CImg Library Command Injection Vulnerability

CImg Library is an open source C++ library for image processing . A command injection vulnerability exists in the 'loadnetwork' function in CImg The CImg Library version 2.3.3 and earlier. The vulnerability stems from a network system or product not properly filtering specific elements of...

CVE-2019-1010174

CImg The CImg Library v.2.3.3 and earlier is affected by: command injection. The impact is: RCE. The component is: loadnetwork function. The attack vector is: Loading an image from a user-controllable url can lead to command injection, because no string sanitization is done on the url. The fixed...

PT-2019-11494 · David Tschumperle · Cimg Library

Name of the Vulnerable Software and Affected Versions: CImg Library versions prior to 2.3.4 Description: The issue allows for command injection, potentially leading to Remote Code Execution RCE, due to a lack of string sanitization on user-controllable URLs when loading images using the load...

Microsoft .NET Framework Information Disclosure Vulnerability (KB4344146)

This host is missing an important security update according to Microsoft KB4344146 SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

Description of the Security and Quality Rollup for .NET Framework 4.5.2 for Windows Server 2012 (KB 4344148)

Description of the Security and Quality Rollup for .NET Framework 4.5.2 for Windows Server 2012 KB 4344148 Summary This update resolves an information disclosure vulnerability in Microsoft .NET Framework that could allow an attacker to access information in multi-tenant environments. The...

Description of the Security Only update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, and 4.7.2 for Windows 8.1, RT 8.1, and Server 2012 R2 (KB 4344166)

Description of the Security Only update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, and 4.7.2 for Windows 8.1, RT 8.1, and Server 2012 R2 KB 4344166 Summary This security update resolves an information disclosure vulnerability in Microsoft .NET Framework that could allow an attacker to acce...

.NET Framework Information Disclosure Vulnerability

An information disclosure vulnerability exists in Microsoft .NET Framework that could allow an attacker to access information in multi-tenant environments. The vulnerability is caused when .NET Framework is used in high-load/high-density network connections where content from one stream can blend...

Description of the Security and Quality Rollup for .NET Framework 3.5 for Windows Server 2012 (KB 4344150)

Description of the Security and Quality Rollup for .NET Framework 3.5 for Windows Server 2012 KB 4344150 This article also applies to the following: Microsoft .NET Framework 3.5 Summary This update resolves an information disclosure vulnerability in Microsoft .NET Framework that could allow an...