23 matches found
EUVD-2024-28014
Malicious code in bioql PyPI...
EUVD-2024-19084
Malicious code in bioql PyPI...
EUVD-2024-19144
Malicious code in bioql PyPI...
EUVD-2023-39326
Malicious code in bioql PyPI...
EUVD-2024-37125
Malicious code in bioql PyPI...
CVE-2020-18171
TechSmith Snagit 19.1.0.2653 uses Object Linking and Embedding OLE which can allow attackers to obfuscate and embed crafted files used to escalate privileges. NOTE: This implies that Snagit's use of OLE is a security vulnerability unto itself and it is not. See reference document for more details...
CVE-2020-1281
A remote code execution vulnerability exists when Microsoft Windows OLE fails to properly validate user input, aka 'Windows OLE Remote Code Execution Vulnerability'...
CVE-2019-1484
A remote code execution vulnerability exists when Microsoft Windows OLE fails to properly validate user input, aka 'Windows OLE Remote Code Execution Vulnerability'...
CVE-2019-0885
A remote code execution vulnerability exists when Microsoft Windows OLE fails to properly validate user input, aka 'Windows OLE Remote Code Execution Vulnerability'...
CVE-2025-21298 Windows OLE Remote Code Execution Vulnerability
...
CVE-2025-21298
CVE-2025-21298 is a Windows OLE use-after-free memory corruption vulnerability in ole32.dll (UtOlePresStmToContentsStm) that enables remote code execution via specially crafted RTF, including zero-click scenarios when previews are shown in Outlook. The issue arises from a double-free of the CONTE...
Windows OLE Remote Code Execution Vulnerability
...
PT-2025-1193
Name of the Vulnerable Software and Affected Versions Microsoft Outlook versions prior to the fixed version Description The vulnerability is a zero-click remote code execution RCE flaw in Microsoft Outlook, caused by a memory corruption issue in the UtOlePresStmToContentsStm function of the...
CVE-2023-29325
Windows OLE Remote Code Execution Vulnerability...
Remote code execution
Windows OLE Remote Code Execution Vulnerability...
Microsoft Windows 安全漏洞
Microsoft Windows is a suite of operating systems for use on personal devices from the U.S.-based Microsoft Corporation Microsoft. A security vulnerability exists in Microsoft Windows OLE. The following products and editions are affected: Windows 10 Version 20H2 for x64-based Systems,Windows 10...
Microsoft Windows OLE 安全漏洞
Microsoft Windows is a suite of operating systems for use on personal devices from the U.S.-based Microsoft Corporation Microsoft. A security vulnerability exists in Microsoft Windows OLE. The following products and editions are affected:Windows Server 2008 for 32-bit Systems Service Pack 2 Serve...
CVE-2020-18171
TechSmith Snagit 19.1.0.2653 uses Object Linking and Embedding OLE which can allow attackers to obfuscate and embed crafted files used to escalate privileges. NOTE: This implies that Snagit's use of OLE is a security vulnerability unto itself and it is not. See reference document for more details...
Microsoft Windows Server Elevation of Privilege Vulnerability (CNVD-2015-04660)
Microsoft Windows Server is a series of servers based on the windows operating system launched by the United States Microsoft Microsoft. An elevation of privilege vulnerability exists in Microsoft Windows OLE due to the program failing to properly validate user input. An attacker could exploit th...
Privilege escalation
OLE in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to gain privileges via crafted input, as demonstrated by a transition from L...