Lucene search
K

31255 matches found

Cvelist
Cvelist
added 2020/11/13 2:44 p.m.37 views

CVE-2020-6149

A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. To trigger this vulnerability, the victim needs to open an attacker-provided malformed file in an instance in USDC file format PATHS section...

8.8CVSS7.7AI score0.0133EPSS
Exploits1References1
Cvelist
Cvelist
added 2020/11/13 2:43 p.m.29 views

CVE-2020-6147

A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. This instance exists in the USDC file format FIELDS section decompression heap overflow...

8.8CVSS7.9AI score0.01433EPSS
Exploits1References2
CVE
CVE
added 2020/11/13 2:43 p.m.67 views

CVE-2020-6147

Pixar OpenUSD 20.05 vulnerability CVE-2020-6147 involves heap overflow when parsing USDC binary sections with compression. Four compressed sections (FIELDS, FIELDSETS, PATHS, SPECS) can trigger overflows because allocated buffers depend on file-provided counts while read sizes come from the same ...

8.8CVSS7.9AI score0.01433EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/11/13 2:41 p.m.26 views

CVE-2020-6156

A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. To trigger this vulnerability, the victim needs to open an attacker-provided malformed file in an instance USDC file format path element token index...

8.8CVSS7.7AI score0.0133EPSS
Exploits1References1
Cvelist
Cvelist
added 2020/11/13 2:38 p.m.34 views

CVE-2020-6155

A heap overflow vulnerability exists in the Pixar OpenUSD 20.05 while parsing compressed value rep arrays in binary USD files. A specially crafted malformed file can trigger a heap overflow, which can result in remote code execution. To trigger this vulnerability, the victim needs to access an...

8.8CVSS8AI score0.02558EPSS
Exploits1References1
CVE
CVE
added 2020/11/13 2:38 p.m.59 views

CVE-2020-6155

Pixar OpenUSD 20.05 binary file format vulnerability: two code paths (compressed integer and floating-point arrays) can trigger a heap-based buffer overflow while decoding the reps array in binary USD files. The overflow arises when a size read from the file and a later, larger size are used to a...

8.8CVSS7.9AI score0.02558EPSS
Exploits1References1Affected Software1
Gitee
Gitee
added 2020/11/13 1:35 p.m.3 views

CTF-All-In-One

This repository is an offensive tool for CTF Capture The Flag competitions, specifically targeting Linux binary security. The repository contains a collection of tools and resources for learning and practicing binary exploitation, reverse engineering, and other related skills. The repository...

6.8AI score
Exploits0
CNVD
CNVD
added 2020/11/13 12:0 a.m.1 views

Binary Vulnerability in Rexchip Chips

With a R&D team specializing in system-on-chip design and algorithm research, Rexchip Microelectronics Corporation provides professional chip solutions for high-end intelligent hardware, cell phone peripherals, tablet PCs, TV set-top boxes, industrial control and other fields. A binary...

6.9AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/11/13 12:0 a.m.25 views

Apple iOS < 14.2 Multiple Vulnerabilities

Binary data appleios142check.nbin...

9.3CVSS8AI score0.22178EPSS
Exploits3References25
CNVD
CNVD
added 2020/11/13 12:0 a.m.3 views

Binary Vulnerability in Rexchip Chip (CNVD-2020-67105)

With a R&D team specializing in system-on-chip design and algorithm research, Rexchip Microelectronics Corporation provides professional chip solutions for high-end intelligent hardware, cell phone peripherals, tablet PCs, TV set-top boxes, industrial control and other fields. A binary...

6.9AI score
Exploits0
Talos
Talos
added 2020/11/12 12:0 a.m.86 views

Pixar OpenUSD binary file format compressed sections code execution vulnerabilities

Summary A heap overflow vulnerability exists in Pixar OpenUSD 20.05 when the software parses compressed sections in binary USD files. A specially crafted malformed file can trigger a heap overflow which can result in remote code execution. To trigger this vulnerability, the victim needs to open a...

8.8CVSS7.9AI score0.01433EPSS
Exploits4
Talos
Talos
added 2020/11/12 12:0 a.m.63 views

Pixar OpenUSD binary file format offset seek information leak vulnerability

Summary An exploitable vulnerability exists in the way Pixar OpenUSD 20.05 handles file offsets in binary USD files. A specially crafted malformed file can trigger an arbitrary out-of-bounds memory access that could lead to the disclosure of sensitive information. This vulnerability could be used...

9.3CVSS7.2AI score0.01864EPSS
Exploits0
Talos
Talos
added 2020/11/12 12:0 a.m.47 views

Pixar OpenUSD binary file format specs memory corruption

Summary An out-of-bounds memory corruption vulnerability exists in the way Pixar OpenUSD 20.05 uses SPECS data from binary USD files. A specially crafted malformed file can trigger an out-of-bounds memory access and modification which results in memory corruption. To trigger this vulnerability, t...

6.3CVSS6.7AI score0.00817EPSS
Exploits1
Talos
Talos
added 2020/11/12 12:0 a.m.116 views

Pixar OpenUSD Binary File Format Compressed Value Reps Code Execution Vulnerabilities

Summary A heap overflow vulnerability exists in the Pixar OpenUSD 20.05 while parsing compressed value rep arrays in binary USD files. A specially crafted malformed file can trigger a heap overflow, which can result in remote code execution. To trigger this vulnerability, the victim needs to acce...

8.8CVSS7.8AI score0.02558EPSS
Exploits1
Talos
Talos
added 2020/11/12 12:0 a.m.42 views

Pixar OpenUSD Binary File Format Token Strings Information Leak Vulnerability

Summary A heap overflow vulnerability exists in the Pixar OpenUSD 20.05 parsing of compressed string tokens in binary USD files. A specially crafted malformed file can trigger a heap overflow which can result in out of bounds memory access which could lead to information disclosure. This...

5.5CVSS4.8AI score0.01164EPSS
Exploits1
Talos
Talos
added 2020/11/12 12:0 a.m.124 views

Pixar OpenUSD Binary File Format Decompressed Path Rebuilding Memory corruption

Summary An out of bounds memory corruption vulnerability exists in the way Pixar OpenUSD 20.05 reconstructs paths from binary USD files. A specially crafted malformed file can trigger an out of bounds memory modification which can result in remote code execution. To trigger this vulnerability,...

8.8CVSS8AI score0.02023EPSS
Exploits1
OSV
OSV
added 2020/11/11 11:15 p.m.5 views

CVE-2020-5992

NVIDIA GeForce NOW application software on Windows, all versions prior to 2.0.25.119, contains a vulnerability in its open-source software dependency in which the OpenSSL library is vulnerable to binary planting attacks by a local user, which may lead to code execution or escalation of privileges...

7.8CVSS6.2AI score0.00457EPSS
Exploits0References1
NVD
NVD
added 2020/11/11 11:15 p.m.25 views

CVE-2020-5992

NVIDIA GeForce NOW application software on Windows, all versions prior to 2.0.25.119, contains a vulnerability in its open-source software dependency in which the OpenSSL library is vulnerable to binary planting attacks by a local user, which may lead to code execution or escalation of privileges...

7.8CVSS7.9AI score0.00457EPSS
Exploits0References1
Prion
Prion
added 2020/11/11 11:15 p.m.26 views

Design/Logic Flaw

NVIDIA GeForce NOW application software on Windows, all versions prior to 2.0.25.119, contains a vulnerability in its open-source software dependency in which the OpenSSL library is vulnerable to binary planting attacks by a local user, which may lead to code execution or escalation of privileges...

4.4CVSS7.8AI score0.00457EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2020/11/11 10:25 p.m.150 views

CVE-2020-5992

CVE-2020-5992 affects the NVIDIA GeForce NOW application for Windows prior to 2.0.25.119. The issue is in an open‑source dependency (OpenSSL) that enables binary planting by a local user, potentially leading to code execution or privilege escalation. NVIDIA released a security update that mitigat...

7.8CVSS7.8AI score0.00457EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder