4307 matches found
UBUNTU-CVE-2023-36250
CSV Injection vulnerability in GNOME time tracker version 3.0.2, allows local attackers to execute arbitrary code via crafted .tsv file when creating a new record...
CVE-2023-39063
Buffer Overflow vulnerability in RaidenFTPD 2.4.4005 allows a local attacker to execute arbitrary code via the Server name field of the Step by step setup wizard...
CVE-2023-39063
Buffer Overflow vulnerability in RaidenFTPD 2.4.4005 allows a local attacker to execute arbitrary code via the Server name field of the Step by step setup wizard...
CVE-2023-39070
An issue in Cppcheck 2.12 dev allows a local attacker to execute arbitrary code via the removeContradiction parameter in token.cpp:1934...
DEBIAN-CVE-2023-39070
An issue in Cppcheck 2.12 dev allows a local attacker to execute arbitrary code via the removeContradiction parameter in token.cpp:1934...
AZL-43537 CVE-2023-39070 affecting package cppcheck 2.7-2
An issue in Cppcheck 2.12 dev allows a local attacker to execute arbitrary code via the removeContradiction parameter in token.cpp:1934...
UBUNTU-CVE-2023-39070
An issue in Cppcheck 2.12 dev allows a local attacker to execute arbitrary code via the removeContradiction parameter in token.cpp:1934...
CVE-2023-30722
Protection Mechanism Failure in bctui trustlet from Samsung Blockchain Keystore prior to version 1.3.13.5 allows local attacker to execute arbitrary code...
PT-2023-25437 · Unknown · Hex-Dragon Plain Craft Launcher 2
Name of the Vulnerable Software and Affected Versions: Hex-Dragon Plain Craft Launcher 2 version Alpha 1.3.9 Description: The issue allows local attackers to execute arbitrary code and gain sensitive information due to a Directory Traversal vulnerability. Recommendations: For Hex-Dragon Plain Cra...
PT-2023-22924 · Samsung · Samsung Blockchain Keystore
Name of the Vulnerable Software and Affected Versions: Samsung Blockchain Keystore versions prior to 1.3.13.5 Description: The issue is related to a Protection Mechanism Failure in the bc tui trustlet, allowing a local attacker to execute arbitrary code. Recommendations: For versions prior to...
DEBIAN-CVE-2020-24165
An issue was discovered in TCG Accelerator in QEMU 4.2.0, allows local attackers to execute arbitrary code, escalate privileges, and cause a denial of service DoS. Note: This is disputed as a bug and not a valid security issue by multiple third parties...
PT-2023-4687 · Qemu +2 · Qemu +2
Name of the Vulnerable Software and Affected Versions: QEMU version 4.2.0 Description: An issue was discovered in the TCG Accelerator component of QEMU, related to the use of memory after it has been freed. This issue allows local attackers to execute arbitrary code, escalate privileges, and caus...
QEMU 安全漏洞
QEMU Quick Emulator is a set of simulation processor software by Fabrice Bellard, a French individual developer. The software is fast and cross-platform. A security vulnerability exists in QEMU version 4.2.0, which stems from a problem with the TCG gas pedal and allows a local attacker to execute...
CVE-2023-39985
UNSUPPORTED WHEN ASSIGNED Out-of-bounds Write vulnerability in Hitachi EH-VIEW Designer allows local attackers to potentially execute arbitray code on affected EH-VIEW installations. User interaction is required to exploit the vulnerabilities in that the user must open a malicious file. NOTE: Thi...
PT-2023-25072 · Hitachi · Hitachi Eh-View
Name of the Vulnerable Software and Affected Versions: Hitachi EH-VIEW KeypadDesigner affected versions not specified Description: The issue is an Out-of-bounds Write vulnerability that allows local attackers to potentially execute arbitrary code on affected installations. User interaction is...
PT-2023-27191 · Hitachi · Hitachi Eh-View
Name of the Vulnerable Software and Affected Versions: Hitachi EH-VIEW Designer affected versions not specified Description: An Out-of-bounds Write vulnerability in Hitachi EH-VIEW Designer allows local attackers to potentially execute arbitrary code on affected installations. User interaction is...
SUSE CVE-2023-32184
A Insecure Storage of Sensitive Information vulnerability in openSUSE opensuse-welcome allows local attackers to execute code as the user that runs opensuse-welcome if a custom layout is chosen This issue affects opensuse-welcome: from 0.1 before 0.1.9+git.35.4b9444a...
PT-2023-5399 · Unknown +1 · Opensuse-Welcome +1
Name of the Vulnerable Software and Affected Versions: opensuse-welcome versions 0.1 through 0.1.9+git.35.4b9444a Description: A local attacker can execute code as the user that runs opensuse-welcome if a custom layout is chosen, due to an Insecure Storage of Sensitive Information vulnerability...
CVE-2021-28835
Buffer Overflow vulnerability in XNView before 2.50, allows local attackers to execute arbitrary code via crafted GEM bitmap file...
CVE-2021-28427
Buffer Overflow vulnerability in XNView version 2.49.3, allows local attackers to execute arbitrary code via crafted TIFF file...