4323 matches found
OESA-2024-2326 vorbis-tools security update
Ogg Vorbis is a fully open, non-proprietary, patent-and-royalty-free, general-purpose compressed audio format for mid to high quality 8kHz-48.0kHz, 16+ bit, polyphonic audio and music at fixed and variable bitrates from 16 to 128 kbps/channel. This places Vorbis in the same competitive class as...
CVE-2024-48807
Cross Site Scripting vulnerability in PHPGurukul Doctor Appointment Management System v.1.0 allows a local attacker to execute arbitrary code via the search parameter...
SUSE CVE-2024-48423
An issue in assimp v.5.4.3 allows a local attacker to execute arbitrary code via the CallbackToLogRedirector function within the Assimp library...
DEBIAN-CVE-2024-48423
An issue in assimp v.5.4.3 allows a local attacker to execute arbitrary code via the CallbackToLogRedirector function within the Assimp library...
PYSEC-2024-120
An issue in assimp v.5.4.3 allows a local attacker to execute arbitrary code via the CallbackToLogRedirector function within the Assimp library...
PT-2024-33103 · Assimp +2 · Assimp +2
Name of the Vulnerable Software and Affected Versions: assimp version 5.4.3 Description: An issue in the Assimp library allows a local attacker to execute arbitrary code via the CallbackToLogRedirector function. This enables the attacker to potentially gain control over the system. Recommendation...
Adobe Illustrator < 24.0 Multiple Vulnerabilities (APSB19-36) (macOS)
The version of Adobe Illustrator installed on the remote macOS host is prior to 24.0. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB19-36 advisory. - Adobe Illustrator CC versions 23.1 and earlier have a memory corruption vulnerability. Successful exploitation...
Adobe Illustrator < 24.0 Multiple Vulnerabilities (APSB19-36)
The version of Adobe Illustrator installed on the remote Windows host is prior to 24.0. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB19-36 advisory. - Adobe Illustrator CC versions 23.1 and earlier have a memory corruption vulnerability. Successful exploitation...
CVE-2024-29821
CVE-2024-29821 affects Ivanti Desktop and Server Management (DSM) prior to 2024.2. The vulnerability allows authenticated local users to execute code with elevated privileges due to insecure ACLs, via an unspecified attack vector. Public sources confirm impact is a local privilege escalation with...
CVE-2024-29213
Ivanti DSM version 2024.2 allows authenticated users on the local machine to run code with elevated privileges due to insecure ACL via unspecified attack vector...
CVE-2024-4131
A DLL hijack vulnerability was reported in Lenovo Emulator that could allow a local attacker to execute code with elevated privileges...
PT-2024-25347 · Lenovo · Lenovo Baiying
Name of the Vulnerable Software and Affected Versions: Lenovo Baiying affected versions not specified Description: A DLL hijack issue was reported that could allow a local attacker to execute code with elevated privileges. The issue affects Lenovo products and has a high severity level...
OESA-2024-2194 assimp security update
Assimp is a library to load and process geometric scenes from various data formats. Assimp aims to provide a full asset conversion pipeline for use in game engines and real-time rendering systems of any kind, but is not limited to this purpose. Security Fixes: Heap-based buffer overflow...
OESA-2024-2195 assimp security update
Assimp is a library to load and process geometric scenes from various data formats. Assimp aims to provide a full asset conversion pipeline for use in game engines and real-time rendering systems of any kind, but is not limited to this purpose. Security Fixes: Heap-based buffer overflow...
OESA-2024-2197 assimp security update
Assimp is a library to load and process geometric scenes from various data formats. Assimp aims to provide a full asset conversion pipeline for use in game engines and real-time rendering systems of any kind, but is not limited to this purpose. Security Fixes: Heap-based buffer overflow...
CVE-2022-49038
Inclusion of functionality from untrusted control sphere vulnerability in OpenSSL DLL component in Synology Drive Client before 3.3.0-15082 allows local users to execute arbitrary code via unspecified vectors...
SUSE CVE-2024-45679
Heap-based buffer overflow vulnerability in Assimp versions prior to 5.4.3 allows a local attacker to execute arbitrary code by importing a specially crafted file into the product...
UBUNTU-CVE-2024-45679
Heap-based buffer overflow vulnerability in Assimp versions prior to 5.4.3 allows a local attacker to execute arbitrary code by importing a specially crafted file into the product...
assimp 安全漏洞
assimp is an assimp open source library. It is used to import and export various 3D model formats. A security vulnerability exists in versions prior to assimp 5.4.3 that stems from the presence of a heap-based buffer overflow vulnerability that allows a local attacker to execute arbitrary code by...
Exploit for Code Injection in Mjml Mjml_App
MJML Local Code Execution PoC A Proof-Of-Concept for CVE-2024...