Lucene search
K

38 matches found

Positive Technologies
Positive Technologies
added 2024/03/26 12:0 a.m.3 views

PT-2024-13322 · Llvm · Llvm

Name of the Vulnerable Software and Affected Versions: LLVM version 15.0.0 Description: The issue is related to a NULL pointer dereference in the parseOneMetadata function. This can be triggered via a crafted pdflatex.fmt file or possibly a crafted .o file to llvm-lto. However, the relationship...

5.3CVSS6.9AI score0.00681EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2024/02/09 12:0 a.m.3 views

PT-2024-19802

Name of the Vulnerable Software and Affected Versions The Biosig Project libbiosig version 2.5.0 The Biosig Project libbiosig Master Branch ab0ee111 Description An integer underflow vulnerability exists in the sopen FAMOS read functionality. A specially crafted .famos file can lead to an...

9.8CVSS9.7AI score0.01792EPSS
Exploits1References25
SUSE CVE
SUSE CVE
added 2024/01/10 2:41 a.m.4 views

SUSE CVE-2023-35960

Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115. A specially crafted wave file can lead to arbitrary command execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns legacy...

7.8CVSS8AI score0.01481EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2024/01/10 2:41 a.m.2 views

SUSE CVE-2023-35989

An integer overflow vulnerability exists in the LXT2 zlib block allocation functionality of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability...

7.8CVSS8AI score0.00432EPSS
Exploits1References3
OSV
OSV
added 2024/01/08 3:15 p.m.10 views

CVE-2023-37282

An out-of-bounds write vulnerability exists in the VZT LZMARead dmem extraction functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability...

7.8CVSS7.8AI score
Exploits0References3
NVD
NVD
added 2024/01/08 3:15 p.m.16 views

CVE-2023-36861

An out-of-bounds write vulnerability exists in the VZT LZMAreadvarint functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability...

7.8CVSS7.8AI score0.00436EPSS
Exploits1References3
OSV
OSV
added 2024/01/08 3:15 p.m.9 views

CVE-2023-35956

Multiple heap-based buffer overflow vulnerabilities exist in the fstReaderIterBlocks2 VCDATA parsing functionality of GTKWave 3.3.115. A specially-crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerabili...

7.8CVSS8.1AI score
Exploits0References3
Prion
Prion
added 2024/01/08 3:15 p.m.20 views

Cross site scripting

An out-of-bounds write vulnerability exists in the VZT LZMAreadvarint functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability...

4.4CVSS7.7AI score0.00436EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2024/01/08 3:15 p.m.24 views

Stack overflow

A stack-based buffer overflow vulnerability exists in the LXT2 lxt2rdexpandintegertobits function of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability...

4.4CVSS8AI score0.00435EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2024/01/08 3:15 p.m.2 views

UBUNTU-CVE-2023-37921

Multiple arbitrary write vulnerabilities exist in the VCD sorted bsearch functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the arbitrary...

7.8CVSS7.5AI score0.00432EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2024/01/08 3:15 p.m.27 views

CVE-2023-36864

An integer overflow vulnerability exists in the fstReaderIterBlocks2 tempsignalvaluebuf allocation functionality of GTKWave 3.3.115. A specially crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability...

7.8CVSS7.3AI score0.00418EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/01/08 2:47 p.m.29 views

CVE-2023-36861

An out-of-bounds write vulnerability exists in the VZT LZMAreadvarint functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability...

7.8CVSS7.9AI score0.00436EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/01/08 2:47 p.m.6 views

CVE-2023-38620

Multiple integer overflow vulnerabilities exist in the VZT facgeometry parsing functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the intege...

7.8CVSS8AI score0.00432EPSS
Exploits1References2
OSV
OSV
added 2020/05/18 5:15 p.m.4 views

CVE-2020-6093

An exploitable information disclosure vulnerability exists in the way Nitro Pro 13.9.1.155 does XML error handling. A specially crafted PDF document can cause uninitialized memory access resulting in information disclosure. In order to trigger this vulnerability, victim must open a malicious file...

5.5CVSS6.5AI score0.0265EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/04/25 9:0 p.m.28 views

CVE-2018-1338

A carefully crafted or fuzzed file can trigger an infinite loop in Apache Tika's BPGParser in versions of Apache Tika before 1.18...

5.8AI score0.01984EPSS
Exploits0References2
NVD
NVD
added 2018/04/24 7:29 p.m.20 views

CVE-2017-12107

An memory corruption vulnerability exists in the .PCX parsing functionality of Computerinsel Photoline 20.02. A specially crafted .PCX file can cause a vulnerability resulting in potential code execution. An attacker can send a specific .PCX file to trigger this vulnerability...

8.8CVSS8.9AI score0.01266EPSS
Exploits1References1
Cvelist
Cvelist
added 2017/05/24 2:0 p.m.26 views

CVE-2017-2823

A use-after-free vulnerability exists in the .ISO parsing functionality of PowerISO 6.8. A specially crafted .ISO file can cause a vulnerability resulting in potential code execution. An attacker can send a specific .ISO file to trigger this vulnerability...

8.8CVSS7.8AI score0.09358EPSS
Exploits2References1
OSV
OSV
added 2017/01/12 3:59 p.m.4 views

UBUNTU-CVE-2016-6767

A denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as High due to the possibility of remote denial of service. Product: Android. Versions: 4.4.4. Android ID: A-31833604...

5.5CVSS6.4AI score0.00529EPSS
Exploits0References3
Rows per page
Query Builder