Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

341 matches found

Veracode
Veracodeadded 2023/08/02 9:25 a.m.16 views

Prototype Pollution

underscore-keypath is vulnerable to Prototype Pollution. The vulnerability exists via the name argument in the setProperty function at underscore-keypath.js which allows an attacker to inject and modify properties such as proto in the obj parameter resulting in prototype pollution...

7.5CVSS6.8AI score0.00142EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessusadded 2023/06/13 12:0 a.m.620 views

Security Updates for Microsoft Visual Studio Products (June 2023)

The Microsoft Visual Studio Products are missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability in the MSDIA SDK where corrupted PDBs can cause heap overflow, leading to a crash or remote code execution. CVE-2023-24897 - A remote...

9.3CVSS8.4AI score0.03559EPSS
Exploits2References30
OSV
OSVadded 2023/06/05 4:0 a.m.6 views

MAL-2023-515 Malicious code in idgit-conventional-commitsentity-obj-proxy (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e21720cf9a4946dccc8cfaf2aeecb605fa378ec130a4c251054a6867ebd163ff Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSVadded 2023/05/09 1:15 p.m.3 views

CVE-2023-30985

A vulnerability has been identified in Solid Edge SE2023 All versions V223.0 Update 3, Solid Edge SE2023 All versions V223.0 Update 2. Affected applications contain an out of bounds read past the end of an allocated buffer while parsing a specially crafted OBJ file. This vulnerability could allow...

5.5CVSS6.1AI score0.0013EPSS
Exploits0References1
NVD
NVDadded 2023/05/09 1:15 p.m.12 views

CVE-2023-30985

A vulnerability has been identified in Solid Edge SE2023 All versions V223.0 Update 3, Solid Edge SE2023 All versions V223.0 Update 2. Affected applications contain an out of bounds read past the end of an allocated buffer while parsing a specially crafted OBJ file. This vulnerability could allow...

5.5CVSS4.7AI score0.0013EPSS
Exploits0References1
Prion
Prionadded 2023/05/09 1:15 p.m.16 views

Out-of-bounds

A vulnerability has been identified in Solid Edge SE2023 All versions V223.0 Update 3, Solid Edge SE2023 All versions V223.0 Update 2. Affected applications contain an out of bounds read past the end of an allocated buffer while parsing a specially crafted OBJ file. This vulnerability could allow...

1.9CVSS5.4AI score0.0013EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2023/05/09 11:51 a.m.11 views

CVE-2023-30985

A vulnerability has been identified in Solid Edge SE2023 All versions V223.0 Update 3, Solid Edge SE2023 All versions V223.0 Update 2. Affected applications contain an out of bounds read past the end of an allocated buffer while parsing a specially crafted OBJ file. This vulnerability could allow...

3.3CVSS5.3AI score0.0013EPSS
Exploits0References1
CVE
CVEadded 2023/05/09 11:51 a.m.56 views

CVE-2023-30985

CVE-2023-30985 affects Siemens Solid Edge SE2023 (pre-update 2 and pre-update 3 releases). The vulnerability is an out-of-bounds read past the end of an allocated buffer when parsing a specially crafted OBJ file, which could disclose sensitive information. Affected versions: Solid Edge SE2023 pri...

5.5CVSS5.2AI score0.0013EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2023/05/09 11:51 a.m.10 views

CVE-2023-30985

A vulnerability has been identified in Solid Edge SE2023 All versions V223.0 Update 3, Solid Edge SE2023 All versions V223.0 Update 2. Affected applications contain an out of bounds read past the end of an allocated buffer while parsing a specially crafted OBJ file. This vulnerability could allow...

3.3CVSS5.5AI score0.0013EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2023/03/31 12:0 a.m.29 views

Microsoft Print 3D OBJ File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Print 3D. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

6.6CVSS7.6AI score0.03982EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2023/03/31 12:0 a.m.28 views

Microsoft Print 3D OBJ File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Print 3D. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS6.7AI score0.03085EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2023/03/31 12:0 a.m.33 views

Microsoft Print 3D OBJ File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Print 3D. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

6.6CVSS7.6AI score0.03085EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiativeadded 2023/03/31 12:0 a.m.9 views

Microsoft 3D Builder OBJ File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft 3D Builder. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS5.8AI score
Exploits0
OSV
OSVadded 2023/03/29 7:15 p.m.2 views

CVE-2022-28306

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.034. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS6.2AI score
Exploits0References2
NVD
NVDadded 2023/03/29 7:15 p.m.17 views

CVE-2022-28305

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.034. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS7.8AI score0.00285EPSS
Exploits0References2
NVD
NVDadded 2023/03/29 7:15 p.m.10 views

CVE-2022-28304

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.034. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS7.8AI score0.00285EPSS
Exploits0References2
NVD
NVDadded 2023/03/29 7:15 p.m.14 views

CVE-2022-28306

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.034. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS7.8AI score0.00285EPSS
Exploits0References2
OSV
OSVadded 2023/03/29 7:15 p.m.2 views

CVE-2022-28305

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.034. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS6.2AI score0.00285EPSS
Exploits0References2
Prion
Prionadded 2023/03/29 7:15 p.m.13 views

Stack overflow

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.034. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

4.4CVSS7.8AI score0.00285EPSS
Exploits0References2Affected Software2
Prion
Prionadded 2023/03/29 7:15 p.m.18 views

Stack overflow

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.02.034. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

4.4CVSS7.8AI score0.00285EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder