13 matches found
SUSE CVE-2020-28595
An out-of-bounds write vulnerability exists in the Obj.cpp loadobj functionality of Prusa Research PrusaSlicer 2.2.0 and Master commit 4b040b856. A specially crafted obj file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2024-28425
greykite v1.0.0 was discovered to contain an arbitrary file upload vulnerability in the loadobj function at /templates/pickleutils.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted file...
PYSEC-2024-276
greykite v1.0.0 was discovered to contain an arbitrary file upload vulnerability in the loadobj function at /templates/pickleutils.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted file...
CVE-2024-28425
greykite v1.0.0 was discovered to contain an arbitrary file upload vulnerability in the loadobj function at /templates/pickleutils.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted file...
PYSEC-2024-276
greykite v1.0.0 was discovered to contain an arbitrary file upload vulnerability in the loadobj function at /templates/pickleutils.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted file...
CVE-2024-28425
CVE-2024-28425 affects greykite v1.0.0, with an arbitrary file upload vulnerability in load_obj at /templates/pickle_utils.py that allows arbitrary code execution. CVSSv3.1: 7.5 (Network, High impact, high complexity, user interaction required). Documents indicate the issue could be mitigated by ...
CVE-2024-28425
greykite v1.0.0 was discovered to contain an arbitrary file upload vulnerability in the loadobj function at /templates/pickleutils.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted file...
CVE-2024-28425
greykite v1.0.0 was discovered to contain an arbitrary file upload vulnerability in the loadobj function at /templates/pickleutils.py. This vulnerability allows attackers to execute arbitrary code via uploading a crafted file...
Graykite Security Vulnerabilities
greykite is a software application. A flexible, intuitive and fast prediction library A security vulnerability exists in Greykite version v1.0.0, which stems from the loadobj function in /templates/pickleutils.py contains an arbitrary file upload vulnerability that allows an attacker to execute...
CVE-2020-28595
An out-of-bounds write vulnerability exists in the Obj.cpp loadobj functionality of Prusa Research PrusaSlicer 2.2.0 and Master commit 4b040b856. A specially crafted obj file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
DEBIAN-CVE-2020-28595
An out-of-bounds write vulnerability exists in the Obj.cpp loadobj functionality of Prusa Research PrusaSlicer 2.2.0 and Master commit 4b040b856. A specially crafted obj file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
Cross site scripting
An out-of-bounds write vulnerability exists in the Obj.cpp loadobj functionality of Prusa Research PrusaSlicer 2.2.0 and Master commit 4b040b856. A specially crafted obj file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2020-28595
PrusaSlicer 2.2.0 and Master (commit 4b040b856) are affected by an out-of-bounds write in Obj.cpp load_obj() that can be triggered by a crafted .obj file, leading to code execution. The vulnerability arises during OBJ parsing in PrusaSlicer, where a loop over parsed faces and subsequent memory al...