CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

Zero Day Initiative•added 2025/05/02 12:0 a.m.•12 views

MATE Desktop Atril Document Viewer CBT File Parsing Argument Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of MATE Desktop Atril Document Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

7.8CVSS7.2AI score

Exploits0References2

ATTACKERKB•added 2024/05/03 3:16 a.m.•2 views

CVE-2023-44452

Linux Mint Xreader CBT File Parsing Argument Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Linux Mint Xreader. User interaction is required to exploit this vulnerability in that the target must visi...

7.8CVSS6.3AI score0.20665EPSS

Exploits1References3Affected Software1

OSV•added 2024/05/03 3:16 a.m.•18 views

CVE-2023-44452

7.8CVSS8AI score

Exploits0References2

NVD•added 2024/05/03 3:16 a.m.•15 views

CVE-2023-44452

7.8CVSS8.1AI score0.20665EPSS

Exploits1References2

Vulnrichment•added 2024/05/03 2:14 a.m.•17 views

CVE-2023-44452 Linux Mint Xreader CBT File Parsing Argument Injection Remote Code Execution Vulnerability

7.8CVSS7.7AI score0.20665EPSS

Exploits1References2

Cvelist•added 2024/05/03 2:14 a.m.•17 views

CVE-2023-44452 Linux Mint Xreader CBT File Parsing Argument Injection Remote Code Execution Vulnerability

7.8CVSS8.3AI score0.20665EPSS

Exploits1References2

UbuntuCve•added 2024/05/03 12:0 a.m.•22 views

CVE-2023-44452

7.8CVSS7.8AI score0.20665EPSS

Exploits1References6

GithubExploit•added 2024/01/17 9:26 a.m.•633 views

Exploit for Argument Injection in Linuxmint Xreader

CVE-2023-44452, CVE-2023-51698: Linux Mint Xreader/MATE Atril...

9.6CVSS8.3AI score0.20665EPSS

Exploits2

SUSE CVE•added 2023/12/22 2:15 a.m.•5 views

SUSE CVE-2023-44452

7.8CVSS7.7AI score0.20665EPSS

Exploits1References3

Exploit DB•added 2019/02/11 12:0 a.m.•76 views

Evince - CBT File Command Injection (Metasploit)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rex/zip' class MetasploitModule 'Evince CBT File Command Injection', 'Description' = %q This module exploits a command injection vulnerability in Evince before...

7.8CVSS7.7AI score0.76136EPSS

Exploits9

Packet Storm•added 2019/02/07 12:0 a.m.•29 views

Evince CBT File Command Injection

6.8CVSS0.4AI score0.76136EPSS

Exploits9

Metasploit•added 2019/02/03 5:38 a.m.•61 views

Evince CBT File Command Injection

This module exploits a command injection vulnerability in Evince before version 3.24.1 when opening comic book .cbt files. Some file manager software, such as Nautilus and Atril, may allow automatic exploitation without user interaction due to thumbnailer preview functionality. Note that limited...

7.8CVSS0.3AI score0.76136EPSS

Exploits9

Tenable Nessus•added 2017/12/26 12:0 a.m.•15 views

SUSE SLED12 / SLES12 Security Update : evince (SUSE-SU-2017:3428-1)

This update for evince fixes the following issues: Security issue fixed : - CVE-2017-1000083: Remove support for tar and tar-like commands in comics backend bsc1046856. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenab...

7.8CVSS6.9AI score0.76136EPSS

Exploits9References4

RedhatCVE•added 2017/07/13 12:19 p.m.•29 views

CVE-2017-1000083

It was found that evince did not properly sanitize the command line which is run to untar Comic Book Tar CBT files, thereby allowing command injection. A specially crafted CBT file, when opened by evince or evince-thumbnailer, could execute arbitrary commands in the context of the evince program...

7.8CVSS4.2AI score0.76136EPSS

Exploits9References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by