Lucene search
K

445 matches found

OSV
OSV
added 2026/03/16 10:15 p.m.8 views

USN-8101-1 vim vulnerabilities

Rahul Hoysala discovered that Vim did not correctly handle certain tag resolutions. An attacker could possibly use this issue to cause a denial of service. CVE-2026-25749 It was discovered that Vim did not correctly handle processing certain specialKey commands. An attacker could possibly use thi...

7.8CVSS6.3AI score0.01162EPSS
Exploits1References9
EUVD
EUVD
added 2026/03/16 3:30 p.m.4 views

EUVD-2026-12419

A Code Injection vulnerability affecting in SOLIDWORKS Desktop from Release 2025 through Release 2026 could allow an attacker to execute arbitrary code on the user's machine while opening a specially crafted file...

7.8CVSS6.2AI score0.00169EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/16 12:0 a.m.7 views

PT-2026-25703

Name of the Vulnerable Software and Affected Versions SOLIDWORKS Desktop versions 2025 through 2026 Description A code injection issue exists in SOLIDWORKS Desktop. Successful exploitation while opening a specially crafted file could allow an attacker to execute arbitrary code on the user's...

7.8CVSS6AI score0.00169EPSS
Exploits0References5
NVD
NVD
added 2026/03/10 10:16 p.m.5 views

CVE-2026-27278

Acrobat Reader versions 24.001.30307, 24.001.30308, 25.001.21265 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious...

7.8CVSS0.00222EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/10 9:32 p.m.4 views

EUVD-2026-10778

Substance3D - Stager versions 3.1.7 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00169EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/10 9:32 p.m.3 views

EUVD-2026-10777

Substance3D - Stager versions 3.1.7 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00142EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/10 9:32 p.m.4 views

EUVD-2026-10760

Substance3D - Painter versions 11.1.2 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to its availability. Exploitation of this issue...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References2
NVD
NVD
added 2026/03/10 7:17 p.m.7 views

CVE-2026-27281

DNG SDK versions 1.7.1 2471 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to cause the application to crash or become unresponsive. Exploitation of this issue requires user...

5.5CVSS0.00179EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/03/10 6:23 p.m.4 views

CVE-2026-27281 DNG SDK | Integer Overflow or Wraparound (CWE-190)

DNG SDK versions 1.7.1 2471 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to cause the application to crash or become unresponsive. Exploitation of this issue requires user...

5.5CVSS5.8AI score0.00179EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/03/09 12:0 a.m.8 views

Mobatek MobaXterm 代码问题漏洞

Mobatek MobaXterm is a terminal software package developed by the French company Mobatek. It integrates an enhanced terminal, an X server, and a Unix command set GNU/Cygwin. Versions of Mobatek MobaXterm prior to version 26.1 contained code vulnerabilities. These vulnerabilities stemmed from...

8.5CVSS6.1AI score0.00132EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/25 11:44 p.m.21 views

CVE-2026-27711 NanaZip UFS Archive Parser Memory Corruption via Unvalidated Directory Record Length

NanaZip is an open source file archive. Starting in version 5.0.1252.0 and prior to versions 6.0.1638.0 and 6.5.1638.0, a memory corruption vulnerability in NanaZip’s UFS parser allows a crafted .ufs/.ufs2/.img file to trigger out-of-bounds memory access during archive open/listing. The bug is...

5.1CVSS0.00142EPSS
Exploits1References1
NVD
NVD
added 2026/02/20 11:16 p.m.15 views

CVE-2026-2034

Sante DICOM Viewer Pro DCM File Parsing Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS0.00319EPSS
Exploits0References1
CVE
CVE
added 2026/02/18 9:55 p.m.9 views

CVE-2019-25358

FileOptimizer 14.00.2524 contains a denial-of-service vulnerability where the TempDirectory parameter in FileOptimizer32.ini can be overwritten with a 5000-character buffer, causing the application to crash when opening the options dialog. Affected component: FileOptimizer (Windows). Root cause: ...

8.7CVSS5.7AI score0.00384EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/02/18 9:55 p.m.2 views

CVE-2019-25358 FileOptimizer 14.00.2524 - Denial of Service

FileOptimizer 14.00.2524 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the FileOptimizer32.ini configuration file. Attackers can overwrite the TempDirectory parameter with a 5000-character buffer to cause the application to crash when...

8.7CVSS5.7AI score0.00384EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/02/18 9:55 p.m.22 views

CVE-2019-25358 FileOptimizer 14.00.2524 - Denial of Service

FileOptimizer 14.00.2524 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the FileOptimizer32.ini configuration file. Attackers can overwrite the TempDirectory parameter with a 5000-character buffer to cause the application to crash when...

8.7CVSS0.00384EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/02/18 12:0 a.m.6 views

PT-2026-20533

FileOptimizer 14.00.2524 contains a denial of service vulnerability that allows attackers to crash the application by manipulating the FileOptimizer32.ini configuration file. Attackers can overwrite the TempDirectory parameter with a 5000-character buffer to cause the application to crash when...

8.7CVSS5.7AI score0.00384EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/02/11 7:45 p.m.7 views

CVE-2026-21332

InDesign Desktop versions 21.1, 20.5.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to disclose sensitive information stored in memory. Exploitation of this issue requires user interaction in that...

5.5CVSS5.4AI score0.00153EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/11 7:44 p.m.6 views

CVE-2026-21341

Substance3D - Stager versions 3.1.6 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00139EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/10 6:32 p.m.6 views

CVE-2026-21353

DNG SDK versions 1.7.1 2410 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00184EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.9 views

PT-2026-7388

Substance3D - Designer versions 15.1.0 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to crash the application, causing disruption to services. Exploitation of this issue requires...

5.5CVSS5.5AI score0.0014EPSS
Exploits0References2
Rows per page
Query Builder