CVE-2024-11526 IrfanView CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

IrfanView CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page...

CVE-2024-11530 IrfanView CGM File Parsing Memory Corruption Remote Code Execution Vulnerability

IrfanView CGM File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page ...

CVE-2024-11579 Luxion KeyShot OBJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

Luxion KeyShot OBJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Luxion KeyShot. User interaction is required to exploit this vulnerability in that the target must visit a...

CVE-2024-5511

Kofax Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a...

CVE-2024-5512

Kofax Power PDF JP2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must...

CVE-2024-5511

Kofax Power PDF JP2 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a...

CVE-2024-5510

CVE-2024-5510 affects Kofax Power PDF, specifically JP2 file parsing. The vulnerability stems from improper validation of user-supplied data, causing a read past the end of an allocated object (out-of-bounds read). An attacker can achieve remote code execution in the context of the affected proce...

Hugging Face Transformers 代码问题漏洞

Hugging Face Transformers is advanced natural language processing built for Jax, PyTorch and TensorFlow. A code issue vulnerability exists in Hugging Face Transformers that stems from improper data validation in the parsing of model files, which could lead to untrusted data deserialization and...

Luxion KeyShot 缓冲区错误漏洞

Luxion KeyShot is a software for designing photographs of 3D scenes from Luxion, USA. The software allows real-time 3D rendering workflows to display results immediately and reduce the time required to create photorealistic product photos. Luxion KeyShot suffers from a buffer error vulnerability...

Luxion KeyShot 缓冲区错误漏洞

Luxion KeyShot is a software for designing photographs of 3D scenes from Luxion, USA. The software allows real-time 3D rendering workflows to display results immediately and reduce the time required to create photorealistic product photos. Luxion KeyShot suffers from a buffer error vulnerability...

Allegra 代码问题漏洞

Allegra is a project management software for mid-sized organizations from Allegra, Inc. Allegra suffers from a code issue vulnerability that stems from a lack of proper validation of user-supplied data. An attacker can exploit the vulnerability to execute arbitrary code...

Allegra 代码问题漏洞

Allegra is a project management software for mid-sized organizations from Allegra, Inc. Allegra suffers from a code issue vulnerability that stems from a lack of proper validation of user-supplied data. An attacker can exploit the vulnerability to execute arbitrary code...

Hugging Face Transformers 代码问题漏洞

Hugging Face Transformers is advanced natural language processing built for Jax, PyTorch and TensorFlow. A code issue vulnerability exists in Hugging Face Transformers that stems from improper data validation in model file processing, which could lead to untrusted data deserialization and allow a...

D-Link DI-8100 Buffer Overflow Vulnerability

The D-Link DI-8100 is a wireless broadband router designed for small to medium-sized network environments from China's D-Link. The D-Link DI-8100 suffers from a buffer overflow vulnerability that originates from the ippositionasp function failing to properly validate the length and size of the...

IrfanView DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DXF files...

Siemens Tecnomatix Plant Simulation WRL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel suffers from an out-of-bounds read vulnerability that stems from a lack of proper validation of user-supplied data, which can be exploited by an attacker to gain...

The vulnerability of the Zelio Soft 2 software for intelligent relays, related to incorrect validation of entered data, allows a perpetrator to cause service interruptions.

The vulnerability of the Zelio Soft 2 software for intelligent relays from Zelio Logic relates to incorrect validation of entered data. Exploiting this vulnerability can allow an attacker to cause a service failure by loading a specially created project file...

Linux kernel 缓冲区错误漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. The Linux Kernel suffers from an out-of-bounds read vulnerability that stems from a lack of proper validation of user-supplied data, which could be exploited by an attacker to...

Tenda AC10 Buffer Overflow Vulnerability (CNVD-2024-44853)

The Tenda AC10 is a wireless router from the Chinese company Tenda. A buffer overflow vulnerability exists in Tenda AC10 version 16.03.10.13, which originates from the parameter wpapskcrypto in the file /goform/WifiExtraSet that fails to correctly validate the length of the input data, and can be...