31650 matches found
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...
PT-2024-8043 · Adobe · Acrobat Reader
Name of the Vulnerable Software and Affected Versions: Acrobat Reader versions 20.005.30636 through 24.002.20965 and earlier Description: The issue is related to a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this...
Foxit PDF Reader Doc Object Use-After-Free Information Disclosure Vulnerability
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
PT-2024-7408 · Siemens · Simatic Reader Rf615R +11
Name of the Vulnerable Software and Affected Versions: SIMATIC Reader RF610R CMIIT versions prior to V4.2 SIMATIC Reader RF610R ETSI versions prior to V4.2 SIMATIC Reader RF610R FCC versions prior to V4.2 SIMATIC Reader RF615R CMIIT versions prior to V4.2 SIMATIC Reader RF615R ETSI versions prior...
OESA-2024-1954 firefox security update
Mozilla Firefox is a standalone web browser, designed for standards compliance and performance. Its functionality can be enhanced via a plethora of extensions. Security Fixes:Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. Security...
Nokogiri: Denial of Service
Background Nokogiri is an HTML, XML, SAX, and Reader parser. Description A denial of service vulnerability has been discovered in Nokogiri. Please review the CVE identifier referenced below for details. Impact Nokogiri fails to check the return value from xmlTextReaderExpand in the method...
EulerOS 2.0 SP5 : libxml2 (EulerOS-SA-2024-2071)
According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface with DTD validation and XInclude...
PT-2024-8735 · Foxit · Foxit Pdf Reader +1
Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader affected versions not specified Foxit PDF Editor affected versions not specified Description: This issue allows remote attackers to disclose sensitive information on affected installations. User interaction is required, where...
PT-2024-8736 · Foxit · Foxit Pdf Reader +1
Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader affected versions not specified Foxit PDF Editor affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the...
PT-2024-8734 · Foxit · Foxit Pdf Reader +1
Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader affected versions not specified Foxit PDF Editor affected versions not specified Description: The issue is related to a use-after-free vulnerability in the AcroForm component of Foxit PDF Reader and Foxit PDF Editor. This...
VulnCheck KEV: CVE-2019-15637
Numerous Tableau products are vulnerable to XXE via a malicious workbook, extension, or data source, leading to information disclosure or a DoS. This affects Tableau Server, Tableau Desktop, Tableau Reader, and Tableau Public Desktop...
CVE-2023-48362
CVE-2023-48362 describes a XXE vulnerability in the XML Format Plugin of Apache Drill . The issue affects Drill 1.19.0 and later, enabling an attacker to read arbitrary files on a remote file system or execute commands through a crafted XML file. The documented remediation is to upgrade to Apache...
CVE-2023-48362 Apache Drill: XXE Vulnerability in XML Format Reader
XXE in the XML Format Plugin in Apache Drill version 1.19.0 and greater allows a user to read any file on a remote file system or execute commands via a malicious XML file. Users are recommended to upgrade to version 1.21.2, which fixes this issue...
CVE-2023-48362 Apache Drill: XXE Vulnerability in XML Format Reader
XXE in the XML Format Plugin in Apache Drill version 1.19.0 and greater allows a user to read any file on a remote file system or execute commands via a malicious XML file. Users are recommended to upgrade to version 1.21.2, which fixes this issue...
EulerOS 2.0 SP8 : libxml2 (EulerOS-SA-2024-2040)
According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface with DTD validation and XInclude...
Foxit PDF Reader Out-of-Bounds Read Vulnerability (CNVD-2024-33786)
Foxit PDF Reader is China Foxit Foxit company a PDF reader. Foxit PDF Reader suffers from an out-of-bounds read vulnerability that can be exploited by attackers to disclose sensitive information...
Foxit PDF Reader Out-of-Bounds Read Vulnerability (CNVD-2024-33788)
Foxit PDF Reader is China Foxit Foxit company a PDF reader. Foxit PDF Reader suffers from an out-of-bounds read vulnerability that can be exploited by attackers to disclose sensitive information...
Foxit PDF Reader Memory Misreference Vulnerability (CNVD-2024-33836)
Foxit PDF Reader is China Foxit Foxit company a PDF reader. A memory misreference vulnerability exists in Foxit PDF Reader, which can be exploited by an attacker to execute arbitrary code...
Foxit PDF Reader Out-of-Bounds Read Vulnerability (CNVD-2024-33791)
Foxit PDF Reader is China Foxit Foxit company a PDF reader. Foxit PDF Reader suffers from an out-of-bounds read vulnerability that can be exploited by attackers to disclose sensitive information...
Foxit PDF Reader Memory Misreference Vulnerability (CNVD-2024-33787)
Foxit PDF Reader is China Foxit Foxit company a PDF reader. A memory misreference vulnerability exists in Foxit PDF Reader, which can be exploited by attackers to disclose sensitive information...