Lucene search
K

130 matches found

Qualys Blog
Qualys Blog
added 2022/11/22 10:0 a.m.20 views

Ease Your Cybersecurity Maturity Model Certification Journey With Qualys

The Cybersecurity Maturity Model Certification CMMC is a cybersecurity training, certification, and assessment program from the United States Department of Defense DoD. CMMC is designed to provide increased assurance to the DoD that a contractor can adequately protect controlled unclassified...

0.2AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/08/30 4:0 p.m.20 views

How to prepare for CMMC compliance as a defense industrial base supplier using the Microsoft cloud

In 2020, the US Department of Defense DoD began the phased rollout of a new framework for protecting their supply chain, known as the defense industrial base DIB. This new Cybersecurity Maturity Model Certification1 CMMC system requires regular audits that will bolster the security of the DIB,...

0.1AI score
Exploits0
NVD
NVD
added 2021/01/12 3:15 p.m.32 views

CVE-2021-21456

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated DIB file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...

8.8CVSS5.6AI score0.01199EPSS
Exploits0References2
NVD
NVD
added 2021/01/12 3:15 p.m.34 views

CVE-2021-21455

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated DIB file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...

8.8CVSS5.6AI score0.01199EPSS
Exploits0References2
NVD
NVD
added 2021/01/12 3:15 p.m.25 views

CVE-2021-21460

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated DIB file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...

8.8CVSS5.6AI score0.01199EPSS
Exploits0References2
Prion
Prion
added 2021/01/12 3:15 p.m.16 views

Input validation

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated DIB file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...

6.8CVSS8.6AI score0.01199EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2021/01/12 3:15 p.m.12 views

Input validation

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated DIB file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...

6.8CVSS8.6AI score0.01199EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2021/01/12 3:15 p.m.21 views

Input validation

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated DIB file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...

6.8CVSS8.6AI score0.01199EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2021/01/12 2:40 p.m.51 views

CVE-2021-21456

SAP 3D Visual Enterprise Viewer (v9) is affected by a DIB file parsing vulnerability enabling out-of-bounds write and remote code execution. The root cause is improper validation of user-supplied data during DIB parsing, allowing an attacker to execute arbitrary code in the process context. Explo...

8.8CVSS8.6AI score0.01199EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/01/12 2:38 p.m.34 views

CVE-2021-21455

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated DIB file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...

4.3CVSS8.8AI score0.01199EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/01/12 2:38 p.m.24 views

CVE-2021-21460

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated DIB file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...

4.3CVSS8.8AI score0.01199EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2021/01/12 12:0 a.m.31 views

SAP 3D Visual Enterprise Viewer DIB File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of SAP 3D Visual Enterprise Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

7.8CVSS4.8AI score0.01199EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2021/01/12 12:0 a.m.30 views

SAP 3D Visual Enterprise Viewer DIB File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of SAP 3D Visual Enterprise Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

7.8CVSS5.7AI score0.01199EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2021/01/12 12:0 a.m.35 views

SAP 3D Visual Enterprise Viewer DIB File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of SAP 3D Visual Enterprise Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

7.8CVSS5.7AI score0.01199EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2020/09/10 12:0 a.m.43 views

SAP 3D Visual Enterprise Viewer DIB File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of SAP 3D Visual Enterprise Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

7.8CVSS4.6AI score0.01623EPSS
Exploits0References1
NVD
NVD
added 2020/09/09 1:15 p.m.32 views

CVE-2020-6360

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated DIB file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...

4.3CVSS0.01623EPSS
Exploits0References3
Prion
Prion
added 2020/09/09 1:15 p.m.17 views

Input validation

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated DIB file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...

4.3CVSS4.5AI score0.01623EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2020/09/09 12:55 p.m.28 views

CVE-2020-6360

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated DIB file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...

4.3CVSS4.6AI score0.01623EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2020/04/30 12:0 a.m.48 views

Microsoft Windows user32 DIB Scaling Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS1.1AI score0.01855EPSS
Exploits0References1
Veracode
Veracode
added 2020/04/10 12:20 a.m.24 views

Arbitrary Code Execution

imagemagick is vulnerable to arbitrary code execution. The vulnerability exists as an integer overflow flaw was found in ImageMagick's DIB parsing code. If a victim opened a specially-crafted DIB file, an attacker could potentially execute arbitrary code with the privileges of the user running...

7.8CVSS8.3AI score0.03093EPSS
Exploits2References27Affected Software1
Rows per page
Query Builder