Lucene search
K

49 matches found

RedhatCVE
RedhatCVE
added 2026/05/07 8:20 a.m.12 views

CVE-2026-34596

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, a Time-of-Check-to-Time-of-Use TOCTOU race condition exists during addon installation. When a user installs an addon through the SandMan interface, UpdUtil.exe is spawned as SYSTEM by...

7CVSS5.7AI score0.00106EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2026/04/10 11:25 p.m.4 views

SUSE CVE-2026-39853

osslsigncode is a tool that implements Authenticode signing and timestamping. Prior to 2.12, A stack buffer overflow vulnerability exists in osslsigncode in several signature verification paths. During verification of a PKCS7 signature, the code copies the digest value from a parsed...

7.8CVSS6.1AI score0.00163EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2000-0328

Malware in sbrugna...

5.1CVSS6.4AI score0.07687EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2012-1470

Malware in sbrugna...

4.3CVSS6.4AI score0.89006EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2004-0914

Malware in sbrugna...

5CVSS6.1AI score0.03588EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2025/05/22 5:40 p.m.10 views

CVE-2020-1300

A remote code execution vulnerability exists when Microsoft Windows fails to properly handle cabinet files.To exploit the vulnerability, an attacker would have to convince a user to either open a specially crafted cabinet file or spoof a network printer and trick a user into installing a maliciou...

8.8CVSS7.9AI score0.59518EPSS
Exploits0
OSV
OSV
added 2024/05/03 3:16 a.m.4 views

CVE-2023-51603

Honeywell Saia PG5 Controls Suite CAB File Parsing Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Honeywell Saia PG5 Controls Suite. User interaction is required to exploit this vulnerabili...

8.8CVSS6.2AI score0.01572EPSS
Exploits0References1
OSV
OSV
added 2023/08/08 5:15 p.m.5 views

CVE-2023-37646

An issue in the CAB file extraction function of Bitberry File Opener v23.0 allows attackers to execute a directory traversal...

7.8CVSS5.9AI score
Exploits0References2
CNNVD
CNNVD
added 2023/08/08 12:0 a.m.5 views

Bitberry File Opener Path Traversal Vulnerability

Bitberry File Opener is a free file opening tool from Bitberry. The main purpose of this tool is to allow users to easily open, view, and work with a variety of different file types without having to install and run several different applications. A security vulnerability exists in Bitberry File...

7.8CVSS6.7AI score0.00424EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:18 a.m.6 views

SUSE CVE-2005-1923

The ENSUREBITS macro in mszipd.c for Clam AntiVirus ClamAV 0.83, and other versions vefore 0.86, allows remote attackers to cause a denial of service CPU consumption by infinite loop via a cabinet CAB file with the cffileFolderOffset field set to 0xff, which causes a zero-length read...

2.6CVSS6.8AI score0.01615EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:9 a.m.4 views

SUSE CVE-2007-6336

Off-by-one error in ClamAV before 0.92 allows remote attackers to execute arbitrary code via a crafted MS-ZIP compressed CAB file...

6.8CVSS9.3AI score0.04215EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:53 a.m.2 views

SUSE CVE-2016-10350

The archivereadformatcabreadheader function in archivereadsupportformatcab.c in libarchive 3.2.2 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted file...

5.5CVSS6.9AI score0.01605EPSS
Exploits0References7
The Hacker News
The Hacker News
added 2023/01/13 11:26 a.m.2 views

Cybercriminals Using Polyglot Files in Malware Distribution to Fly Under the Radar

Remote access trojans such as StrRAT and Ratty are being distributed as a combination of polyglot and malicious Java archive JAR files, once again highlighting how threat actors are continuously finding new ways to fly under the radar. "Attackers now use the polyglot technique to confuse security...

6.4AI score
Exploits0
0day.today
0day.today
added 2021/04/08 12:0 a.m.53 views

Check Point Identity Agent Arbitrary File Write Vulnerability

Check Point Identity Agent Arbitrary File Write Vulnerability Description =========== The Check Point Identity Agent allows low privileged users to write files to protected locations of the file system. Details ======= Advisory ID: usd-2021-0005 Product: Check Point Identity Agent Affected Versio...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/04/08 12:0 a.m.563 views

Check Point Identity Agent Arbitrary File Write

Advisory: Privileged File Write Description =========== The Check Point Identity Agent allows low privileged users to write files to protected locations of the file system. Details ======= Advisory ID: usd-2021-0005 Product: Check Point Identity Agent Affected Version: R81.018.0000 Vulnerability...

0.3AI score
Exploits0
OSV
OSV
added 2020/08/21 9:15 p.m.3 views

CVE-2020-10126

NCR SelfServ ATMs running APTRA XFS 05.01.00 do not properly validate softare updates for the bunch note acceptor BNA, enabling an attacker with physical access to internal ATM components to restart the host computer and execute arbitrary code with SYSTEM privileges because while booting, the...

7.6CVSS7.4AI score0.00279EPSS
Exploits0References3
CNVD
CNVD
added 2020/06/10 12:0 a.m.9 views

Microsoft Windows and Windows Server Remote Code Execution Vulnerability (CNVD-2021-29544)

Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. A remote code execution vulnerability exists in Microsoft Windows and Windows Server, whic...

8.8CVSS8.9AI score0.59518EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2020/04/28 3:30 p.m.51 views

Low: Red Hat Security Advisory: libmspack security and bug fix update

An update for libmspack is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the C...

5.5CVSS6.9AI score0.01464EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2019/08/30 12:0 a.m.45 views

CentOS 7 : libmspack (CESA-2019:2049)

An update for libmspack is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

6.5CVSS6.6AI score0.03086EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2019/08/13 12:0 a.m.2 views

PT-2019-3028 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: A security feature bypass exists when Windows incorrectly validates CAB file signatures, allowing an attacker to inject code into a CAB file without invalidating the file's signature. To...

5.5CVSS8.3AI score0.01485EPSS
Exploits0References5
Rows per page
Query Builder