Command Execution Vulnerability in RG-UAC 6000-E50C at Beijing StarNet Ruijie Network Technology Co.

Ruijie Networks, founded in 2003, is an industry-leading provider of network infrastructure and solutions. A command execution vulnerability exists in the RG-UAC 6000-E50C of Beijing StarNet Ruijie Network Technology Company Limited, which can be exploited by an attacker to execute arbitrary...

Command Execution Vulnerability in Electronic Document Security Management System of Beijing Yisaitong Technology Development Co.

Electronic document security management system is an electronic document security protection software, the system utilizes the driver layer transparent encryption technology, through the encryption protection of electronic documents, to prevent internal staff leakage and external personnel to...

Siemens Simcenter Femap Out-of-Bounds Write Vulnerability (CNVD-2024-09334)

Simcenter Femap is an advanced simulation application for creating, editing and checking finite element models of complex products or systems. An out-of-bounds write vulnerability exists in Siemens Simcenter Femap, which can be exploited by an attacker to execute code in the context of the curren...

Siemens Simcenter Femap Out-of-Bounds Write Vulnerability (CNVD-2024-09330)

Simcenter Femap is an advanced simulation application for creating, editing and checking finite element models of complex products or systems. An out-of-bounds write vulnerability exists in Siemens Simcenter Femap, which can be exploited by an attacker to execute code in the context of the curren...

Siemens Simcenter Femap Out-of-Bounds Read Vulnerability (CNVD-2024-09331)

Simcenter Femap is an advanced simulation application for creating, editing and checking finite element models of complex products or systems. An out-of-bounds read vulnerability exists in Siemens Simcenter Femap, which can be exploited by an attacker to execute code in the context of the current...

Mozilla Firefox 安全漏洞

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A code execution vulnerability exists in Mozilla Firefox, which can be exploited by attackers to execute arbitrary code or cause a denial of service on a vulnerable system using unknown attack vectors...

CVE-2023-40057 SolarWinds Access Rights Manager (ARM) Deserialization of Untrusted Data Remote Code Execution

The SolarWinds Access Rights Manager was found to be susceptible to a Remote Code Execution Vulnerability. If exploited, this vulnerability allows an authenticated user to abuse a SolarWinds service resulting in remote code execution...

CVE-2024-21375

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability...

CVE-2024-21360

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability...

CVE-2024-21352

Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability...

CVE-2024-21352 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

...

Description of the security update for PowerPoint 2016: February 13, 2024 (KB5002495)

Description of the security update for PowerPoint 2016: February 13, 2024 KB5002495 Summary This security update resolves a Microsoft Office remote code execution vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2024-20673. Note: To appl...

Description of the security update for Office 2016: February 13, 2024 (KB5002519)

Description of the security update for Office 2016: February 13, 2024 KB5002519 Summary This security update resolves a Microsoft Outlook remote code execution vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2024-21413. Note: To apply...

The vulnerability of the QTS, QuTS hero, and QuTScloud operating systems for QNAP network devices stems from the lack of measures to neutralize special elements, allowing attackers to execute arbitrary commands.

The vulnerability of the QTS, QuTS hero, and QuTScloud operating systems for QNAP network devices is related to the lack of measures taken to neutralize specific elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

Command Execution Vulnerability in Electronic Document Security Management System of Beijing Yisetong Technology Development Co., Ltd (CNVD-2024-14912)

Electronic document security management system is an electronic document security protection software, the system utilizes the driver layer transparent encryption technology, through the encryption protection of electronic documents, to prevent internal staff leakage and external personnel to...

Design/Logic Flaw

Hardy Barth cPH2 eCharge Ladestation v1.87.0 and earlier is vulnerable to Execution with Unnecessary Privileges...

CVE-2023-6229

Buffer overflow in CPCA PDL Resource Download process of Office Multifunction Printers and Laser Printers which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code.: Satera LBP670C Series/Satera MF750C Series firmware v03.07...

CVE-2023-45037 QTS, QuTS hero, QuTScloud

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...

CVE-2023-45035 QTS, QuTS hero, QuTScloud

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...

CVE-2023-41275 QTS, QuTS hero, QuTScloud

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...