112 matches found
CVE-2021-41540
A vulnerability has been identified in Solid Edge SE2021 All versions SE2021MP8. The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process ZDI-CAN-13776...
EUVD-2021-23777
Malware in sbrugna...
EUVD-2021-23776
Malware in sbrugna...
EUVD-2021-28551
Malicious code in bioql PyPI...
EUVD-2021-28556
Malicious code in bioql PyPI...
EUVD-2021-28554
Malicious code in bioql PyPI...
EUVD-2021-28553
Malicious code in bioql PyPI...
EUVD-2021-28552
Malicious code in bioql PyPI...
CVE-2021-41535
A vulnerability has been identified in NX 1953 Series All versions V1973.3700, NX 1980 Series All versions V1988, Solid Edge SE2021 All versions SE2021MP8. The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to...
CVE-2021-37202
A vulnerability has been identified in NX 1980 Series All versions V1984, Solid Edge SE2021 All versions SE2021MP8. The IFC adapter in affected application contains a use-after-free vulnerability that could be triggered while parsing user-supplied IFC files. An attacker could leverage this...
CVE-2021-37203
A vulnerability has been identified in NX 1980 Series All versions V1984, Solid Edge SE2021 All versions SE2021MP8. The plmxmlAdapterIFC.dll contains an out-of-bounds read while parsing user supplied IFC files which could result in a read past the end of an allocated buffer. This could allow an...
CVE-2021-37178
A vulnerability has been identified in Solid Edge SE2021 All Versions SE2021MP7. An XML external entity injection vulnerability in the underlying XML parser could cause the affected application to disclose arbitrary files to remote attackers by loading a specially crafted xml file...
CVE-2021-41538
A vulnerability has been identified in NX 1953 Series All versions V1973.3700, NX 1980 Series All versions V1988, Solid Edge SE2021 All versions SE2021MP8. The affected application is vulnerable to information disclosure by unexpected access to an uninitialized pointer while parsing user-supplied...
CVE-2020-28384
A vulnerability has been identified in Solid Edge SE2020 All Versions SE2020MP12, Solid Edge SE2021 All Versions SE2021MP2. Affected applications lack proper validation of user-supplied data when parsing PAR files. This could lead to a stack based buffer overflow. An attacker could leverage this...
CVE-2021-41534
A vulnerability has been identified in NX 1980 Series All versions V1984, Solid Edge SE2021 All versions SE2021MP8. The affected application is vulnerable to an out of bounds read past the end of an allocated buffer when parsing JT files. An attacker could leverage this vulnerability to leak...
CVE-2021-41536
A vulnerability has been identified in Solid Edge SE2021 All versions SE2021MP8. The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process ZDI-CAN-13778...
CVE-2021-41540
A vulnerability has been identified in Solid Edge SE2021 All versions SE2021MP8. The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process ZDI-CAN-13776...
CVE-2021-41538
A vulnerability has been identified in NX 1953 Series All versions V1973.3700, NX 1980 Series All versions V1988, Solid Edge SE2021 All versions SE2021MP8. The affected application is vulnerable to information disclosure by unexpected access to an uninitialized pointer while parsing user-supplied...
CVE-2021-41539
A vulnerability has been identified in Solid Edge SE2021 All versions SE2021MP8. The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process ZDI-CAN-13773...
CVE-2021-41539
A vulnerability has been identified in Solid Edge SE2021 All versions SE2021MP8. The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage this vulnerability to execute code in the context of the current process ZDI-CAN-13773...