CVE-2024-24912

A local privilege escalation vulnerability has been identified in Harmony Endpoint Security Client for Windows versions E88.10 and below. To exploit this vulnerability, an attacker must first obtain the ability to execute local privileged code on the target system...

PT-2024-21410 · Unknown · Wifire Hotspot

Name of the Vulnerable Software and Affected Versions: Wifire Hotspot version 4.5.3 Description: An issue in Wifire Hotspot allows a local attacker to execute arbitrary code via a crafted payload to the dst parameter. Recommendations: For Wifire Hotspot version 4.5.3, consider restricting access ...

DEBIAN-CVE-2023-51794

Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via the libavfilter/afstereowiden.c:120:69...

UBUNTU-CVE-2023-51794

Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via the libavfilter/afstereowiden.c:120:69...

PT-2024-6490

Name of the Vulnerable Software and Affected Versions Ffmpeg version N113007-g8d24a28d06 Description The issue is related to a buffer overflow vulnerability in the libavfilter/af stereowiden.c file of the FFmpeg library. This vulnerability can be exploited by a local attacker to execute arbitrary...

State-Sponsored Hackers Exploit Two Cisco Zero-Day Vulnerabilities for Espionage

A new malware campaign leveraged two zero-day flaws in Cisco networking gear to deliver custom malware and facilitate covert data collection on target environments. Cisco Talos, which dubbed the activity ArcaneDoor, attributed it as the handiwork of a previously undocumented sophisticated...

PT-2024-24509 · Shenzhen Libituo Technology Co. · Lbt-T300-T400

Name of the Vulnerable Software and Affected Versions: Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 version 3.2 Description: A Buffer Overflow issue allows a local attacker to execute arbitrary code via the vpn client ip variable of the config vpn pptp function in the rc program. This enabl...

PT-2024-22953 · Dedecms · Dedecms

Name of the Vulnerable Software and Affected Versions: DedeCMS version 5.7 Description: A Cross Site Scripting issue allows a local attacker to execute arbitrary code by sending a crafted payload to the "stepselect main.php" component. Recommendations: For DedeCMS version 5.7, at the moment, ther...

Cisco Adaptive Security Appliance and Firepower Threat Defense Software Persistent Local Code Execution Vulnerability

A vulnerability in a legacy capability that allowed for the preloading of VPN clients and plug-ins and that has been available in Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to execute arbitrary code...

CVE-2024-4031

Unquoted Search Path or Element vulnerability in Logitech MEVO WEBCAM APP on Windows allows Local Execution of Code...

SUSE CVE-2023-49501

Buffer Overflow vulnerability in Ffmpeg v.n6.1-3-g466799d4f5 allows a local attacker to execute arbitrary code via the configeqoutput function in the libavfilter/asrcafirsrc.c:495:30 component...

SUSE CVE-2023-51795

Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via the libavfilter/avfshowspectrum.c:1789:52 component in showspectrumpicrequestframe...

SUSE CVE-2023-51797

Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via the libavfilter/avfshowwaves.c:722:24 in showwavesfilterframe...

Logitech MEVO WEBCAM APP 安全漏洞

Logitech MEVO WEBCAM APP is a webcam application from Logitech Switzerland. A security vulnerability exists in Logitech MEVO WEBCAM APP, which stems from a vulnerability in the presence of an un-referenced search path or element, which allows local execution of arbitrary code...

PT-2024-28803 · Logitech · Logitech Mevo Webcam App

Name of the Vulnerable Software and Affected Versions: Logitech MEVO WEBCAM APP affected versions not specified Description: The issue concerns an Unquoted Search Path or Element vulnerability in the Logitech MEVO WEBCAM APP on Windows, allowing for Local Execution of Code. Recommendations: At th...

CVE-2024-28699

A buffer overflow vulnerability in pdf2json v0.70 allows a local attacker to execute arbitrary code via the GString::copy and ImgOutputDev::ImgOutputDev function...

CVE-2024-29661

A File Upload vulnerability in DedeCMS v5.7 allows a local attacker to execute arbitrary code via a crafted payload...

PT-2024-22528 · Pdf2Json · Pdf2Json

Name of the Vulnerable Software and Affected Versions: pdf2json version 0.70 Description: A buffer overflow issue allows a local attacker to execute arbitrary code via the GString::copy and ImgOutputDev::ImgOutputDev function. Recommendations: For pdf2json version 0.70, consider disabling the...

DEBIAN-CVE-2023-51797

Buffer Overflow vulnerability in Ffmpeg v.N113007-g8d24a28d06 allows a local attacker to execute arbitrary code via the libavfilter/avfshowwaves.c:722:24 in showwavesfilterframe...

CVE-2023-50008

FFmpeg v.n6.1-3-g466799d4f5 allows memory consumption when using the colorcorrect filter, in the avmalloc function in libavutil/mem.c:105:9 component...