2 matches found
CVE-2024-13049
Ashlar-Vellum Cobalt XE is affected by a type confusion in the XE file parser caused by insufficient validation of user-supplied data. This vulnerability can allow code execution in the context of the target process, requiring user interaction (e.g., viewing a malicious page or file). Multiple so...
CVE-2024-13049 Ashlar-Vellum Cobalt XE File Parsing Type Confusion Remote Code Execution Vulnerability
Ashlar-Vellum Cobalt XE File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must visit...