Lucene search
K

8 matches found

Zero Day Initiative
Zero Day Initiative
added 2021/06/25 12:0 a.m.85 views

Apple macOS CoreText TTF Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the CoreText library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the parsing o...

7.8CVSS6.6AI score0.01748EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/02/04 12:0 a.m.51 views

Apple macOS CoreText TTF Parsing Out-of-Bounds Write Remote Code Execution

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the CoreText library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the parsing o...

7.8CVSS5.5AI score0.01748EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/02/04 12:0 a.m.39 views

Apple macOS libFontParser TTF Parsing Integer Underflow Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the libFontParser library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within...

3.3CVSS4.1AI score0.00891EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2020/12/08 12:0 a.m.46 views

Apple macOS CoreText MorxLigatureSubtableBuilder TTF Parsing Out-of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the CoreText library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the parsing o...

7.8CVSS5.3AI score0.08491EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2020/12/08 12:0 a.m.138 views

Apple macOS libFontParser TTF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the libFontParser library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the...

7.8CVSS4.9AI score0.00888EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2020/12/08 12:0 a.m.37 views

Apple macOS libFontParser TwOFFStream TTF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the libFontParser library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within...

3.3CVSS3.1AI score0.00994EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2020/08/13 12:0 a.m.37 views

Microsoft Windows findBaseLigature TTF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS2.9AI score0.07087EPSS
Exploits0References1
NVD
NVD
added 2017/04/12 2:59 p.m.14 views

CVE-2017-3038

Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable memory corruption vulnerability when parsing TTF TrueType font format stream data. Successful exploitation could lead to arbitrary code execution...

9.3CVSS7.9AI score0.03983EPSS
Exploits0References5
Rows per page
Query Builder