102 matches found
CVE-2019-7361
An attacker may convince a victim to open a malicious action micro .actm file that has serialized data, which may trigger a code execution in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018, Autodesk AutoCAD Architecture 2018, Autodesk AutoCAD Electrical 2018, Autodesk AutoCAD Map 3D 2018,...
CVE-2019-7359
An exploitable heap overflow vulnerability in the AcCellMargin handling code in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018, Autodesk AutoCAD Architecture 2018, Autodesk AutoCAD Electrical 2018, Autodesk AutoCAD Map 3D 2018, Autodesk AutoCAD Mechanical 2018, Autodesk AutoCAD MEP 2018,...
Finnish Authorities Detain Crew After Undersea Internet Cable Severed
After a sudden internet cable break between Finland and Estonia, authorities have seized the cargo ship Fitburg. With two crew members arrested and sanctioned steel found on board, investigators are now probing if this was an accident or a deliberate act of hybrid warfare...
EUVD-2019-16903
Malware in sbrugna...
EUVD-2019-16902
Malware in sbrugna...
EUVD-2025-19064
Malicious code in bioql PyPI...
EUVD-2025-18450
Malicious code in bioql PyPI...
Autodesk多款产品 安全漏洞
Autodesk Advance Steel and others are products of Autodesk, Inc. of the U.S. Autodesk Advance Steel is a suite of 3D modeling software for structural analysis of steel reinforcement.Autodesk AutoCAD is a suite of professional 3D drafting software.Autodesk Civil 3D is a suite of building informati...
Autodesk多款产品 安全漏洞
Autodesk Advance Steel and others are products of Autodesk, Inc. of the U.S. Autodesk Advance Steel is a suite of 3D modeling software for structural analysis of steel reinforcement.Autodesk AutoCAD is a suite of professional 3D drafting software.Autodesk Civil 3D is a suite of building informati...
Autodesk多款产品 安全漏洞
Autodesk Advance Steel and others are products of Autodesk, Inc. of the U.S. Autodesk Advance Steel is a suite of 3D modeling software for structural analysis of steel reinforcement.Autodesk AutoCAD is a suite of professional 3D drafting software.Autodesk Civil 3D is a suite of building informati...
Autodesk多款产品 安全漏洞
Autodesk Advance Steel and others are products of Autodesk, Inc. of the U.S. Autodesk Advance Steel is a suite of 3D modeling software for structural analysis of steel reinforcement.Autodesk AutoCAD is a suite of professional 3D drafting software.Autodesk Civil 3D is a suite of building informati...
Autodesk多款产品 安全漏洞
Autodesk Advance Steel and others are products of Autodesk, Inc. of the U.S. Autodesk Advance Steel is a suite of 3D modeling software for structural analysis of steel reinforcement.Autodesk AutoCAD is a suite of professional 3D drafting software.Autodesk Civil 3D is a suite of building informati...
Autodesk多款产品 安全漏洞
Autodesk Advance Steel and others are products of Autodesk, Inc. of the U.S. Autodesk Advance Steel is a suite of 3D modeling software for structural analysis of steel reinforcement.Autodesk AutoCAD is a suite of professional 3D drafting software.Autodesk Civil 3D is a suite of building informati...
Autodesk多款产品 安全漏洞
Autodesk Advance Steel and others are products of Autodesk, Inc. of the U.S. Autodesk Advance Steel is a suite of 3D modeling software for structural analysis of steel reinforcement.Autodesk AutoCAD is a suite of professional 3D drafting software.Autodesk Civil 3D is a suite of building informati...
Autodesk多款产品 安全漏洞
Autodesk Advance Steel and others are products of Autodesk, Inc. of the U.S. Autodesk Advance Steel is a suite of 3D modeling software for structural analysis of steel reinforcement.Autodesk AutoCAD is a suite of professional 3D drafting software.Autodesk Civil 3D is a suite of building informati...
CVE-2025-52884
RISC Zero is a zero-knowledge verifiable general computing platform, with Ethereum integration. The risc0-ethereum repository contains Solidity verifier contracts, Steel EVM view call library, and supporting code. Prior to versions 2.1.1 and 2.2.0, the Steel.validateCommitment Solidity library...
GHSA-GJV3-89HH-9XQ2 RISC Zero Ethereum invalid commitment with digest value of zero accepted by Steel.validateCommitment
Impact Prior to 2.1.1 and 2.2.0, the Steel.validateCommitment Solidity library function will return true for a crafted commitment with a digest value of zero. This violates the semantics of validateCommitment, as this does not commitment to a block that is in the current chain. Because the digest...
RISC Zero Ethereum invalid commitment with digest value of zero accepted by Steel.validateCommitment
Impact Prior to 2.1.1 and 2.2.0, the Steel.validateCommitment Solidity library function will return true for a crafted commitment with a digest value of zero. This violates the semantics of validateCommitment, as this does not commitment to a block that is in the current chain. Because the digest...
CVE-2025-52884
RISC Zero is a zero-knowledge verifiable general computing platform, with Ethereum integration. The risc0-ethereum repository contains Solidity verifier contracts, Steel EVM view call library, and supporting code. Prior to versions 2.1.1 and 2.2.0, the Steel.validateCommitment Solidity library...
CVE-2025-52884 risc0-ethereum-contracts allows invalid commitment with digest value of zero to be accepted by Steel.validateCommitment
RISC Zero is a zero-knowledge verifiable general computing platform, with Ethereum integration. The risc0-ethereum repository contains Solidity verifier contracts, Steel EVM view call library, and supporting code. Prior to versions 2.1.1 and 2.2.0, the Steel.validateCommitment Solidity library...