Lucene search
K

5572 matches found

EUVD
EUVD
added 2026/03/10 9:32 p.m.3 views

EUVD-2026-10766

Substance3D - Painter versions 11.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to services. Exploitation of this issue requires...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References2
OSV
OSV
added 2026/03/10 7:17 p.m.3 views

CVE-2026-27274

Substance3D - Stager versions 3.1.7 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score
Exploits0References1
OSV
OSV
added 2026/03/10 7:17 p.m.7 views

CVE-2026-27218

Substance3D - Painter versions 11.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to services. Exploitation of this issue requires...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References1
OSV
OSV
added 2026/03/10 7:17 p.m.4 views

CVE-2026-27217

Substance3D - Painter versions 11.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to its availability. Exploitation of this issue...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References1
NVD
NVD
added 2026/03/10 7:17 p.m.4 views

CVE-2026-27216

Substance3D - Painter versions 11.1.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to access sensitive information stored in memory. Exploitation of this issue requires user interaction in that a...

5.5CVSS0.00142EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/10 6:47 p.m.28 views

CVE-2026-21363 Substance3D - Painter | NULL Pointer Dereference (CWE-476)

Substance3D - Painter versions 11.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to services. Exploitation of this issue requires...

5.5CVSS0.0013EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.5 views

PT-2026-24384

Name of the Vulnerable Software and Affected Versions Substance3D - Painter versions 11.1.2 and earlier Description The software is susceptible to a NULL Pointer Dereference issue, potentially leading to a denial-of-service condition. Successful exploitation of this issue requires a user to open ...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.6 views

PT-2026-24372

Name of the Vulnerable Software and Affected Versions Substance3D - Painter versions 11.1.2 and earlier Description The software is susceptible to a NULL Pointer Dereference issue that may result in a denial-of-service condition. Successful exploitation of this issue requires a user to open a...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.6 views

PT-2026-24390

Name of the Vulnerable Software and Affected Versions Substance3D - Stager versions 3.1.7 and earlier Description Substance3D - Stager versions 3.1.7 and earlier are susceptible to an out-of-bounds write issue. Successful exploitation of this issue could lead to arbitrary code execution with the...

7.8CVSS6.3AI score0.00142EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.8 views

PT-2026-24383

Name of the Vulnerable Software and Affected Versions Substance3D - Painter versions 11.1.2 and earlier Description The software is susceptible to a NULL Pointer Dereference issue, which may result in a denial-of-service condition. Successful exploitation of this issue requires a user to open a...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/03/09 1:31 p.m.4 views

SUSE CVE-2026-2922

GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS6.3AI score0.00431EPSS
Exploits0References9
Zero Day Initiative
Zero Day Initiative
added 2026/03/06 12:0 a.m.6 views

(Pwn2Own) Philips Hue Bridge Zigbee Stack Custom Command Handler Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Philips Hue Bridge. User interaction is required to exploit this vulnerability in that the user must initiate the device pairing process. The specific flaw exists within the handling of...

8CVSS6.2AI score0.00355EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/02 6:42 p.m.27 views

CVE-2025-48578

In multiple functions of MediaProvider.java, there is a possible way to bypass the WRITEEXTERNALSTORAGE permission due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

0.00099EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/02 12:0 a.m.3 views

PT-2026-22674

In removePermission of PermissionManagerServiceImpl.java, there is a possible way to override any system permission due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation...

6.1AI score0.00096EPSS
Exploits0References2
OSV
OSV
added 2026/02/26 10:29 p.m.8 views

CVE-2026-28211 Arbitrary code execution in log reader via untrusted log file

The NVDA Dev & Test Toolbox is an NVDA add-on for gathering tools to help NVDA development and testing. A vulnerability exists in versions 2.0 through 8.0 in the Log Reader feature of this add-on. A maliciously crafted log file can lead to arbitrary code execution when a user reads it with log...

7.8CVSS6.5AI score0.002EPSS
Exploits0References5
NVD
NVD
added 2026/02/20 11:16 p.m.7 views

CVE-2026-2045

GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open ...

7.8CVSS0.00566EPSS
Exploits0References15
NVD
NVD
added 2026/02/20 11:16 p.m.15 views

CVE-2026-2034

Sante DICOM Viewer Pro DCM File Parsing Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS0.00319EPSS
Exploits0References1
OSV
OSV
added 2026/02/20 11:16 p.m.9 views

UBUNTU-CVE-2026-2045

GIMP XWD File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open ...

7.8CVSS6.2AI score0.00566EPSS
Exploits0References6
CVE
CVE
added 2026/02/20 10:23 p.m.27 views

CVE-2026-2047

The CVE-2026-2047 issue is a heap-based buffer overflow in GIMP’s ICNS file parsing that allows remote code execution. It stems from insufficient validation of the length of user-supplied data before copying to a heap buffer. Exploitation requires user interaction (target visits a malicious page ...

7.8CVSS7.8AI score0.0062EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/02/20 10:10 p.m.28 views

CVE-2026-0797 GIMP ICO File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

GIMP ICO File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

7.8CVSS0.01157EPSS
Exploits0References2
Rows per page
Query Builder