7 matches found
PT-2024-31819 · Facebook · Facebook Thrift
Name of the Vulnerable Software and Affected Versions: Facebook Thrift versions v2024.09.09.00 through v2024.09.23.00 Description: A null-dereference vulnerability involving parsing requests specifying invalid protocols can cause the application to crash or potentially result in other undesirable...
PT-2024-25415 · Siemens · Simcenter Femap
Name of the Vulnerable Software and Affected Versions: Simcenter Femap versions prior to V2406 Description: A vulnerability has been identified in the affected applications, which contain an out of bounds read past the end of an allocated structure while parsing specially crafted BMP files. This...
PT-2024-12745 · Gtkwave · Gtkwave
Name of the Vulnerable Software and Affected Versions: GTKWave version 3.3.115 Description: Multiple integer overflow vulnerabilities exist in the VZT facgeometry parsing functionality. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious fil...
PT-2024-12787 · Gtkwave · Gtkwave
Name of the Vulnerable Software and Affected Versions: GTKWave version 3.3.115 Description: The issue is related to multiple integer overflow vulnerabilities in the LXT2 facgeometry parsing functionality. A specially crafted .lxt2 file can lead to arbitrary code execution when opened by a victim...
PT-2022-8903 · Js-Ini · Js-Ini
Name of the Vulnerable Software and Affected Versions: js-ini versions prior to 1.3.0 Description: The issue arises when an attacker submits a malicious INI file to an application that uses the parse function to parse it. This can lead to prototype pollution on the application, which can be furth...
PT-2022-11194 · Autodesk · Autodesk Inventor
Name of the Vulnerable Software and Affected Versions: Autodesk Inventor versions 2019 through 2022 Description: The issue is related to an Information Disclosure vulnerability when parsing JT files, which, in conjunction with other vulnerabilities, may lead to code execution through maliciously...
PT-2021-11584 · X/Text +7 · X/Text +7
Name of the Vulnerable Software and Affected Versions: x/text versions 1.15.4 Description: An "index out of range" panic occurs in language.ParseAcceptLanguage while parsing the -u- extension. The x/text/language package is supposed to be able to parse an HTTP Accept-Language header...