Kofax Power PDF Out-of-Bounds Read Vulnerability (CNVD-2024-33725)

Kofax Power PDF is a professional PDF editing and management software from Kofax. Kofax Power PDF suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to execute arbitrary code...

Code execution vulnerability in multiple Mozilla products (CNVD-2024-34588)

Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox the web browser.Mozilla Thunderbird is a suite of email client software separate from the Mozilla Application Suite. A code execution vulnerability exists in multiple Mozilla products, whic...

Adobe Premiere Pro Untrusted Search Path Vulnerability

Adobe Premiere Pro is a set of non-linear editing video editing software from the American company Audobee Adobe. An untrusted search path vulnerability exists in Adobe Premiere Pro, which can be exploited by an attacker to execute code in the context of the current user...

D-Link DAP-2622 Buffer Overflow Vulnerability (CNVD-2024-32560)

The D-Link DAP-2622 is a wireless access point Access Point device from China's D-Link. The D-Link DAP-2622 suffers from a buffer overflow vulnerability that can be exploited by an attacker to execute code in the root context...

Kofax Power PDF Out-of-Bounds Write Vulnerability (CNVD-2024-33727)

Kofax Power PDF is a professional PDF editing and management software from Kofax. Kofax Power PDF suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to execute arbitrary code...

NETGEAR Routers Code Execution Vulnerability

NETGEAR Routers is a series of routers from NETGEAR. A code execution vulnerability exists in NETGEAR Routers that can be exploited by an attacker to execute arbitrary code...

NETGEAR ProSAFE Arbitrary File Upload Vulnerability

NETGEAR ProSAFE is a network management system from NETGEAR. An arbitrary file upload vulnerability exists in NETGEAR ProSAFE, which can be exploited by an attacker to execute arbitrary code...

Kofax Power PDF Buffer Overflow Vulnerability (CNVD-2024-33729)

Kofax Power PDF is a professional PDF editing and management software from Kofax. Kofax Power PDF suffers from a buffer overflow vulnerability that can be exploited by an attacker to execute arbitrary code...

Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to a code execution vulnerability in Node.js IP package (CVE-2023-42282)

Summary Potential code execution vulnerability in Node.js IP package CVE-2023-42282 has been identified that could affect IBM Watson Assistant for IBM Cloud Pak for Data. The vulnerability has been addressed. Refer to details for additional information. Vulnerability Details CVEID:CVE-2023-42282...

Siemens JT Open and PLM Stack Buffer Overflow Vulnerability

The Siemens JT Open Toolkit Siemens JTTK is a C++ application programming interface API from Siemens, Germany.The PLM XML SDK is a lightweight, flexible mechanism for product data transfer. It supports an adapter-based approach to transform data from any source into an XML representation. A stack...

IBM WebSphere Application Server Code Execution Vulnerability (CNVD-2024-31485)

IBM WebSphere Application Server is an application server product from International Business Machines IBM. A code execution vulnerability exists in IBM WebSphere Application Server, which can be exploited by an attacker to execute arbitrary code on the system...

Siemens Simcenter Femap Out-of-Bounds Read Vulnerability (CNVD-2024-31240)

Siemens Simcenter Femap is a cutting-edge engineering simulation application from Siemens. It is used to create, edit and import/reuse mesh-based finite element analysis models of complex products or systems. Siemens Simcenter Femap suffers from an out-of-bounds read vulnerability that can be...

Siemens Teamcenter Visualization and JT2Go Out-of-Bounds Read Vulnerability (CNVD-2024-31244)

Siemens Teamcenter Visualization is a software that provides teamwork capabilities for designing 2D and 3D scenarios.Siemens JT2Go is a JT file viewer. An out-of-bounds read vulnerability exists in Siemens Teamcenter Visualization and JT2Go, which can be exploited by an attacker to execute code i...

CVE-2024-37327

SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability...

CVE-2024-37322

SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability...

July 9, 2024-Security Only Update for .NET Framework 3.5.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2008 R2 SP1 (KB5041026)

July 9, 2024-Security Only Update for .NET Framework 3.5.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2008 R2 SP1 KB5041026 Revised July 30, 2024: Add breaking change information to known issue section. Applies to: Microsoft .NET Framework 3.5.1 Microsoft .NET Framework 4.6.2 Microsoft .NE...

CVE-2024-27709

SQL Injection vulnerability in Eskooly Web Product v.3.0 allows a remote attacker to execute arbitrary code via the searchby parameter of the allstudents.php component and the id parameter of the requestmanager.php component...

Splunk Enterprise Code Execution Vulnerability

Splunk is a suite of data collection and analysis software from Splunk, Inc. in the United States. The software is primarily used to collect, index and analyze and the data it generates, including data generated by all IT systems and infrastructures physical, virtual machines and cloud. A code...

Debian dsa-5725 : znc - security update

The remote Debian 11 / 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5725 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5725-1 [email protected] https://www.debian.org/security/...

SONY XAV-AX5500 Code Execution Vulnerability

The SONY XAV-AX5500 is a 7-inch in-vehicle center console with a wide range of functions and advanced technical features. A code execution vulnerability exists in the SONY XAV-AX5500 that stems from a lack of proper validation of software update packages and can be exploited by an attacker to...