10 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-1000639
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LatexDraw version =4.0 contains a XML External Entity XXE vulnerability in SVG parsing functionality that can result in disclosure of data, server side request...
Huawei HarmonyOS 安全漏洞
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS, which stems from an SVG parsing module exception capture failure, and can be exploited by an attacker to...
Huawei HarmonyOS 安全漏洞
Huawei HarmonyOS is an operating system from the Chinese company Huawei. Huawei HarmonyOS suffers from a buffer overflow vulnerability that stems from a security issue in the SVG parsing module, which can be exploited by an attacker to affect availability...
IrfanView 安全漏洞
IrfanView is an image viewer. It supports image browsing, image editing, image format conversion and so on. A heap buffer overflow remote code execution vulnerability exists in IrfanView SVG file parsing, which is caused by failing to properly validate the length of user-supplied data before...
PT-2023-25912 · Kofax · Kofax Power Pdf
Name of the Vulnerable Software and Affected Versions: Kofax Power PDF affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a maliciou...
SUSE CVE-2011-3908
Google Chrome before 16.0.912.63 does not properly parse SVG documents, which allows remote attackers to cause a denial of service out-of-bounds read via unspecified vectors...
The vulnerability of the vector graphics editor CorelDRAW Graphics Suite (formerly CorelDRAW) lies in insufficient checking of the length of user data before it is copied to the stack-based buffer. This allows attackers to execute arbitrary code.
The vulnerability of the CorelDRAW Graphics Suite formerly CorelDRAW graphic editor lies in the insufficient checking of the length of user data before it is copied to the stack-based buffer during CGM-file syntax analysis. Exploiting this vulnerability allows an attacker to execute arbitrary cod...
PT-2022-5039 · Adobe · Bridge
Name of the Vulnerable Software and Affected Versions: Adobe Bridge versions 12.0.2 and earlier Adobe Bridge versions 11.1.3 and earlier Description: The issue is related to a Heap-based Buffer Overflow that could result in arbitrary code execution in the context of the current user. Exploitation...
PT-2022-5081 · Adobe · Bridge
Name of the Vulnerable Software and Affected Versions: Adobe Bridge versions 12.0.2 and earlier Adobe Bridge versions 11.1.3 and earlier Description: The issue is related to an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. This...
Remote Code Execution (RCE)
Overview Affected versions of this package are vulnerable to Remote Code Execution RCE when parsing certain types of graphics files. Note: This vulnerability only impacts systems running non-Windows. Remediation Upgrade System.Drawing.Common to version 4.7.2, 5.0.3 or higher. References - GitHub...