Heap overflow

A code execution vulnerability exists in the DLDxf::handleLWPolylineData functionality of Ribbonsoft dxflib 3.17.0. A specially-crafted .dxf file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

CVE-2020-35635

A code execution vulnerability exists in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1 in NefS2/SNCioparser.h SNCioparser::readsface storesmboundaryitem Sloopof OOB read. A specially crafted malformed file can lead to an out-of-bounds read and type confusion, which could lead t...

CVE-2021-26084

In affected versions of Confluence Server and Data Center, an OGNL injection vulnerability exists that would allow an unauthenticated attacker to execute arbitrary code on a Confluence Server or Data Center instance. The affected versions are before version 6.13.23, from version 6.14.0 before...

(0Day) Fuji Electric Tellus Lite V9 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fuji Electric Tellus Lite. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

Microsoft Exchange ProxyShell Remote Code Execution Exploit

This Metasploit module exploits a vulnerability on Microsoft Exchange Server that allows an attacker to bypass the authentication, impersonate an arbitrary user, and write an arbitrary file to achieve remote code execution. By taking advantage of this vulnerability, you can execute arbitrary...

Remote code execution

A remote code execution RCE vulnerability in /root/run/adm.php?admin-ediy&part=exdiy of imcat v5.1 allows authenticated attackers to execute arbitrary code...

Exploit for Server-Side Request Forgery in Microsoft

CVE-2021-34473 CVE-2021-34473 Microsoft Exchange Server Remote...

Microsoft Word Code Execution Vulnerability (CNVD-2025-17493)

Microsoft Word is a word processing software in the Office suite of the American Microsoft Microsoft. A code execution vulnerability exists in Microsoft Word, which can be exploited by an attacker to execute arbitrary code on a system...

The vulnerability of the client_upgrade_edition.php and Upgrade.php components of the QibosoftX1 content management system, related to improper code generation, allows a hacker to execute arbitrary PHP code.

The vulnerability of the clientupgradeedition.php and Upgrade.php components of the QibosoftX1 content management system is related to improper code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary PHP code...

Remote Code Execution (RCE)

chromium is vulnerable to remote code execution. The vulnerability exists due to a use after free in the dialog box handling on Windows component of the Chromium...

IBM i2 iBase 代码问题漏洞

IBM i2 iBase is a data analysis application from IBM Corporation. The software provides flexible data acquisition and visualization tools for data analysis. i2 iBase has a code execution vulnerability that can be exploited by attackers to execute arbitrary code on the system...

CVE-2019-20467

An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices. The device by default has a TELNET interface available which is not advertised or functionally used, but is nevertheless available. Two backdoor accounts root and default exist that can be used on this...

D-LINK DIR-3040 Trust Management Issue Vulnerability

The D-Link DIR-3040 is a router from AUO D-Link of Taiwan, China. It provides the function of connecting to a network. A trust management issue vulnerability exists in Libcli for D-LINK DIR-3040 1.13B03, which stems from a specially designed network request can lead to code execution. No detailed...

Siemens Solid Edge Heap Buffer Overflow Vulnerability

Siemens Solid Edge is a group of software tools for dealing with various product development processes: 3D design, simulation, manufacturing and design management. A heap buffer overflow vulnerability exists in Siemens Solid Edge. In the affected application, the PLMXMLADATESE70.DLL library lacks...

OPENSUSE-SU-2021:1995-1 Security update for xstream

This update for xstream fixes the following issues: Upgrade to 1.4.17 - CVE-2021-29505: Fixed potential code execution when unmarshalling with XStream instances using an uninitialized security framework bsc1186651...

OPENSUSE-SU-2021:1024-1 Security update for openscad

This update for openscad fixes the following issues: - CVE-2020-28600: A specially crafted STL file could lead to code execution via out-of-bounds write in importstl.cc:importstl bsc1185975...

Microsoft Windows Print Spooler Code Execution Vulnerability

Windows Print Spooler is a printer background handler for Windows. A code execution vulnerability exists in Microsoft Windows Print Spooler due to a Windows Print Spooler RpcAddPrinterDriverEx Failure to Properly Execute Privileged File Vulnerability, which allows remote attackers to exploit the...

Microsoft 3D Viewer 3MF Code Execution Vulnerability

Microsoft 3D Viewer is a 3D modeling tool developed by Microsoft. A use-after-release vulnerability exists in Microsoft 3D Viewer 3MF processing, which can be exploited by an attacker to submit a special file request that can be tricked into being parsed by the user, which can cause the applicati...

SUSE-SU-2021:1995-1 Security update for xstream

This update for xstream fixes the following issues: Upgrade to 1.4.17 - CVE-2021-29505: Fixed potential code execution when unmarshalling with XStream instances using an uninitialized security framework bsc1186651...

MGASA-2021-0263 Updated gsoap packages fix security vulnerabilities

A denial-of-service vulnerability exists in the WS-Security plugin functionality of Genivia gSOAP 2.8.107. A specially crafted SOAP request can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability CVE-2020-13574. A denial-of-service vulnerability exists in...