CVE-2023-23780

A stack-based buffer overflow in Fortinet FortiWeb version 7.0.0 through 7.0.1, Fortinet FortiWeb version 6.3.6 through 6.3.19, Fortinet FortiWeb 6.4 all versions allows attacker to escalation of privilege via specifically crafted HTTP requests...

CVE-2021-42756

Multiple stack-based buffer overflow vulnerabilities CWE-121 in the proxy daemon of FortiWeb 5.x all versions, 6.0.7 and below, 6.1.2 and below, 6.2.6 and below, 6.3.16 and below, 6.4 all versions may allow an unauthenticated remote attacker to achieve arbitrary code execution via specifically...

USN-5879-1: Linux kernel (HWE) vulnerabilities

Kyle Zeng discovered that the sysctl implementation in the Linux kernel contained a stack-based buffer overflow. A local attacker could use this to cause a denial of service system crash or execute arbitrary code. CVE-2022-4378 Tamás Koczka discovered that the Bluetooth L2CAP handshake...

Adobe Animate Code Execution Vulnerabilities (APSB23-15) - Windows

The host is missing an important security update according to Adobe Animate February 2023 update. Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Adobe Bridge 12.x < 12.0.4 / 13.x < 13.0.2 Multiple Vulnerabilities (APSB23-09)

The version of Adobe Bridge installed on the remote macOS or Mac OS X host is prior to 12.0.4 or 13.0.2. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb23-09 advisory. - Adobe Bridge versions 12.0.3 and earlier and 13.0.1 and earlier are affected by an out-of-boun...

Adobe Bridge 12.x < 12.0.4 / 13.x < 13.0.2 Multiple Vulnerabilities (APSB23-09)

The version of Adobe Bridge installed on the remote Windows host is prior to 12.0.4 or 13.0.2. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb23-09 advisory. - Adobe Bridge versions 12.0.3 and earlier and 13.0.1 and earlier are affected by an out-of-bounds write...

CVE-2023-24566

A vulnerability has been identified in Solid Edge SE2022 All versions V222.0MP12, Solid Edge SE2022 All versions, Solid Edge SE2023 All versions V223.0Update2. The affected application is vulnerable to stack-based buffer while parsing specially crafted PAR files. An attacker could leverage this...

CVE-2023-24549

A vulnerability has been identified in Solid Edge SE2022 All versions V222.0MP12, Solid Edge SE2023 All versions V223.0Update2. The affected application is vulnerable to stack-based buffer while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in...

CVE-2023-24566

A vulnerability has been identified in Solid Edge SE2022 All versions V222.0MP12, Solid Edge SE2022 All versions, Solid Edge SE2023 All versions V223.0Update2. The affected application is vulnerable to stack-based buffer while parsing specially crafted PAR files. An attacker could leverage this...

CVE-2023-24549

A vulnerability has been identified in Solid Edge SE2022 All versions V222.0MP12, Solid Edge SE2023 All versions V223.0Update2. The affected application is vulnerable to stack-based buffer while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in...

CVE-2023-24549

Solid Edge SE2022 (all versions before v222.0MP12) and SE2023 (all versions before v223.0Update2) are affected by a stack-based buffer overflow while parsing specially crafted PAR files, which could allow code execution in the current process. Siemens has released updates: SE2022 to at least v221...

CVE-2023-24549

A vulnerability has been identified in Solid Edge SE2022 All versions V222.0MP12, Solid Edge SE2023 All versions V223.0Update2. The affected application is vulnerable to stack-based buffer while parsing specially crafted PAR files. An attacker could leverage this vulnerability to execute code in...

Siemens JT Open, JT Utilities, and Parasolid

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please seeSiemens' ProductCERT Security Advisories CERT Services | Services |...

Adobe Animate 22.x < 22.0.9 / 23.x < 23.0.1 Multiple Vulnerabilities (APSB23-15)

The version of Adobe Animate installed on the remote macOS or Mac OS X host is prior to 22.0.9 or 23.0.1. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb23-15 advisory. - Adobe Animate versions 22.0.8 and earlier and 23.0.0 and earlier are affected by a Use After...

Adobe Animate 22.x < 22.0.9 / 23.x < 23.0.1 Multiple Vulnerabilities (APSB23-15)

The version of Adobe Animate installed on the remote Windows host is prior to 22.0.9 or 23.0.1. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb23-15 advisory. - Adobe Animate versions 22.0.8 and earlier and 23.0.0 and earlier are affected by a Use After Free...

PT-2023-1636 · Adobe · Premiere Rush

Name of the Vulnerable Software and Affected Versions: Adobe Premiere Rush versions 2.6 and earlier Description: The issue is a Stack-based Buffer Overflow that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction, where...

Stack overflow

NETGEAR Nighthawk WiFi Mesh systems and routers are affected by a stack-based buffer overflow vulnerability. This affects MR60 before 1.1.7.132, MS60 before 1.1.7.132, R6900P before 1.3.3.154, R7000P before 1.3.3.154, R7960P before 1.4.4.94, and R8000P before 1.4.4.94...

CVE-2022-48322

CVE-2022-48322 affects NETGEAR Nighthawk WiFi Mesh systems and routers with a stack-based buffer overflow. Affected: MR60 &lt; 1.1.7.132, MS60 &lt; 1.1.7.132, R6900P &lt; 1.3.3.154, R7000P &lt; 1.3.3.154, R7960P &lt; 1.4.4.94, R8000P

Ubuntu 18.04 LTS / 20.04 LTS : Fig2dev vulnerabilities (USN-5864-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5864-1 advisory. Frederic Cambus discovered that Fig2dev incorrectly handled certain image files. If a user or an automated system were tricked into opening a...

CVE-2022-33279

Memory corruption due to stack based buffer overflow in WLAN having invalid WNM frame length...