Lucene search
+L

36 matches found

zdi
zdi
added 2020/08/13 12:0 a.m.36 views

Microsoft Windows WalletService Race Condition Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

2.5CVSS4.6AI score0.00931EPSS
Exploits0References1
zdi
zdi
added 2020/08/04 12:0 a.m.36 views

Rockwell Automation Arena Simulation DOE File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Rockwell Automation Arena Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

7.8CVSS4.8AI score0.12042EPSS
Exploits0References1
zdi
zdi
added 2020/04/16 12:0 a.m.54 views

(Pwn2Own) OPC Foundation UA .NET Standard CreateSessionRequest Race Condition Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of OPC Foundation UA .NET Standard. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of sessions. The issue results from the lack ...

5.3CVSS0.7AI score0.0258EPSS
Exploits0References1
cvelist
cvelist
added 2019/10/25 6:14 p.m.37 views

CVE-2019-17143

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PhantomPDF 9.6.0.25114. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

3.3CVSS4.1AI score0.03881EPSS
Exploits0References1
zdi
zdi
added 2019/10/15 12:0 a.m.39 views

Adobe Acrobat Pro DC XFA Form Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processin...

7.8CVSS2.7AI score0.03637EPSS
Exploits0References1
zdi
zdi
added 2019/08/27 12:0 a.m.30 views

Apple Safari InlineBox Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple Safari. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the InlineBox rendere...

5CVSS2.4AI score0.01797EPSS
Exploits0References1
zdi
zdi
added 2019/08/08 12:0 a.m.15 views

Rockwell Automation Arena Simulation DOE File Parsing Use-After-Free Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Rockwell Automation Arena Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

3.3CVSS3.1AI score0.05777EPSS
Exploits0References1
zdi
zdi
added 2019/08/08 12:0 a.m.15 views

Rockwell Automation Arena Simulation DOE File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Rockwell Automation Arena Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

7.8CVSS4.6AI score0.12042EPSS
Exploits0References1
zdi
zdi
added 2019/06/07 12:0 a.m.24 views

Apple macOS AMDRadeonX4000_AMDSIGLContext Double Free Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on affected installations of Apple MacOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within processing of sideban...

7CVSS3.9AI score0.00417EPSS
Exploits0References1
zdi
zdi
added 2019/05/15 12:0 a.m.29 views

Adobe MediaEncoder CC TIF File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe MediaEncoder CC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS5.6AI score0.08664EPSS
Exploits0References1
zdi
zdi
added 2018/12/10 12:0 a.m.26 views

Apple macOS watchevent Use-After-Free Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of the...

7.8CVSS2.2AI score0.01052EPSS
Exploits0References1
zdi
zdi
added 2018/10/11 12:0 a.m.23 views

Foxit Reader Field style Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of the...

7.8CVSS1.8AI score0.03855EPSS
Exploits0References1
cnvd
cnvd
added 2018/04/28 12:0 a.m.4 views

Foxit Reader shift event remote code execution vulnerability

Foxit Reader is a small PDF document viewer and printing program. Foxit Reader has a security vulnerability in shift event handling, which can be exploited by an attacker to execute arbitrary code in the context of the current process due to a lack of validation before performing an operation on ...

8.8CVSS7.7AI score0.03226EPSS
Exploits0References1
cnvd
cnvd
added 2018/04/28 12:0 a.m.5 views

Foxit Reader XFA Button formattedValue Remote Code Execution Vulnerability

Foxit Reader is a small PDF document viewer and printing program. Foxit Reader has a security vulnerability in the handling of the XFA Button formattedValue element, which can be exploited by an attacker to execute arbitrary code in the context of the current process due to a lack of validation...

8.8CVSS7.7AI score0.02773EPSS
Exploits0References1
zdi
zdi
added 2018/04/20 12:0 a.m.26 views

Foxit Reader XFA Button resolveNode Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the XFA resolveNode...

6.8CVSS2.3AI score0.02773EPSS
Exploits0References1
zdi
zdi
added 2017/11/20 12:0 a.m.60 views

Microsoft Windows win32k Menu Use-After-Free Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of...

7.2CVSS3.1AI score0.06462EPSS
Exploits0References1
Rows per page
Query Builder