CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2024/04/10 5:15 p.m.•11 views

CVE-2024-1602

parisneo/lollms-webui is vulnerable to stored Cross-Site Scripting XSS that leads to Remote Code Execution RCE. The vulnerability arises due to inadequate sanitization and validation of model output data, allowing an attacker to inject malicious JavaScript code. This code can be executed within t...

8.8CVSS8.3AI score0.00724EPSS

Exploits1References1

CNNVD•added 2024/04/10 12:0 a.m.•4 views

lollms-webui 安全漏洞

LoLLMs is a Web UI for a large language multi-model system by the individual developer Saifeddine ALOUI. A security vulnerability exists in lollms-webui that stems from inadequate cleaning and validation of model output data...

8.8CVSS8.7AI score0.00724EPSS

Exploits1References2

CNNVD•added 2024/04/08 12:0 a.m.•3 views

Huawei HarmonyOS 安全漏洞

7.5CVSS6.5AI score0.00337EPSS

Exploits0References3

CNNVD•added 2024/04/08 12:0 a.m.•3 views

Huawei HarmonyOS 安全漏洞

5.3CVSS6.5AI score0.00118EPSS

Exploits0References3

CNNVD•added 2024/04/08 12:0 a.m.•4 views

Huawei HarmonyOS 安全漏洞

7.5CVSS6.5AI score0.00337EPSS

Exploits0References3

NVD•added 2024/04/03 5:15 p.m.•15 views

CVE-2024-27346

Kofax Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must...

5.5CVSS3.3AI score0.00396EPSS

OSV•added 2024/04/03 5:15 p.m.•1 views

CVE-2024-27342

Kofax Power PDF PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS6.2AI score0.00421EPSS

NVD•added 2024/04/03 5:15 p.m.•10 views

CVE-2024-27338

Kofax Power PDF app response Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a...

NVD•added 2024/04/03 5:15 p.m.•10 views

CVE-2024-27339

Vulnrichment•added 2024/04/03 4:21 p.m.•17 views

CVE-2024-30323 Foxit PDF Reader template Out-Of-Bounds Read Remote Code Execution Vulnerability

Foxit PDF Reader template Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a maliciou...

7.8CVSS8AI score0.00862EPSS

Cvelist•added 2024/04/03 4:21 p.m.•18 views

CVE-2024-30323 Foxit PDF Reader template Out-Of-Bounds Read Remote Code Execution Vulnerability

7.8CVSS8.2AI score0.00862EPSS

CVE•added 2024/04/03 4:19 p.m.•62 views

CVE-2024-27343

CVE-2024-27343 affects Kofax Power PDF: the vulnerability is a PDF file parsing Out-Of-Bounds Read that arises from insufficient validation of user-supplied data, causing a read past the end of an allocated object and potential information disclosure. Impact is information disclosure; exploitatio...

5.5CVSS3.3AI score0.00406EPSS

Exploits0References1Affected Software1

CVE•added 2024/04/03 4:19 p.m.•51 views

CVE-2024-27342

CVE-2024-27342 affects Kofax Power PDF. The vulnerability lies in the PDF file parsing code where insufficient validation allows a write past the end of an allocated buffer, enabling a remote attacker to execute arbitrary code in the context of the current process. Exploitation requires user inte...

Exploits0References1Affected Software1

Cvelist•added 2024/04/03 4:18 p.m.•19 views

CVE-2024-27339 Kofax Power PDF PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

7.8CVSS8.2AI score0.00421EPSS

Vulnrichment•added 2024/04/03 4:18 p.m.•12 views

CVE-2024-27338 Kofax Power PDF app response Out-Of-Bounds Read Remote Code Execution Vulnerability

7.8CVSS7.5AI score0.00421EPSS

CVE•added 2024/04/03 4:18 p.m.•61 views

CVE-2024-27337

CVE-2024-27337 concerns Kofax Power PDF. The vulnerability is a stack-based buffer overflow in the TIF file parsing code caused by insufficient validation of the length of user-supplied data before copying into a fixed-length buffer. This may allow remote code execution in the context of the proc...

7.8CVSS8AI score0.00415EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2024/04/03 4:17 p.m.•19 views

CVE-2024-27335 Kofax Power PDF PNG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

Kofax Power PDF PNG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a...

CNNVD•added 2024/04/03 12:0 a.m.•2 views

Kofax Power PDF 安全漏洞

Kofax Power PDF is a professional PDF editing and management software from Kofax. A security vulnerability exists in Kofax Power PDF that stems from a specific flaw in the handling of PNG files that lacks proper validation of user-supplied data, allowing a remote attacker to execute arbitrary cod...

CNNVD•added 2024/04/03 12:0 a.m.•3 views

Kofax Power PDF 安全漏洞

Kofax Power PDF is a professional PDF editing and management software from Kofax. A security vulnerability exists in Kofax Power PDF that stems from a specific flaw in the parsing of PDF files that lacks proper validation of user-supplied data, allowing a remote attacker to read sensitive...

3.3CVSS4.2AI score0.00377EPSS