27 matches found
CVE-2026-27287 InCopy | Out-of-bounds Read (CWE-125)
InCopy versions 20.5.2, 21.2 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user...
CVE-2026-34628
InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
2026-04 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5082142)
2026-04 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems KB5082142...
CVE-2024-46879
A Reflected Cross-Site Scripting XSS vulnerability exists in the POST request data zipPath of tiki-adminsystem.php in Tiki version 21.2. This vulnerability allows attackers to execute arbitrary JavaScript code via a crafted payload, leading to potential access to sensitive information or...
CVE-2024-46879
Summary: CVE-2024-46879 affects Tiki 21.2, specifically the tiki-admin_system.php component, where a Reflected Cross-Site Scripting (XSS) flaw exists in the POST data parameter zipPath. The issue allows an attacker to inject and execute arbitrary JavaScript through a crafted payload, potentially ...
MiracleLinux 8 : php:7.4 (AXSA:2022-3573:01)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3573:01 advisory. php: Local privilege escalation via PHP-FPM CVE-2021-21703 php: SSRF bypass in FILTERVALIDATEURL CVE-2021-21705 Tenable has extracted the preceding...
2026-01 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5073457)
Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer...
2025-11 Cumulative Update for Windows 10 Version 21H2 for x86-based Systems (KB5068781)
Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer...
2025-11 Dynamic Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5068781)
ComponentUpdate: A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft...
CVE-2021-26377
creationtimestamp| type| source ---|---|--- 2025-09-06 19:50:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ly6x4rmaal2p...
CVE-2021-21987
VMware Workstation 16.x prior to 16.1.2 and Horizon Client for Windows 5.x prior to 5.5.2 contain out-of-bounds read vulnerability in the Cortado ThinPrint component TTC Parser. A malicious actor with access to a virtual machine or remote desktop may be able to exploit these issues leading to...
CVE-2021-27253
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR Nighthawk R7800. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handli...
CVE-2025-48204
creationtimestamp| type| source ---|---|--- 2025-05-21 17:18:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpp4anh5bx2k 2025-05-21 20:41:44+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17200...
CVE-2023-28207
creationtimestamp| type| source ---|---|--- 2025-03-21 03:14:22+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkuandack526 2025-03-21 04:16:28+00:00| seen| https://t.me/cvedetector/20781 2025-03-21 16:19:31+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8370 2025-03-25...
CVE-2021-46849
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-29421. Reason: This candidate is a duplicate of CVE-2021-29421. Notes: All CVE users should reference CVE-2021-29421 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage...
November 9, 2021-KB5006364 Cumulative Update for .NET Framework 3.5 and 4.8 for Microsoft server operating system version 21H2
None None...
SICK Visionary-S CX 加密问题漏洞
SICK Visionary-S CX is a 3D vision sensor from SICK, Germany. It provides direct output of color and depth values via Ethernet. The SICK Visionary-S CX has a security vulnerability in versions prior to 5.21.2.29154R, which can be exploited by an attacker with a weak password to more easily...
CVE-2021-29052
Affected products: Liferay Portal 7.3.0–7.3.5 and Liferay DXP 7.3 before fix pack 1. Issue: Data Engine module fails to check permissions in DataDefinitionResourceImpl.getSiteDataDefinitionByContentTypeByDataDefinitionKey, enabling remote authenticated users to view DDMStructures via GET API call...
Veritas System Recovery Security Breach
Veritas System Recovery is a system recovery software from Veritas, USA. The software provides Windows systems with the ability to recover corrupted systems without reinstalling the system. A security vulnerability exists in Veritas System Recovery before 21.2, which can be exploited by an attack...
Tiki Cross-Site Scripting Vulnerability (CNVD-2020-44400)
Tiki is a suite of open source content management and portal applications from the Tiki community that can be used to create web applications, portals, corporate intranets, extranets, and more. A cross-site scripting vulnerability exists in versions prior to Tiki 21.2. The vulnerability stems fro...