Siemens Solid Edge DLL Hijacking (SSA-365596)

The version of Siemens Solid Edge installed on the remote Windows host is prior to SE2025 V225.0 Update 10. It is, therefore, affected by a DLL hijacking vulnerability. The affected application is vulnerable to DLL hijacking. This could allow an attacker to execute arbitrary code via placing a...

PT-2024-1628 · Siemens · Solid Edge

Name of the Vulnerable Software and Affected Versions: Solid Edge SE2023 versions prior to V223.0 Update 10 Description: A stack overflow vulnerability has been identified in the affected applications while parsing specially crafted PAR files. This could allow an attacker to execute code in the...

PT-2024-1039 · Siemens · Solid Edge

Name of the Vulnerable Software and Affected Versions: Solid Edge SE2023 versions prior to V223.0 Update 10 Description: A vulnerability has been identified in the affected applications, which contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR...

PT-2024-1042 · Siemens · Solid Edge

Name of the Vulnerable Software and Affected Versions: Solid Edge SE2023 versions prior to V223.0 Update 10 Description: A heap-based buffer overflow vulnerability has been identified in the affected application while parsing specially crafted PAR files. This could allow an attacker to execute co...

PT-2023-8537 · Siemens · Solid Edge

Name of the Vulnerable Software and Affected Versions: Solid Edge SE2023 versions prior to V223.0 Update 10 Description: A vulnerability has been identified in the affected application, which is vulnerable to uninitialized pointer access while parsing specially crafted PAR files. This could allow...

Microsoft Exchange Server 代码注入漏洞

Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides email access, storage, forwarding, voicemail, email filtering and screening, and other features. A code injection vulnerability exists in Microsoft Exchange Server. The followin...

Microsoft Exchange Server 安全漏洞

Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides email access, storage, forwarding, voice mail, email filtering and screening. A security vulnerability exists in Microsoft Exchange Server. The following products and versions a...

Microsoft Exchange Server 代码注入漏洞

Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides email access, storage, forwarding, voicemail, email filtering and screening, and other features. A code injection vulnerability exists in Microsoft Exchange Server. The followin...

Microsoft Exchange Server 输入验证错误漏洞

Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides email access, storage, forwarding, voicemail, email filtering and screening, and other features. An input validation error vulnerability exists in Microsoft Exchange Server. The...

Microsoft Exchange Server 权限许可和访问控制问题漏洞

Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides email access, storage, forwarding, voice mail, email filtering and screening. A vulnerability exists in Microsoft Exchange Server with privilege permission and access control...

Microsoft Exchange Server 跨站脚本漏洞

Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides email access, storage, forwarding, voicemail, email filtering and screening, and other features. A cross-site scripting vulnerability exists in Microsoft Exchange Server. The...

Microsoft Windows Remote Access Connection Manager 权限许可和访问控制问题漏洞

Microsoft Windows Remote Access Connection Manager is a Windows service from Microsoft that manages virtual private network VPN connections from your computer to the Internet. If you disable this service, the VPN client application If this service is disabled, VPN client applications will not...

Microsoft Exchange Server 权限许可和访问控制问题漏洞

Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides email access, storage, forwarding, voice mail, email filtering and screening. A vulnerability exists in Microsoft Exchange Server with privilege permission and access control...

Information disclosure

Information leak vulnerability in the Agent Handler of McAfee ePolicy Orchestrator ePO prior to 5.10 Update 10 allows an unauthenticated user to download McAfee product packages specifically McAfee Agent available in ePO repository and install them on their own machines to have it managed and the...

Deserialization of untrusted data

ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead to arbitrary code execution...

CVE-2019-7839

ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution...

Kernel security update: Virtuozzo ReadyKernel patch 80.0 for Virtuozzo 7.0 Update 10 HF1

The cumulative Virtuozzo ReadyKernel patch was updated with security and stability fixes. The patch applies to the kernel 3.10.0-957.12.2.vz7.86.2 Virtuozzo 7.0 Update 10 HF1. Vulnerability id: PSBM-94535 It was discovered that a certain sequence of operations related to IPv4 routing could trigge...

Product update: Virtuozzo 7.0 Update 10 Hotfix 1 (7.0.10-320)

The Hotfix 1 for for Virtuozzo 7.0.10 mitigates the Microarchitectural Store Buffer Data MDS vulnerability and provides stability and usability bug fixes. Vulnerability id: PSBM-94407 The Microarchitectural Store Buffer Data MDS is a series of hardware vulnerabilities which allow speculative...

Product update: Virtuozzo 7.0 Update 10 (7.0.10-315)

The Update 10 for Virtuozzo 7.0 provides a new feature as well as stability and usability bug fixes. It also introduces a new kernel 3.10.0-957.10.1.vz7.85.17, which is a rebase to the RHEL 7.6 kernel 3.10.0-957.10.1.el7. Vulnerability id: PSBM-91794 Node could crash due to a bug in overlayfs...

Microsoft Exchange CVE-2019-0586 Remote Memory Corruption Vulnerability

Description Microsoft Exchange is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Exchange Server...