Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

25 matches found

Snyk
Snykadded 2026/05/12 7:23 p.m.37 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow due to improper bounds checking in memory operations. An attacker can execute arbitrary code or escalate privileges by supplying crafted input to the affected process. Remediation Upgrade...

8.3CVSS6.2AI score0.00416EPSS
Exploits0References2
Snyk
Snykadded 2026/05/12 7:23 p.m.6 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow due to improper bounds checking in memory operations. An attacker can execute arbitrary code or escalate privileges by supplying crafted input to the affected process. Remediation Upgrade...

8.3CVSS6.2AI score0.00416EPSS
Exploits0References2
Snyk
Snykadded 2026/05/12 7:22 p.m.7 views

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound due to improper validation of user-supplied input in the authentication process. An attacker can gain elevated privileges by providing crafted input during local interaction. Remediation Upgrade...

8.3CVSS5.8AI score0.00528EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.6 views

EUVD-2016-0969

Malware in sbrugna...

10CVSS9.1AI score0.05205EPSS
Exploits0References5
Snyk
Snykadded 2024/04/09 12:0 a.m.2 views

Improper Control of Generation of Code ('Code Injection')

Overview Affected versions of this package are vulnerable to Improper Control of Generation of Code 'Code Injection' due to improper handling of object lifecycles during the failure of CPimcManager object creation. An attacker can execute arbitrary code on the target system by convincing a user t...

7.3CVSS7.8AI score0.02513EPSS
Exploits0References2
Snyk
Snykadded 2024/04/09 12:0 a.m.1 views

Improper Control of Generation of Code ('Code Injection')

Overview Affected versions of this package are vulnerable to Improper Control of Generation of Code 'Code Injection' due to improper handling of object lifecycles during the failure of CPimcManager object creation. An attacker can execute arbitrary code on the target system by convincing a user t...

7.3CVSS7.8AI score0.02513EPSS
Exploits0References2
Snyk
Snykadded 2023/07/11 12:0 a.m.3 views

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE. A vulnerability exists in .NET applications where the diagnostic server can be exploited to achieve cross-session/cross-user elevation of privilege EoP and code execution. Remediation Upgrade...

8.1CVSS7.9AI score0.01976EPSS
Exploits0References2
Snyk
Snykadded 2023/07/11 12:0 a.m.4 views

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE. A vulnerability exists in .NET applications where the diagnostic server can be exploited to achieve cross-session/cross-user elevation of privilege EoP and code execution. Remediation Upgrade...

8.1CVSS7.9AI score0.01976EPSS
Exploits0References2
Snyk
Snykadded 2023/07/11 12:0 a.m.2 views

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE. A vulnerability exists in .NET applications where the diagnostic server can be exploited to achieve cross-session/cross-user elevation of privilege EoP and code execution. Remediation Upgrade...

8.1CVSS7.9AI score0.01976EPSS
Exploits0References2
Snyk
Snykadded 2023/06/14 12:0 a.m.2 views

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE. A vulnerability exists in how WPF applications load and render XPS documents which may result in remote code execution. Remediation Upgrade Microsoft.WindowsDesktop.App.Runtime.win-arm64 to version 6.0.18, 7.0...

7.8CVSS8.1AI score0.01058EPSS
Exploits0References2
Snyk
Snykadded 2023/06/14 12:0 a.m.1 views

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE. A vulnerability exists in how WPF applications load and render XPS documents which may result in remote code execution. Remediation Upgrade Microsoft.WindowsDesktop.App.Runtime.win-x86 to version 6.0.18, 7.0.7...

7.8CVSS8.1AI score0.01058EPSS
Exploits0References2
Snyk
Snykadded 2022/12/14 2:33 p.m.2 views

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE such that a malicious actor could cause a user to run arbitrary code as a result of parsing maliciously crafted xps files. Remediation Upgrade Microsoft.WindowsDesktop.App.Runtime.win-x86 to version 3.1.32,...

8.8CVSS7.9AI score0.0113EPSS
Exploits0References2
Snyk
Snykadded 2022/12/14 2:33 p.m.1 views

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE such that a malicious actor could cause a user to run arbitrary code as a result of parsing maliciously crafted xps files. Remediation Upgrade Microsoft.WindowsDesktop.App.Runtime.win-x64 to version 3.1.32,...

8.8CVSS7.9AI score0.0113EPSS
Exploits0References2
Snyk
Snykadded 2022/12/14 2:33 p.m.1 views

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE such that a malicious actor could cause a user to run arbitrary code as a result of parsing maliciously crafted xps files. Remediation Upgrade Microsoft.WindowsDesktop.App.Runtime.win-arm64 to version 6.0.12,...

8.8CVSS7.9AI score0.0113EPSS
Exploits0References2
BDU FSTEC
BDU FSTECadded 2021/07/27 12:0 a.m.3 views

The vulnerability of the Adobe Flash Player Desktop Runtime software, as well as FlashPlayer for Google Chrome, and Adobe FlashPlayer for Microsoft Edge and Internet Explorer, relates to the use of memory after it is freed. This allows a malicious actor to execute arbitrary code.

The vulnerability of the Adobe Flash Player Desktop Runtime, FlashPlayer for Google Chrome, as well as Adobe FlashPlayer for Microsoft Edge and Internet Explorer, is related to the use of memory after it is released. Exploiting this vulnerability allows a malicious actor to execute arbitrary code...

10CVSS8.3AI score0.06054EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTECadded 2021/02/16 12:0 a.m.6 views

The vulnerability of the Adobe Flash Player Desktop Runtime, FlashPlayer for Google Chrome, as well as Adobe FlashPlayer for Microsoft Edge and Internet Explorer, relates to the use of memory after it is released. This allows attackers to bypass security restrictions and execute arbitrary code.

The vulnerability of the Adobe Flash Player Desktop Runtime, FlashPlayer for Google Chrome, as well as Adobe FlashPlayer for Microsoft Edge and Internet Explorer, is related to the use of memory after it is released. Exploiting this vulnerability can allow a malicious actor to bypass security...

10CVSS8.4AI score0.0756EPSS
Exploits0References3Affected Software2
Kaspersky
Kasperskyadded 2019/04/09 12:0 a.m.44 views

KLA11465 Multiple vulnerabilities in Adobe Flash Player

Multiple vulnerabilities were found in Adobe Flash Player. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information. Below is a complete list of vulnerabilities: 1. Out-of-bounds read vulnerability can be exploited remotely to obtain sensitive...

10CVSS8.7AI score0.06376EPSS
Exploits0References6
RedHat Linux
RedHat Linuxadded 2019/02/14 4:3 a.m.3 views

flash-plugin: Information Disclosure vulnerability (APSB19-06)

Flash Player Desktop Runtime versions 32.0.0.114 and earlier, Flash Player for Google Chrome versions 32.0.0.114 and earlier, and Flash Player for Microsoft Edge and Internet Explorer 11 versions 32.0.0.114 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead t...

6.5CVSS5.8AI score0.04795EPSS
Exploits0References5
OSV
OSVadded 2017/06/27 8:29 p.m.2 views

UBUNTU-CVE-2016-0959

Use after free vulnerability in Adobe Flash Player Desktop Runtime before 20.0.0.267, Adobe Flash Player Extended Support Release before 18.0.0.324, Adobe Flash Player for Google Chrome before 20.0.0.267, Adobe Flash Player for Microsoft Edge and Internet Explorer 11 before 20.0.0.267, Adobe Flas...

9.8CVSS7.2AI score0.05205EPSS
Exploits0References4
Prion
Prionadded 2017/06/27 8:29 p.m.16 views

Design/Logic Flaw

Use after free vulnerability in Adobe Flash Player Desktop Runtime before 20.0.0.267, Adobe Flash Player Extended Support Release before 18.0.0.324, Adobe Flash Player for Google Chrome before 20.0.0.267, Adobe Flash Player for Microsoft Edge and Internet Explorer 11 before 20.0.0.267, Adobe Flas...

10CVSS6.9AI score0.05205EPSS
Exploits0References3Affected Software6
Rows per page
Query Builder