Lucene search
K

165 matches found

CVE
CVE
added 2024/05/03 1:59 a.m.77 views

CVE-2023-38116

CVE-2023-38116 concerns Foxit PDF Reader: a Doc Object Out-of-Bounds Read that can disclose sensitive information and, with additional vulnerabilities, may enable arbitrary code execution. The flaw stems from improper validation of user-supplied data during Doc object handling, allowing reads pas...

3.3CVSS3.4AI score0.00389EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2024/05/03 1:59 a.m.32 views

CVE-2023-38105 Foxit PDF Reader PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

Foxit PDF Reader PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must...

3.3CVSS6AI score0.00386EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/03 1:58 a.m.16 views

CVE-2023-37357 Kofax Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

Kofax Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must...

3.3CVSS3.8AI score0.00369EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/03 1:57 a.m.28 views

CVE-2023-34309 Ashlar-Vellum Cobalt Untrusted Pointer Dereference Remote Code Execution Vulnerability

Ashlar-Vellum Cobalt Untrusted Pointer Dereference Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must visit ...

7.8CVSS8.2AI score0.00401EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/03 1:57 a.m.17 views

CVE-2023-34270 Fatek Automation FvDesigner FPJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

Fatek Automation FvDesigner FPJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fatek Automation FvDesigner. User interaction is required to exploit this vulnerability in that t...

7.8CVSS8.2AI score0.00394EPSS
Exploits0References1
CVE
CVE
added 2024/04/03 4:19 p.m.66 views

CVE-2024-27345

CVE-2024-27345 affects Kofax Power PDF and stems from PDF file parsing. The flaw is a lack of proper validation of user-supplied data, causing an out-of-bounds read (read past the end of an allocated object) that can disclose sensitive information. This vulnerability requires user interaction (ta...

3.3CVSS3.3AI score0.00377EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/04/03 4:19 p.m.18 views

CVE-2024-27345 Kofax Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

Kofax Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must...

3.3CVSS3.7AI score0.00377EPSS
Exploits0References1
CVE
CVE
added 2024/04/03 4:17 p.m.72 views

CVE-2024-27336

CVE-2024-27336 affects Kofax Power PDF, with the flaw located in PNG file parsing. The vulnerability arises from insufficient validation of user-supplied data, causing a read past the end of an allocated object (out-of-bounds read) and enabling information disclosure on affected installations. Th...

5.5CVSS3.3AI score0.00406EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/04/02 8:17 p.m.73 views

CVE-2024-30359

CVE-2024-30359 describes a remote code execution vulnerability in Foxit PDF Reader related to AcroForm 3D objects. The flaw arises from insufficient validation of user-supplied data when handling 3D AcroForm objects, allowing an out-of-bounds read that can lead to code execution in the context of...

7.8CVSS8.2AI score0.00748EPSS
Exploits0References2Affected Software2
Vulnrichment
Vulnrichment
added 2024/04/02 8:15 p.m.17 views

CVE-2024-30356 Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vulnerability

Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a...

3.3CVSS6AI score0.00474EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/03/28 12:0 a.m.37 views

Linux Kernel nft_exthdr_tcp_eval Stack-based Buffer Overflow Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of the Linux Kernel. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

7.3CVSS6.5AI score0.00675EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/03/28 12:0 a.m.25 views

SolarWinds Access Rights Manager JsonSerializationHelper Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of SolarWinds Access Rights Manager. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

9.9CVSS7.9AI score0.04202EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/02/12 12:0 a.m.14 views

Autodesk AutoCAD STP File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of ST...

7.8CVSS7.3AI score0.00515EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2024/02/09 12:0 a.m.18 views

X.Org Server DeliverStateNotifyEvent Heap-based Buffer Overflow Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of X.Org Server. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

7.8CVSS7.5AI score0.01229EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/01/11 12:0 a.m.24 views

D-Link DIR-X3260 prog.cgi SetWLanRadioSecurity Stack-Based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Authentication is required to exploit this vulnerability. The specific flaw exists within the prog.cgi binary, which handles HNAP requests made to the lighttpd...

6.8CVSS7.5AI score0.01126EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/01/11 12:0 a.m.23 views

D-Link DIR-X3260 prog.cgi SetSysEmailSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-X3260 routers. Authentication is required to exploit this vulnerability. The specific flaw exists within the prog.cgi binary, which handles HNAP requests made to the lighttpd...

6.8CVSS7.5AI score0.01126EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/12/20 12:0 a.m.25 views

Foxit PDF Reader AcroForm Doc Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS6.3AI score0.00397EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/09/29 12:0 a.m.34 views

Linux Kernel Netfilter Xtables Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of the Linux Kernel. An attacker must first obtain the ability to execute high-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

5.1CVSS5.6AI score0.00415EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/09/22 12:0 a.m.19 views

Kofax Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

3.3CVSS5.9AI score0.00327EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/09/07 12:0 a.m.28 views

D-Link DIR-3040 prog.cgi SetWanSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-3040 routers. Authentication is required to exploit this vulnerability. The specific flaw exists within the prog.cgi binary, which handles HNAP requests made to the lighttpd...

6.8CVSS7.3AI score0.00705EPSS
Exploits0References1
Rows per page
Query Builder