Lucene search
K

539 matches found

Positive Technologies
Positive Technologies
added 2024/12/10 12:0 a.m.11 views

PT-2024-9518 · Microsoft · Sharepoint Server +3

Name of the Vulnerable Software and Affected Versions: Microsoft Office affected versions not specified Microsoft 365 Apps affected versions not specified Microsoft SharePoint Server affected versions not specified Microsoft SharePoint Enterprise Server affected versions not specified Description...

5.5CVSS8.3AI score0.01058EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/12/10 12:0 a.m.2 views

PT-2024-9370 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Microsoft Windows affected versions not specified Description: The issue is related to a buffer overflow in memory, which can be exploited to elevate privileges. This can allow an attacker to affect the system. There is no information provide...

6.8CVSS7.1AI score0.00858EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2024/12/10 12:0 a.m.6 views

The vulnerability of the Graphics component in Microsoft Office and Office 365 allows a hacker to execute arbitrary code.

The vulnerability of the Graphics component in Microsoft Office and Office 365 programs is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS6.2AI score0.00736EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/12/05 12:0 a.m.6 views

The vulnerability of the HMI interface configuration software Monitouch V-SFT lies in the possibility of operations going beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the HMI interface configuration software Monitouch V-SFT lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using specially created X1 files...

7.8CVSS8AI score0.00264EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/12/03 12:0 a.m.6 views

The vulnerability of Linux operating system’s DRM/AMDGPU cores allows a hacker to trigger a service failure.

The vulnerability of DRM/AMDGPU cores in the Linux operating system is related to errors in reading data beyond the buffer boundaries of memory. Exploiting this vulnerability can allow an attacker to cause service failures...

5.5CVSS7.5AI score0.00218EPSS
Exploits1References8Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/12/02 12:0 a.m.5 views

The vulnerability of the convert.quoted-printable-decode filter in the PHP programming language interpreter allows a hacker to trigger a service failure.

The vulnerability of the convert.quoted-printable-decode filter in the PHP programming language interpreter is related to buffer overflows in dynamic memory. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

4.8CVSS6.2AI score0.01618EPSS
Exploits1References12Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/11/29 12:0 a.m.6 views

The vulnerability of the Apple GPU Driver affects browsers such as Mozilla Firefox, Firefox ESR, and the email client Thunderbird, allowing an attacker to execute arbitrary code.

The vulnerability of the Apple GPU Driver in browsers such as Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.5AI score0.00704EPSS
Exploits0References13Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/11/22 12:0 a.m.7 views

The vulnerability of Adobe InDesign’s computer layout automation tool, related to the execution of operations beyond the buffer in memory, allows attackers to execute arbitrary code.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS6.3AI score0.00361EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/20 12:0 a.m.9 views

The vulnerability of the ncm component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the ncm component in the Linux operating system’s kernel is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...

5.5CVSS7AI score0.0023EPSS
Exploits0References38Affected Software5
Positive Technologies
Positive Technologies
added 2024/11/14 12:0 a.m.5 views

PT-2024-10125

The rsync daemon is affected by a flaw that can be triggered when comparing file checksums, allowing an attacker to manipulate the checksum length and cause a comparison between a checksum and uninitialized memory. This results in the leak of one byte of uninitialized stack data at a time. An...

7.8CVSS7.4AI score0.09353EPSS
Exploits3References179
BDU FSTEC
BDU FSTEC
added 2024/11/14 12:0 a.m.6 views

The vulnerability of Adobe After Effects’ video and dynamic image editing software arises from operations that go beyond buffer boundaries in memory, allowing attackers to gain unauthorized access to protected information.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to the execution of operations beyond buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information through a specially created file...

5.5CVSS5.8AI score0.00258EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/11/12 12:0 a.m.3 views

PT-2024-8154 · Microsoft · Office Excel

Name of the Vulnerable Software and Affected Versions: Microsoft Excel affected versions not specified Description: The issue is related to a buffer overflow in memory, which can be exploited to execute arbitrary code. This can allow an attacker to perform unauthorized actions on the system...

7.8CVSS7.7AI score0.00736EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2024/10/23 12:0 a.m.6 views

The vulnerability of the Substance 3D Stager software lies in its software, which is exposed due to a buffer overflow in the dynamic memory. This allows an attacker to execute arbitrary code.

The vulnerability of the Substance 3D Stager software lies in the overflow of memory buffer in dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code in the context of the current user, using a specially created file...

7.8CVSS6.2AI score0.00269EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/10/10 12:0 a.m.8 views

The vulnerability of the AcroForms processor in the PDF viewer software from Foxit PDF Reader allows a perpetrator to disclose protected information.

The vulnerability of the AcroForms processor in the PDF document viewing software Foxit PDF Reader is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to disclose protected information...

3.3CVSS6.5AI score0.00423EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/10/09 12:0 a.m.7 views

The vulnerability of Microsoft Office for Mac and 365 Apps for Enterprise packages relates to the execution of operations beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of Microsoft Office for Mac and 365 Apps for Enterprise packages is related to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS6.2AI score0.00897EPSS
Exploits0References3
CVE
CVE
added 2024/09/27 5:6 p.m.45 views

CVE-2024-22170

CVE-2024-22170 concerns Western Digital My Cloud, affecting ddns-start on Linux. Connected sources confirm a heap-based buffer overflow due to improper validation of user-supplied data length when handling HTTP responses to the ddns-start program, enabling remote code execution. The issue is expl...

9.2CVSS6.6AI score0.00468EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/09/26 12:0 a.m.5 views

The vulnerability of PDF-XChange Editor’s PDF document viewing and editing software lies in the possibility of an operation going beyond the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of PDF-XChange Editor, a program for viewing and editing PDF documents, relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code using a specially created U3D file...

7.8CVSS8.1AI score0.00283EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/09/26 12:0 a.m.7 views

The vulnerability of PDF-XChange Editor’s PDF document viewing and editing software, related to the occurrence of operations outside the buffer in memory, allows attackers to disclose protected information.

The vulnerability of PDF-XChange Editor’s PDF document viewing and editing software lies in the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose protected information using a specially created EMF file...

3.3CVSS6.1AI score0.00371EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/09/17 12:0 a.m.5 views

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in the possibility of an operation going beyond the buffer in memory, allowing a hacker to execute arbitrary code.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to the execution of operations beyond buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code in the context of the current user, using a specially creat...

7.8CVSS6.4AI score0.00262EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/09/16 12:0 a.m.6 views

The vulnerability of the Siemens User Management Component (UMC) in products such as SIMATIC Information Server, SIMATIC PCS neo, SINEC NMS, and Totally Integrated Automation Portal (TIA Portal) allows a perpetrator to execute arbitrary code.

The vulnerability of the Siemens User Management Component UMC in products such as SIMATIC Information Server, SIMATIC PCS neo, SINEC NMS, and Totally Integrated Automation Portal TIA Portal is related to buffer overflow in dynamic memory. Exploiting this vulnerability could allow a remote attack...

10CVSS6.3AI score0.01064EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder