CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1102 matches found

Cvelist•added 2024/05/03 2:12 a.m.•18 views

CVE-2023-42046 PDF-XChange Editor J2K File Parsing Uninitialized Variable Information Disclosure Vulnerability

PDF-XChange Editor J2K File Parsing Uninitialized Variable Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the...

3.3CVSS3.8AI score0.00415EPSS

Exploits0References2

Vulnrichment•added 2024/05/03 2:12 a.m.•13 views

CVE-2023-42046 PDF-XChange Editor J2K File Parsing Uninitialized Variable Information Disclosure Vulnerability

3.3CVSS6.2AI score0.00415EPSS

Exploits0References2

CVE•added 2024/05/03 2:10 a.m.•55 views

CVE-2023-39484

CVE-2023-39484 affects PDF-XChange Editor. The vulnerability lies in PDF file parsing where memory is accessed without proper initialization, leading to information disclosure. Impact: potential exposure of sensitive data on affected installations. Exploitation requires user interaction (the targ...

5.5CVSS3.6AI score0.00347EPSS

Exploits0References1Affected Software2

Vulnrichment•added 2024/05/03 1:58 a.m.•12 views

CVE-2023-38088 Kofax Power PDF printf Uninitialized Variable Remote Code Execution Vulnerability

Kofax Power PDF printf Uninitialized Variable Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a maliciou...

7.8CVSS7.5AI score0.00366EPSS

Exploits0References1

Cvelist•added 2024/05/03 1:58 a.m.•12 views

CVE-2023-38088 Kofax Power PDF printf Uninitialized Variable Remote Code Execution Vulnerability

7.8CVSS8.2AI score0.00366EPSS

Exploits0References1

CVE•added 2024/05/03 1:58 a.m.•62 views

CVE-2023-38088

Kofax Power PDF contains an uninitialized variable vulnerability in the handling of util objects that enables remote code execution. The flaw allows an attacker to run code in the context of the target process when a user visits a malicious page or opens a malicious file. Public disclosures place...

7.8CVSS8AI score0.00366EPSS

Exploits0References1Affected Software1

CNNVD•added 2024/05/03 12:0 a.m.•5 views

Kofax Power PDF 安全漏洞

Kofax Power PDF is a professional PDF editing and management software from Kofax. Kofax Power PDF has an uninitialized variable remote code execution vulnerability that can be exploited by an attacker to execute arbitrary code...

7.8CVSS8.5AI score0.00366EPSS

Exploits0References2

CNNVD•added 2024/05/03 12:0 a.m.•2 views

PDF-XChange Editor 安全漏洞

PDF-XChange Editor is a PDF-XChange company running on Microsoft Windows systems in the PDF file viewer software. An uninitialized variable vulnerability exists in PDF-XChange Editor, which can be exploited by attackers to disclose sensitive information...

5.5CVSS6.4AI score0.00415EPSS

Exploits0References3

CNNVD•added 2024/05/03 12:0 a.m.•2 views

PDF-XChange Editor 安全漏洞

5.5CVSS6.4AI score0.00415EPSS

Exploits0References3

CNNVD•added 2024/05/03 12:0 a.m.•3 views

PDF-XChange Editor 安全漏洞

PDF-XChange Editor is a PDF file viewing software from PDF-XChange, Inc. that runs on Microsoft Windows systems. A security vulnerability exists in PDF-XChange Editor, which originates from a J2KFile Parsing uninitialized variable information disclosure vulnerability...

5.5CVSS4AI score0.00415EPSS

Exploits0References3

Talos•added 2024/05/01 12:0 a.m.•33 views

Tinyproxy HTTP request parsing uninitialized memory vulnerability

Talos Vulnerability Report TALOS-2023-1902 Tinyproxy HTTP request parsing uninitialized memory vulnerability May 1, 2024 CVE Number CVE-2023-40533 SUMMARY An uninitialized memory use vulnerability exists in Tinyproxy 1.11.1 while parsing HTTP requests. In certain configurations, a specially craft...

2.6CVSS7.7AI score

Exploits0

Vulnrichment•added 2024/04/26 8:31 p.m.•22 views

CVE-2024-32878 Use of Uninitialized Variable Vulnerability in llama.cpp

Llama.cpp is LLM inference in C/C++. There is a use of uninitialized heap variable vulnerability in ggufinitfromfile, the code will free this uninitialized variable later. In a simple POC, it will directly cause a crash. If the file is carefully constructed, it may be possible to control this...

7.1CVSS8AI score0.00696EPSS

Exploits0References2

Cvelist•added 2024/04/26 8:31 p.m.•22 views

CVE-2024-32878 Use of Uninitialized Variable Vulnerability in llama.cpp

7.1CVSS7.6AI score0.00696EPSS

Exploits0References2

Debian CVE•added 2024/04/26 8:31 p.m.•12 views

CVE-2024-32878

8.8CVSS7.2AI score0.00696EPSS

Exploits0

OSV•added 2024/04/26 8:31 p.m.•4 views

CVE-2024-32878 Use of Uninitialized Variable Vulnerability in llama.cpp

7.1CVSS7.8AI score0.00696EPSS

Exploits0References4

OSV•added 2024/03/31 6:18 p.m.•30 views

BIT-HELM-2024-26147 Helm's Missing YAML Content Leads To Panic

Helm is a package manager for Charts for Kubernetes. Versions prior to 3.14.2 contain an uninitialized variable vulnerability when Helm parses index and plugin yaml files missing expected content. When either an index.yaml file or a plugins plugin.yaml file were missing all metadata a panic would...

7.5CVSS7.6AI score0.00926EPSS

Exploits0References3

NVD•added 2024/03/22 11:15 a.m.•33 views

CVE-2024-1848

Heap-based Buffer Overflow, Memory Corruption, Out-Of-Bounds Read, Out-Of-Bounds Write, Stack-based Buffer Overflow, Type Confusion, Uninitialized Variable, Use-After-Free vulnerabilities exist in the file reading procedure in SOLIDWORKS Desktop on Release SOLIDWORKS 2024. These vulnerabilities...

7.8CVSS7.9AI score0.00269EPSS

Exploits0References1

Positive Technologies•added 2024/03/22 12:0 a.m.•4 views

PT-2024-18359 · Dassault Systèmes · Solidworks Desktop

Name of the Vulnerable Software and Affected Versions: SOLIDWORKS Desktop version 2024 Description: Heap-based Buffer Overflow, Memory Corruption, Out-Of-Bounds Read, Out-Of-Bounds Write, Stack-based Buffer Overflow, Type Confusion, Uninitialized Variable, Use-After-Free vulnerabilities exist in...

7.8CVSS7.9AI score0.00269EPSS

Exploits0References7

OSV•added 2024/03/08 11:7 a.m.•2 views

OESA-2024-1262 stb security update

Single-file public domain libraries for C/C++. Security Fixes: stbimage is a single file MIT licensed library for processing images. It may look like stbiloadgifmain doesn’t give guarantees about the content of output value delays upon failure. Although it sets delays to zero at the beginning, it...

9.8CVSS7AI score0.01137EPSS

Exploits0References3

OSV•added 2024/03/06 11:16 a.m.•16 views

BIT-TENSORFLOW-2021-41201 Unitialized access in `EinsumHelper::ParseEquation`

TensorFlow is an open source platform for machine learning. In affeced versions during execution, EinsumHelper::ParseEquation is supposed to set the flags in inputhasellipsis vector and outputhasellipsis boolean to indicate whether there is ellipsis in the corresponding inputs and output. However...

7.8CVSS7.6AI score0.00241EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by