AI score0.05073EPSS

Exploits0References2

CVE•added 2024/11/05 8:6 p.m.•63 views

CVE-2024-7995

Autodesk VRED Design is affected by CVE-2024-7995, where a maliciously crafted binary file downloaded could exploit an untrusted search path to escalate privileges to NT AUTHORITY/SYSTEM, potentially enabling code execution. The condition is triggered by handling a downloaded binary within the VR...

7.8CVSS8AI score0.00201EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/11/05 8:6 p.m.•8 views

CVE-2024-7995 Autodesk VRED Design Privilege Escalation Vulnerability

A maliciously crafted binary file when downloaded could lead to escalation of privileges to NT AUTHORITY/SYSTEM due to an untrusted search path being utilized in the VRED Design application. Exploitation of this vulnerability may lead to code execution...

7.8CVSS7.8AI score0.00201EPSS

Exploits0References1

Tenable Nessus•added 2023/05/31 12:0 a.m.•54 views

Autodesk PSKernel Out-of-bounds Read/Write (VRED) (adsk-sa-2023-0009)

The version of Autodesk VRED installed on the remote Windows host is version 2023.x prior to 2023.4. It is, therefore, affected by multiple vulnerabilities. - A maliciously crafted pskernel.dll file in Autodesk products is used to trigger integer overflow vulnerabilities. Exploitation of these...

7.8CVSS7AI score0.00236EPSS

Exploits0References3

Tenable Nessus•added 2014/07/24 12:0 a.m.•13 views

Autodesk VRED Detection

Binary data autodeskvredinstalled.nbin...

7.3AI score

Exploits0References1

Tenable Nessus•added 2014/07/24 12:0 a.m.•147 views

Autodesk VRED Python API Remote Code Execution

The remote host has a version of Autodesk VRED that is vulnerable to an unauthenticated remote code execution via a Python API exposed by its built-in web server. This can allow a remote attacker to execute arbitrary code on the host. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

10CVSS6.5AI score0.05073EPSS

Exploits0References2

Tenable Nessus•added 2014/07/24 12:0 a.m.•21 views

Autodesk VRED Pro 2014 < SR1 SP8 Remote Code Execution

The remote host has a version of Autodesk VRED Pro that is vulnerable to an unauthenticated remote code execution via a Python API exposed by its built-in web server. This can allow a remote attacker to execute arbitrary code on the host. C Tenable Network Security, Inc. include"compat.inc"; if...

10CVSS6.6AI score0.05073EPSS

Exploits0References2

NVD•added 2014/07/07 11:1 a.m.•17 views

CVE-2014-2967

Autodesk VRED Professional 2014 before SR1 SP8 allows remote attackers to execute arbitrary code via Python os library calls in Python API commands to the integrated web server...

10CVSS7.8AI score0.05073EPSS

Exploits0References1

Prion•added 2014/07/07 11:1 a.m.•17 views

Design/Logic Flaw

Autodesk VRED Professional 2014 before SR1 SP8 allows remote attackers to execute arbitrary code via Python os library calls in Python API commands to the integrated web server...

10CVSS8.4AI score0.05073EPSS

Exploits0References1Affected Software1

CVE•added 2014/07/07 10:0 a.m.•66 views

CVE-2014-2967

Autodesk VRED Pro 2014 (before SR1 SP8) is affected by an unauthenticated remote code execution via the built‑in web server’s Python API. An attacker can remotely execute arbitrary code by sending commands through the exposed Python API (using the os library) on the server (port 8888). Impact is ...

10CVSS8.1AI score0.05073EPSS

Exploits0References1Affected Software1

Cvelist•added 2014/07/07 10:0 a.m.•26 views

CVE-2014-2967

Autodesk VRED Professional 2014 before SR1 SP8 allows remote attackers to execute arbitrary code via Python os library calls in Python API commands to the integrated web server...

7.8AI score0.05073EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by