Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

FireEye
FireEyeadded 2020/11/19 12:0 a.m.375 views

Purgalicious VBA: Macro Obfuscation With VBA Purging

Malicious Office documents remain a favorite technique for every type of threat actor, from red teamers to FIN groups to APTs. In this blog post, we will discuss "VBA Purging", a technique we have increasingly observed in the wild and that was first publicly documented by Didier Stevens in Februa...

7.1AI score
Exploits0References16
IBM Security Bulletins
IBM Security Bulletinsadded 2018/06/16 8:5 p.m.32 views

Security Bulletin: IBM WebSphere Dashboard Framework is affected by multiple security vulnerabilities in Apache POI

Summary Apache POI, which is bundled with IBM WebSphere Dashboard Framework, is vulnerable to denial of service attacks and could allow a remote attacker to obtain sensitive information. Vulnerability Details IBM WebSphere Dashboard Framework WDF bundles a copy of Apache POI, which is used by the...

5CVSS0.5AI score0.13063EPSS
Exploits0Affected Software1
Talos
Talosadded 2017/09/11 12:0 a.m.50 views

FreeXL BIFF Dimension Marker Code Execution Vulnerability

Summary An exploitable heap-based buffer overflow vulnerability exists in the readlegacybiff function of FreeXL 1.0.3. A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An attacker can send malicious XLS file to trigger this vulnerability. Tested...

8.8CVSS8.9AI score0.02235EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2014/06/13 12:0 a.m.32 views

openSUSE Security Update : jakarta-poi (openSUSE-SU-2012:0654-1)

Specially crafted CDF/CFBF files could trigger an out of memory condition %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openSUSE-2012-292. The text description of this plugin is C SUSE LLC...

5CVSS6.2AI score0.13063EPSS
Exploits0References3
Prion
Prionadded 2012/08/07 9:55 p.m.15 views

Format string

The UnhandledDataStructure function in hwpf/model/UnhandledDataStructure.java in Apache POI 3.8 and earlier allows remote attackers to cause a denial of service OutOfMemoryError exception and possibly JVM destabilization via a crafted length value in a Channel Definition Format CDF or Compound Fi...

5CVSS7AI score0.13063EPSS
Exploits0References10Affected Software1
CVE
CVEadded 2012/08/07 9:0 p.m.96 views

CVE-2012-0213

The CVE-2012-0213 vulnerability resides in Apache POI 3.8 and earlier, specifically UnhandledDataStructure.java, where crafted CDF/CFBF data can cause a denial of service (OutOfMemoryError). IBM and vendor advisories consistently tie this CVE to Apache POI loaded in IBM QRadar SIEM and related IB...

5CVSS5.5AI score0.13063EPSS
Exploits0References10Affected Software1
Rows per page
Query Builder