Lucene search
K

15 matches found

Vulnrichment
Vulnrichment
added 2026/05/12 8:25 p.m.6 views

CVE-2025-65087 Out-of-bounds read in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share

An Out-of-Bounds Read vulnerability is present in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions 12.6.1204.216 and prior that could allow an attacker to disclose information or execute arbitrary code when a specially crafted VC6 file is being parsed...

8.4CVSS6AI score0.00165EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.12 views

Ashlar-Vellum多款产品 缓冲区错误漏洞

Ashlar-Vellum Xenon is a product of the Ashlar-Vellum company. Ashlar-Vellum Xenon is a CAD modeling software. Ashlar-Vellum Cobalt is a parametric computer-aided design and 3D modeling program. Ashlar-Vellum Argon is a 2D drafting and 3D modeling software. Several products from the Ashlar-Vellum...

8.4CVSS6.2AI score0.00165EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.10 views

Ashlar-Vellum多款产品 缓冲区错误漏洞

Ashlar-Vellum Xenon is a product of the Ashlar-Vellum company. Ashlar-Vellum Xenon is a CAD modeling software. Ashlar-Vellum Cobalt is a parametric computer-aided design and 3D modeling program. Ashlar-Vellum Argon is a 2D drafting and 3D modeling software. Several products from the Ashlar-Vellum...

8.4CVSS6.2AI score0.00165EPSS
Exploits0References1
OSV
OSV
added 2026/04/03 9:57 p.m.4 views

GHSA-MMM5-3G4X-QW39 OpenSTAManager has a SQL Injection via righe Parameter in confronta_righe Modals

Description Six confrontarighe.php files across different modules in OpenSTAManager fetchArray 'SELECT mgarticolilang.title, mgarticoli.codice, inrigheinterventi. FROM inrigheinterventi INNER JOIN...

8.8CVSS6.2AI score0.00416EPSS
Exploits1References3
CNVD
CNVD
added 2025/09/19 12:0 a.m.4 views

Ashlar-Vellum Cobalt Out-of-Bounds Read Vulnerability (CNVD-2025-23023)

Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. Ashlar-Vellum Cobalt suffers from an out-of-bounds read...

7.8CVSS7.3AI score0.00189EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/17 12:0 a.m.5 views

Ashlar-Vellum Graphite 缓冲区错误漏洞

Ashlar-Vellum Graphite is a CAD modeling software from Ashlar-Vellum. A buffer error vulnerability exists in Ashlar-Vellum Graphite that stems from a lack of validation of user-supplied data when parsing VC6 files, which could lead to out-of-bounds writing and execution of arbitrary code...

7.8CVSS7.8AI score0.00193EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/17 12:0 a.m.7 views

Ashlar-Vellum Cobalt 缓冲区错误漏洞

Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. Ashlar-Vellum Cobalt suffers from an out-of-bounds read...

7.8CVSS7.2AI score0.00189EPSS
Exploits0References1
OSV
OSV
added 2025/08/18 10:15 p.m.4 views

CVE-2025-46269

In Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions prior to 12.6.1204.204, the affected applications lack proper validation of user-supplied data when parsing VC6 files. This could lead to a heap-based buffer overflow. An attacker could leverage this vulnerability to execut...

8.4CVSS6.4AI score0.00156EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/05/05 12:0 a.m.7 views

The vulnerability of the Graphite automated drawing system, related to writing beyond the buffer memory boundaries, allows a perpetrator to execute arbitrary code.

The vulnerability of the Graphite automated drawing system is related to the writing beyond the buffer memory during the analysis of VC6 files. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS7.8AI score0.00294EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2025/03/11 12:0 a.m.4 views

Ashlar-Vellum Cobalt 安全漏洞

Ashlar-Vellum Cobalt is a parameter-based computer-aided design and 3D modeling program from Ashlar-Vellum. A security vulnerability exists in Ashlar-Vellum Cobalt that originates from a heap buffer overflow when parsing VC6 files, which could lead to remote code execution...

7.8CVSS8.2AI score0.00264EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/03/11 12:0 a.m.6 views

Ashlar-Vellum Cobalt 安全漏洞

Ashlar-Vellum Cobalt is a parameter-based computer-aided design and 3D modeling program from Ashlar-Vellum. A security vulnerability exists in Ashlar-Vellum Cobalt that stems from type confusion when parsing VC6 files, which could lead to remote code execution...

7.8CVSS8AI score0.0026EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2024/05/03 2:15 a.m.3 views

CVE-2023-34307

Ashlar-Vellum Graphite VC6 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Graphite. User interaction is required to exploit this vulnerability in that the target...

8.8CVSS6.2AI score0.00889EPSS
Exploits0References2
OSV
OSV
added 2024/05/03 2:15 a.m.2 views

CVE-2023-34303

Ashlar-Vellum Cobalt Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must visit a malicious...

7.8CVSS6.2AI score0.00401EPSS
Exploits0References1
OSV
OSV
added 2023/10/26 8:15 p.m.3 views

CVE-2023-39936

In Ashlar-Vellum Graphite v13.0.48, the affected application lacks proper validation of user-supplied data when parsing VC6 files. This could lead to an out-of-bounds read. An attacker could leverage this vulnerability to execute arbitrary code in the context of the current process...

7.8CVSS6.1AI score0.0026EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/06/15 12:0 a.m.8 views

PT-2023-24799 · Ashlar Vellum · Ashlar-Vellum Cobalt

Name of the Vulnerable Software and Affected Versions: Ashlar-Vellum Cobalt affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations. It requires user interaction, such as visiting a malicious page or opening a malicious...

7.8CVSS7.4AI score0.00401EPSS
Exploits0References4
Rows per page
Query Builder