CVE-2024-47411

Adobe Animate versions 23.0.7, 24.0.4 and earlier are affected by CVE-2024-47411 (Access of Uninitialized Pointer), which could allow arbitrary code execution in the context of the current user. The vulnerability requires user interaction, as a victim must open a malicious file. The root cause is...

Adobe Acrobat < 20.005.30539 / 23.006.20380 Multiple Vulnerabilities (APSB23-54)

The version of Adobe Acrobat installed on the remote Windows host is a version prior to 20.005.30539 or 23.006.20380. It is, therefore, affected by multiple vulnerabilities. - Adobe Acrobat Reader versions 23.006.20360 and earlier and 20.005.30524 and earlier are affected by a Use After Free...

Adobe Reader < 20.005.30539 / 23.006.20380 Multiple Vulnerabilities (APSB23-54)

The version of Adobe Reader installed on the remote Windows host is a version prior to 20.005.30539 or 23.006.20380. It is, therefore, affected by multiple vulnerabilities. - Adobe Acrobat Reader versions 23.006.20360 and earlier and 20.005.30524 and earlier are affected by a Use After Free...

Adobe Acrobat < 20.005.30539 / 23.006.20380 Multiple Vulnerabilities (APSB23-54) (macOS)

The version of Adobe Acrobat installed on the remote macOS host is a version prior to 20.005.30539 or 23.006.20380. It is, therefore, affected by multiple vulnerabilities. - Adobe Acrobat Reader versions 23.006.20360 and earlier and 20.005.30524 and earlier are affected by a Use After Free...

Adobe Audition < 23.6.2 / 24.0.0 < 24.0.3 Multiple Vulnerabilities (APSB23-64) (macOS)

The version of Adobe Audition installed on the remote macOS host is prior to 23.6.2, 24.0.3. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB23-64 advisory. - Adobe Audition version 24.0 and earlier and 23.6.1 and earlier are affected by an Access of Uninitialized...

Adobe After Effects < 23.6.2 / 24.0.0 < 24.0.3 Multiple Vulnerabilities (APSB23-66)

The version of Adobe After Effects installed on the remote Windows host is prior to 23.6.2, 24.0.3. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB23-66 advisory. - Adobe After Effects version 24.0.2 and earlier and 23.6 and earlier are affected by an out-of-bound...

Adobe Media Encoder < 23.6.2 / 24.0.0 < 24.0.3 Multiple Vulnerabilities (APSB23-63) (macOS)

The version of Adobe Media Encoder installed on the remote macOS host is prior to 23.6.2, 24.0.3. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB23-63 advisory. - Adobe Media Encoder version 24.0.2 and earlier and 23.6 and earlier are affected by an out-of-bounds...

Adobe Bridge 13.x < 13.0.5 / 14.x < 14.0.1 Multiple Vulnerabilities (APSB23-57)

The version of Adobe Bridge installed on the remote macOS or Mac OS X host is prior to 13.0.5 or 14.0.1. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb23-57 advisory. - Adobe Bridge versions 13.0.4 and earlier and 14.0.0 and earlier are affected by an Access of...

Rockwell Automation Arena

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION : Low attack complexity Vendor : Rockwell Automation Equipment : Arena Vulnerabilities : Out-of-Bounds Read, Access of Uninitialized Pointer 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to execute...

CVE-2023-4508

A user able to control file input to Gerbv, between versions 2.4.0 and 2.10.0, can cause a crash and cause denial-of-service with a specially crafted Gerber RS-274X file...

CVE-2023-29178

A access of uninitialized pointer vulnerability CWE-824 in Fortinet FortiProxy version 7.2.0 through 7.2.3 and before 7.0.9 and FortiOS version 7.2.0 through 7.2.4 and before 7.0.11 allows an authenticated attacker to repetitively crash the httpsd process via crafted HTTP or HTTPS requests...

Null pointer dereference

A access of uninitialized pointer vulnerability CWE-824 in Fortinet FortiProxy version 7.2.0 through 7.2.3 and before 7.0.9 and FortiOS version 7.2.0 through 7.2.4 and before 7.0.11 allows an authenticated attacker to repetitively crash the httpsd process via crafted HTTP or HTTPS requests...

CVE-2023-29178

A access of uninitialized pointer vulnerability CWE-824 in Fortinet FortiProxy version 7.2.0 through 7.2.3 and before 7.0.9 and FortiOS version 7.2.0 through 7.2.4 and before 7.0.11 allows an authenticated attacker to repetitively crash the httpsd process via crafted HTTP or HTTPS requests...

CVE-2023-29178

CVE-2023-29178 affects Fortinet FortiProxy (and FortiOS) with an uninitialized pointer vulnerability (CWE-824) that allows a authenticated attacker to repeatedly crash the httpsd process via crafted HTTP/HTTPS requests. Affected versions include FortiProxy 7.2.0–7.2.3 and FortiOS 7.2.0–7.2.4 and ...

Fortinet Fortigate Access of uninitialized pointer in administrative interface API (FG-IR-23-095)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-23-095 advisory. - A access of uninitialized pointer vulnerability CWE-824 in Fortinet FortiProxy version 7.2.0 through 7.2.3 and before 7.0.9...

Fortinet Fortigate Access of NULL pointer in SSLVPNd (FG-IR-22-477)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-22-477 advisory. - An access of uninitialized pointer vulnerability CWE-824 in the SSL VPN portal of Fortinet FortiOS version 7.2.0 through...

CVE-2022-45861

CVE-2022-45861 describes an access of uninitialized pointer vulnerability (CWE-824) in the SSL VPN portal of Fortinet FortiOS (versions 7.2.0–7.2.3, 7.0.0–7.0.9, and before 6.4.11) and FortiProxy (7.2.0–7.2.1, 7.0.0–7.0.7, and before 2.0.11). A remote authenticated attacker could crash the sslvpn...

CVE-2022-45861

An access of uninitialized pointer vulnerability CWE-824 in the SSL VPN portal of Fortinet FortiOS version 7.2.0 through 7.2.3, version 7.0.0 through 7.0.9 and before 6.4.11 and FortiProxy version 7.2.0 through 7.2.1, version 7.0.0 through 7.0.7 and before 2.0.11 allows a remote authenticated...

Siemens JT Open Toolkit and Simcenter Femap

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low attack complexity Vendor: Siemens Equipment: JT Open Toolkit and Simcenter Femap Vulnerability: Access of Uninitialized Pointer 2. RISK EVALUATION Successful exploitation of this vulnerability could crash the application or lead to arbitrary code...

Protect

An access of uninitialized pointer vulnerability CWE-824 in the SSL VPN portal of FortiOS & FortiProxy may allow a remote unauthenticated or authenticated see Affected Products section attacker to crash the sslvpn daemon via an HTTP GET request...