Lucene search
K

165 matches found

Zero Day Initiative
Zero Day Initiative
added 2021/12/21 12:0 a.m.25 views

Open Design Alliance (ODA) Drawings Explorer TGA File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Open Design Alliance ODA Drawings Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific fl...

3.3CVSS6.9AI score0.00817EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/12/07 12:0 a.m.31 views

Tencent WeChat WXAM Decoder Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Tencent WeChat. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the WXAM...

4.3CVSS1.7AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2021/12/07 12:0 a.m.14 views

Tencent WeChat WXAM Decoder Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Tencent WeChat. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the WXAM...

3.3CVSS1.7AI score
Exploits0
Cvelist
Cvelist
added 2021/12/05 8:30 p.m.27 views

CVE-2021-44047

A use-after-free vulnerability exists when reading a DWF/DWFX file using Open Design Alliance Drawings SDK before 2022.11. The specific issue exists with parsing DWF/DWFX files. Crafted data in a DWF/DWFX file and lack of proper validation of input data can trigger a write operation past the end ...

7.9AI score0.00855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/12/03 12:0 a.m.24 views

Delta Industrial Automation DIAScreen XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Industrial Automation DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS4.7AI score0.01059EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/11/29 12:0 a.m.20 views

Open Design Alliance (ODA) Drawings Explorer DWF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open Design Alliance ODA Drawings Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exist...

7.8CVSS6.5AI score0.01837EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/10/28 12:0 a.m.19 views

Fuji Electric Tellus Lite V-Simulator X1 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fuji Electric Tellus Lite. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5.4AI score0.00981EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/10/28 12:0 a.m.27 views

Fuji Electric Tellus Lite V9 File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fuji Electric Tellus Lite. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5.4AI score0.00981EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/09/16 12:0 a.m.47 views

Adobe Acrobat Pro DC PostScript File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS2.2AI score0.0238EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/07/19 12:0 a.m.50 views

Siemens JT2Go TIF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of TIF...

7.8CVSS5.5AI score0.0184EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2021/07/19 12:0 a.m.43 views

Siemens JT2Go J2K File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing ...

3.3CVSS3AI score0.01348EPSS
Exploits0References2
NVD
NVD
added 2021/06/15 7:15 p.m.26 views

CVE-2021-31501

This vulnerability allows remote attackers to disclose sensitive information on affected installations of OpenText Brava! Desktop 16.6.3.84. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

4.3CVSS0.01097EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2021/05/06 12:0 a.m.13 views

(0Day) Delta Industrial Automation DOPSoft DPA File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Delta Industrial Automation DOPSoft. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exis...

3.3CVSS3.7AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2021/04/29 12:0 a.m.56 views

Microsoft Windows win32kfull MulStretchBlt Untrusted Pointer Dereference Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the win32kfull.sys...

7.8CVSS6AI score0.01441EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/02/24 12:0 a.m.29 views

Tencent WeChat WXAM Decoder Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Tencent WeChat. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the WXAM...

6.5CVSS1.7AI score0.06447EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2021/02/24 12:0 a.m.35 views

Siemens JT2Go DXF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DXF...

7.8CVSS5.2AI score0.0263EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/02/24 12:0 a.m.45 views

Siemens JT2Go DXF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of DXF...

7.8CVSS5.2AI score0.0263EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/02/10 12:0 a.m.43 views

Adobe Photoshop U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Photoshop. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of...

7.8CVSS4.2AI score0.03357EPSS
Exploits0References1
NVD
NVD
added 2021/02/09 6:15 p.m.26 views

CVE-2020-17420

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Studio Photo 3.6.6.922. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists with...

4.3CVSS0.02723EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2021/01/29 12:0 a.m.42 views

Linux Kernel setsockopt System Call Untrusted Pointer Dereference Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Linux Kernel. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling...

6.5CVSS6AI score
Exploits0
Rows per page
Query Builder