PT-2023-6583 · Rockwell Automation · Rockwell Automation Arena

Name of the Vulnerable Software and Affected Versions: Rockwell Automation Arena affected versions not specified Description: The issue is related to the use of an uninitialized pointer in the application, which could allow a malicious user to execute arbitrary code by opening a malicious file...

Debian dla-3626 : krb5-admin-server - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3626 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3626-1 [email protected] https://www.debian.org/lts/security/...

Ubuntu 16.04 LTS : Pure-FTPd vulnerability (USN-4515-1)

The remote Ubuntu 16.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4515-1 advisory. Antonio Norales discovered that Pure-FTPd incorrectly handled directory aliases. An attacker could possibly use this issue to access sensitive information...

The vulnerability of the Adobe Photoshop graphic editor relates to the use of an uninitialized pointer, which allows a hacker to execute arbitrary code.

The vulnerability of the Adobe Photoshop graphic editor is related to the use of an uninitialized pointer. Exploiting this vulnerability allows a hacker to execute arbitrary code using a specially created PSD file...

CVE-2023-26370

Adobe Photoshop versions 23.5.5 and earlier and 24.7 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a...

CVE-2023-26370

Adobe Photoshop versions 23.5.5 and earlier and 24.7 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a...

Null pointer dereference

Adobe Photoshop versions 23.5.5 and earlier and 24.7 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a...

CVE-2023-26370

CVE-2023-26370 affects Adobe Photoshop versions 23.5.5 and earlier and 24.7 and earlier with an Access of Uninitialized Pointer that can lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim opens a malicious file). Connected sources c...

CVE-2023-26370 ZDI-CAN-21257: Adobe Photoshop PSD File Parsing Uninitialized Variable Remote Code Execution Vulnerability

Adobe Photoshop versions 23.5.5 and earlier and 24.7 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a...

Adobe Photoshop 23.x < 24.7.1 / 24.x < 24.7.1 Vulnerability (APSB23-51)

The version of Adobe Photoshop installed on the remote Windows host is prior to 24.7.1. It is, therefore, affected by a vulnerability as referenced in the apsb23-51 advisory. - Adobe Photoshop versions 23.5.5 and earlier and 24.7 and earlier are affected by an Access of Uninitialized Pointer...

Adobe Photoshop 23.x < 24.7.1 / 24.x < 24.7.1 Vulnerability (macOS APSB23-51)

The version of Adobe Photoshop installed on the remote macOS or Mac OS X host is prior to 24.7.1. It is, therefore, affected by a vulnerability as referenced in the apsb23-51 advisory. - Adobe Photoshop versions 23.5.5 and earlier and 24.7 and earlier are affected by an Access of Uninitialized...

Foxit PhantomPDF < 9.1 Multiple Vulnerabilities

According to its version, the Foxit PhantomPDF application formally known as Phantom installed on the remote Windows host is prior to 9.1. It is, therefore affected by multiple vulnerabilities: - In Foxit Reader before 9.1 and Foxit PhantomPDF before 9.1, a flaw exists within the parsing of the...

Amazon Linux 2 : krb5 (ALAS-2023-2225)

It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2225 advisory. lib/kadm5/kadmrpcxdr.c in MIT Kerberos 5 aka krb5 before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs because...

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Core component of the Oracle VM VirtualBox software relates to access to an uninitialized pointer. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Core component of the Oracle VM VirtualBox software allows a hacker to gain unauthorized access to protected information.

The vulnerability of the Core component of the Oracle VM VirtualBox software relates to access to an uninitialized pointer. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

Medium: krb5

Issue Overview: lib/kadm5/kadmrpcxdr.c in MIT Kerberos 5 aka krb5 before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs because xdrkadm5principalentrec does not validate the relationship between nkeydata and the...

Medium: krb5

Issue Overview: lib/kadm5/kadmrpcxdr.c in MIT Kerberos 5 aka krb5 before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs because xdrkadm5principalentrec does not validate the relationship between nkeydata and the...

Oracle Linux 8 : gnutls (ELSA-2019-3600)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-3600 advisory. - Fixed CVE-2019-3829 1693285 - Fixed CVE-2019-3836 1693288 Tenable has extracted the preceding description block directly from the Oracle Linux securi...

The vulnerability of PDF viewing and editing programs such as Adobe Acrobat Document Cloud and Adobe Acrobat Reader Document Cloud, as well as Adobe Acrobat 2020 and Adobe Acrobat Reader 2020, relates to access to an uninitialized pointer, allowing attackers to execute arbitrary code.

The vulnerability of PDF viewing and editing programs such as Adobe Acrobat Document Cloud, Adobe Acrobat Reader Document Cloud, Adobe Acrobat 2020, and Adobe Acrobat Reader 2020 is related to the access to an uninitialized pointer during the processing of embedded fonts. Exploiting this...

Medium: krb5

Issue Overview: lib/kadm5/kadmrpcxdr.c in MIT Kerberos 5 aka krb5 before 1.20.2 and 1.21.x before 1.21.1 frees an uninitialized pointer. A remote authenticated user can trigger a kadmind crash. This occurs because xdrkadm5principalentrec does not validate the relationship between nkeydata and the...