Lucene search
K

355 matches found

OSV
OSV
added 2022/10/24 8:35 p.m.16 views

CVE-2022-29851

documentconverter in OX App Suite through 7.10.6, in a non-default configuration with ghostscript, allows OS Command Injection because file conversion may occur for an EPS document that is disguised as a PDF document...

9.8CVSS7.3AI score0.03596EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/10/24 8:35 p.m.26 views

CVE-2022-29851

documentconverter in OX App Suite through 7.10.6, in a non-default configuration with ghostscript, allows OS Command Injection because file conversion may occur for an EPS document that is disguised as a PDF document...

9.9AI score0.03596EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/10/24 8:35 p.m.8 views

CVE-2022-29851

documentconverter in OX App Suite through 7.10.6, in a non-default configuration with ghostscript, allows OS Command Injection because file conversion may occur for an EPS document that is disguised as a PDF document...

9.7AI score0.03596EPSS
Exploits0References1
CVE
CVE
added 2022/10/24 8:35 p.m.68 views

CVE-2022-29851

CVE-2022-29851 affects Open-Xchange OX App Suite up to v7.10.6. In a non-default configuration using ghostscript, documentconverter can perform OS command injection when converting an EPS file masquerading as a PDF. The vulnerability is tied to the EPS→PDF conversion path and non-default ghostscr...

9.8CVSS9.6AI score0.03596EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2022/10/13 12:0 a.m.20 views

SAP 3D Visual Enterprise Viewer .eps Denial of Service Vulnerability

SAP 3D Visual Enterprise Viewer is a 3D view viewer from SAP, Germany. The software supports the publishing of 2D and 3D scenes in all industry-standard desktop applications and supports separate installation as a stand-alone executable program and ActiveX space. A denial of service vulnerability...

7.8CVSS7.4AI score0.00218EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/10/11 9:15 p.m.2 views

CVE-2022-41193

Due to lack of proper memory management, when a victim opens a manipulated Encapsulated Post Script .eps, ai.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...

7.8CVSS6AI score0.00604EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2022/10/11 9:15 p.m.4 views

CVE-2022-41194

Due to lack of proper memory management, when a victim opens a manipulated Encapsulated Postscript .eps, ai.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until...

7.8CVSS5.8AI score0.00218EPSS
Exploits0References2
CVE
CVE
added 2022/10/11 12:0 a.m.58 views

CVE-2022-41193

SAP 3D Visual Enterprise Viewer 9 is affected by a memory-management vulnerability in EPS parsing (EPS/ai.x3d). The issue can trigger Remote Code Execution when a manipulated file from untrusted sources is opened, due to stack-based overflow or re-use of a dangling pointer. The vulnerability requ...

7.8CVSS7.9AI score0.00604EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/10/11 12:0 a.m.17 views

CVE-2022-41194

Due to lack of proper memory management, when a victim opens a manipulated Encapsulated Postscript .eps, ai.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until...

7.8AI score0.00218EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/10/11 12:0 a.m.24 views

CVE-2022-41193

Due to lack of proper memory management, when a victim opens a manipulated Encapsulated Post Script .eps, ai.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...

8.2AI score0.00604EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2022/09/19 12:0 a.m.16 views

Adobe Illustrator EPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe Illustrator. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS2.8AI score0.00351EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/09/19 12:0 a.m.21 views

Adobe InCopy EPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe InCopy. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing o...

3.3CVSS2.7AI score0.00355EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/09/19 12:0 a.m.19 views

Adobe Illustrator EPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe Illustrator. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS2.8AI score0.00351EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2022/09/19 12:0 a.m.22 views

Adobe InCopy EPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe InCopy. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing o...

3.3CVSS2.7AI score0.00355EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/09/16 5:14 p.m.24 views

CVE-2022-38407 Adobe InCopy EPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

Adobe InCopy version 17.3 and earlier and 16.4.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interactio...

5.5CVSS5.8AI score0.00355EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/09/16 5:0 p.m.20 views

CVE-2022-38410 Adobe Illustrator EPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

Adobe Illustrator versions 26.4 and earlier and 25.4.7 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...

5.5CVSS6AI score0.00351EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/09/16 5:0 p.m.21 views

CVE-2022-38409 Adobe Illustrator EPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

Adobe Illustrator versions 26.4 and earlier and 25.4.7 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user...

5.5CVSS6AI score0.00351EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/09/13 12:0 a.m.6 views

PT-2022-5156 · Adobe · Incopy

Name of the Vulnerable Software and Affected Versions: Adobe InCopy versions 17.3 and earlier Adobe InCopy versions 16.4.2 and earlier Description: The issue is related to an out-of-bounds read vulnerability in memory. This could allow an attacker to gain unauthorized access to protected...

5.5CVSS5.7AI score0.00355EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/09/13 12:0 a.m.5 views

PT-2022-5234 · Adobe · Incopy

Name of the Vulnerable Software and Affected Versions: Adobe InCopy versions 17.3 and earlier Adobe InCopy versions 16.4.2 and earlier Description: The issue is related to an out-of-bounds read that could lead to the disclosure of sensitive memory. An attacker could leverage this to bypass...

5.5CVSS5.2AI score0.00355EPSS
Exploits0References4
Zero Day Initiative
Zero Day Initiative
added 2022/07/07 12:0 a.m.20 views

SAP 3D Visual Enterprise Viewer EPS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of SAP 3D Visual Enterprise Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

7.8CVSS4.3AI score0.00623EPSS
Exploits0References2
Rows per page
Query Builder