Lucene search
K

44 matches found

OSV
OSV
added 2025/09/04 4:15 p.m.0 views

UBUNTU-CVE-2025-38698

In the Linux kernel, the following vulnerability has been resolved: jfs: Regular file corruption check The reproducer builds a corrupted file on disk with a negative isize value. Add a check when opening this file to avoid subsequent operation failures...

5.5CVSS5.9AI score0.00018EPSS
Exploits0References37
OSV
OSV
added 2025/07/08 9:15 p.m.0 views

CVE-2025-43583

Substance3D - Viewer versions 0.22 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption in service. Exploitation of this issue requires user...

5.5CVSS5.8AI score0.00101EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/04/07 8:42 a.m.4 views

gimp: psp integer overflow RCE

A parsing vulnerability was found in the GNU Image Manipulation Program GIMP. This flaw allows an unauthenticated, remote attacker to trick a GIMP user into opening a malicious PSP file, possibly enabling the execution of unauthorized code within the GIMP process...

7.8CVSS6AI score0.63756EPSS
Exploits0References6
OSV
OSV
added 2025/01/14 7:15 p.m.2 views

CVE-2025-21132

Substance3D - Stager versions 3.0.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score
Exploits0References1
CVE
CVE
added 2024/09/13 8:37 a.m.68 views

CVE-2024-34121

Adobe Illustrator is affected by CVE-2024-34121 (Integer Overflow/Wraparound) in versions 28.6, 27.9.5 and earlier. The vulnerability could allow arbitrary code execution in the current user context and requires the user to open a malicious file. Updates per APSB24-66 mitigate this issue by movin...

7.8CVSS7.8AI score0.00273EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/08 2:47 p.m.18 views

CVE-2023-36864

An integer overflow vulnerability exists in the fstReaderIterBlocks2 tempsignalvaluebuf allocation functionality of GTKWave 3.3.115. A specially crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability...

7.8CVSS7.5AI score0.00065EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2024/01/08 2:47 p.m.23 views

CVE-2023-34436

An out-of-bounds write vulnerability exists in the LXT2 numtimetableentries functionality of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability...

7.8CVSS8AI score0.00066EPSS
Exploits1
Prion
Prion
added 2023/11/15 6:15 a.m.10 views

Cross site scripting

Out-of-bounds read vulnerability exists in TELLUS V4.0.17.0 and earlier and TELLUS Lite V4.0.17.0 and earlier. If a user opens a specially crafted file X1, V8, or V9 file, information may be disclosed and/or arbitrary code may be executed...

4.4CVSS7.3AI score0.00062EPSS
Exploits0References3Affected Software2
Vulnrichment
Vulnrichment
added 2023/11/15 5:41 a.m.9 views

CVE-2023-47582

Access of uninitialized pointer vulnerability exists in TELLUS V4.0.17.0 and earlier and TELLUS Lite V4.0.17.0 and earlier. If a user opens a specially crafted file X1, V8, or V9 file, information may be disclosed and/or arbitrary code may be executed...

7.2AI score0.00062EPSS
Exploits0References3
OSV
OSV
added 2023/08/01 2:15 p.m.41 views

CVE-2023-34634

Greenshot 1.2.10 and below allows arbitrary code execution because .NET content is insecurely deserialized when a .greenshot file is opened...

7.8CVSS8AI score
Exploits0References5
Cvelist
Cvelist
added 2023/08/01 12:0 a.m.20 views

CVE-2023-34634

Greenshot 1.2.10 and below allows arbitrary code execution because .NET content is insecurely deserialized when a .greenshot file is opened...

8.1AI score0.38028EPSS
Exploits7References5
CVE
CVE
added 2023/06/01 12:0 a.m.85 views

CVE-2023-27640

The PrestaShop module tshirtecommerce (Custom Product Designer) version 2.1.4 is affected by a directory traversal vulnerability in the fonts.php endpoint. An attacker can forge HTTP requests using the POST parameter type (and related GET parameters) to traverse the server’s file system and read ...

7.5CVSS7.5AI score0.8582EPSS
In wildExploits1References1Affected Software1
NVD
NVD
added 2023/04/12 10:15 p.m.11 views

CVE-2023-21582

Adobe Digital Editions version 4.5.11.187303 and earlier is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.8AI score0.00202EPSS
Exploits0References1
NVD
NVD
added 2023/03/28 8:15 p.m.20 views

CVE-2023-25893

Adobe Dimension versions 3.4.7 and earlier is affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.7AI score0.00234EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:37 a.m.3 views

SUSE CVE-2017-16611

In libXfont before 1.5.4 and libXfont2 before 2.0.3, a local attacker can open but not read files on the system as root, triggering tape rewinds, watchdogs, or similar mechanisms that can be triggered by opening files...

3.3CVSS6.9AI score0.00076EPSS
Exploits0References3
OSV
OSV
added 2022/12/07 4:15 a.m.1 views

CVE-2022-43668

Typora versions prior to 1.4.4 fails to properly neutralize JavaScript code, which may result in executing JavaScript code contained in the file when opening a file with the affected product...

6.1CVSS5.8AI score0.00542EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/12/01 12:0 a.m.16 views

Huawei EulerOS: Security Advisory for perl-DBI (EulerOS-SA-2020-2501)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.5AI score0.00131EPSS
Exploits1References2
OPENSUSE Linux
OPENSUSE Linux
added 2020/11/26 12:0 a.m.24 views

Security update for perl-DBI (moderate)

openSUSE Security Update: Security update for perl-DBI Announcement ID: openSUSE-SU-2020:2051-1 Rating: moderate References: 1176492 Cross-References: CVE-2014-10401 CVE-2014-10402 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Description: This...

6.1CVSS7.1AI score0.00032EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2020/09/16 9:0 p.m.29 views

CVE-2014-10402

An issue was discovered in the DBI module through 1.643 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the fdir attribute in the data source name DSN. NOTE: this issue exists because of an incomplete fix for CVE-2014-10401...

6.1CVSS6.3AI score0.00032EPSS
Exploits1References3
Microsoft KB
Microsoft KB
added 2020/04/13 12:0 a.m.26 views

MS15-013: Description of the security update for Microsoft Office 2010: February 10, 2015

MS15-013: Description of the security update for Microsoft Office 2010: February 10, 2015 Introduction This security update resolves vulnerabilities that could allow security feature bypass if a specially crafted file is opened in an affected edition of Microsoft Office. Summary Microsoft has...

6.7AI score
Exploits0
Rows per page
Query Builder