Lucene search
K

31714 matches found

SUSE CVE
SUSE CVE
added 2024/09/28 2:52 a.m.9 views

SUSE CVE-2024-46815

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check numvalidsets before accessing readerwmsets WHY & HOW numvalidsets needs to be checked to avoid a negative index when accessing readerwmsetsnumvalidsets - 1. This fixes an OVERRUN issue reported by Coverity...

7.8CVSS6.5AI score0.00263EPSS
Exploits0References35
OSV
OSV
added 2024/09/27 1:15 p.m.5 views

UBUNTU-CVE-2024-46815

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check numvalidsets before accessing readerwmsets WHY & HOW numvalidsets needs to be checked to avoid a negative index when accessing readerwmsetsnumvalidsets - 1. This fixes an OVERRUN issue reported by Coverity...

7.8CVSS6.2AI score0.00263EPSS
Exploits0References26
BDU FSTEC
BDU FSTEC
added 2024/09/27 12:0 a.m.5 views

The vulnerability of the invesalius/reader/dicom.py component of the medical software used to create virtual reconstructions of human structures, InVesalius, allows a perpetrator to execute arbitrary code.

The vulnerability of the invesalius/reader/dicom.py component of the medical software for creating virtual reconstructions of human structures, InVesalius, is related to insufficient validation of the input data. Exploiting this vulnerability could allow an attacker, operating remotely, to execut...

9CVSS7.9AI score0.02655EPSS
Exploits5References5Affected Software1
NVD
NVD
added 2024/09/26 4:15 p.m.14 views

CVE-2024-41605

In Foxit PDF Reader before 2024.3, and PDF Editor before 2024.3 and 13.x before 13.1.4, an attacker can replace an update file with a Trojan horse via side loading, because the update service lacks integrity validation for the updater. Attacker-controlled code may thus be executed...

8.4CVSS0.00163EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/26 12:0 a.m.10 views

CVE-2024-41605

In Foxit PDF Reader before 2024.3, and PDF Editor before 2024.3 and 13.x before 13.1.4, an attacker can replace an update file with a Trojan horse via side loading, because the update service lacks integrity validation for the updater. Attacker-controlled code may thus be executed...

8.4AI score0.00163EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/09/26 12:0 a.m.4 views

Foxit PDF Reader AcroForm Doc Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.8CVSS6.7AI score0.00401EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/09/26 12:0 a.m.6 views

Foxit PDF Reader PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PD...

7.8CVSS6.8AI score0.00585EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/09/26 12:0 a.m.11 views

Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.8CVSS6.7AI score0.0062EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/26 12:0 a.m.16 views

CVE-2024-41605

In Foxit PDF Reader before 2024.3, and PDF Editor before 2024.3 and 13.x before 13.1.4, an attacker can replace an update file with a Trojan horse via side loading, because the update service lacks integrity validation for the updater. Attacker-controlled code may thus be executed...

0.00163EPSS
Exploits0References1
Kaspersky
Kaspersky
added 2024/09/26 12:0 a.m.8 views

KLA74565 PE vulnerability in Foxit Reader

Elevation of privilege vulnerability was found in Foxit Reader. Malicious users can exploit this vulnerability to execute arbitrary code, gain privileges. Original advisories Foxit Security Bulletins Related products Foxit-Reader CVE list CVE-2024-48618 unknown Solution Update to the latest versi...

8.4AI score
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2024/09/26 12:0 a.m.5 views

Foxit PDF Reader Annotation Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS5.9AI score0.00488EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/09/26 12:0 a.m.4 views

Foxit PDF Reader Update Service Incorrect Permission Assignment Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Foxit PDF Reader. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of the...

7.8CVSS6.6AI score0.0027EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/09/26 12:0 a.m.7 views

Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS5.9AI score0.00423EPSS
Exploits0References1
Kaspersky
Kaspersky
added 2024/09/26 12:0 a.m.21 views

KLA73578 Multiple vulnerabilities in Foxit Reader

Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. Implementation vulnerability in FoxitPDFReaderUpdater.exe can be exploited to...

8.8CVSS8.8AI score0.0193EPSS
Exploits1References3
Zero Day Initiative
Zero Day Initiative
added 2024/09/26 12:0 a.m.9 views

Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS5.9AI score0.00423EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/09/26 12:0 a.m.6 views

Foxit PDF Reader Update Service Incorrect Permission Assignment Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Foxit PDF Reader. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of the...

7.8CVSS6.6AI score0.00285EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2024/09/26 12:0 a.m.8 views

Foxit PDF Reader PDF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PD...

7.8CVSS6.7AI score0.00585EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/09/26 12:0 a.m.3 views

PT-2024-6538 · Foxit · Foxit Pdf Reader +1

Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader versions prior to 2024.3 Foxit PDF Editor versions prior to 2024.3 and 13.x prior to 13.1.4 Description: The issue is related to errors in access control, allowing an attacker to replace an update file with a Trojan horse via...

8.4CVSS7.8AI score0.00163EPSS
Exploits0References8
Zero Day Initiative
Zero Day Initiative
added 2024/09/26 12:0 a.m.11 views

Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.8CVSS6.7AI score0.00875EPSS
Exploits0References1
CVE
CVE
added 2024/09/26 12:0 a.m.58 views

CVE-2024-41605

CVE-2024-41605 affects Foxit PDF Reader before 2024.3 and Foxit PDF Editor before 2024.3, and 13.x before 13.1.4. The issue is that the updater lacks integrity validation, allowing an attacker to replace an update file with a Trojan horse and execute attacker-controlled code via side loading. Thi...

8.4CVSS8.4AI score0.00163EPSS
Exploits0References1
Rows per page
Query Builder