60 matches found
EUVD-2024-31229
Malicious code in bioql PyPI...
EUVD-2025-20429
Malicious code in bioql PyPI...
Siemens Solid Edge < SE2025 Update 5 Multiple Vulnerabilities (SSA-091753)
The version of Siemens Solid Edge installed on the remote Windows host is prior to SE2025 Update 5. It is, therefore, affected by multiple vulnerabilities as disclosed in the SSA-091753 vendor advisory: - The affected applications contain an out of bounds read past the end of an allocated structu...
CVE-2024-33493
A vulnerability has been identified in Solid Edge All versions V224.0 Update 5. The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current...
CVE-2024-33491
A vulnerability has been identified in Solid Edge All versions V224.0 Update 5. The affected applications contain an out of bounds read past the end of an allocated structure while parsing specially crafted PAR files. This could allow an attacker to execute code in the context of the current...
Virtuozzo Hybrid Server 7.5 Update 6 Hotfix 1 (7.5.6-112)
The Hotfix 1 for Virtuozzo Hybrid Server 7.5 Update 6 introduces a new feature and provides stability and usability bug fixes. Vulnerability id: PSBM-154494 Virtuozzo Automator Agent could fail to return disk statistics for some stopped containers. Vulnerability id: PSBM-154488 Downloading the...
Ivanti Addresses Critical Vulnerability in Endpoint Manager
Summary: Ivanti addressed a critical vulnerability CVE-2023-39336 in its Endpoint Management software, ensuring secure usage for its 40,000 worldwide customers. The flaw, resolved in version 2022 Service Update 5, posed a risk of pre-authenticated sql injection and possibly Remote Code Injection ...
Adobe RoboHelp Server < 11 Update 5 Multiple Vulnerabilities (APSB23-53)
The version of Adobe RoboHelp Server installed on the remote host is prior to 11 Update 5. It is, therefore affected by multiple vulnerabilities: - XML external entity XXE vulnerability. CVE-2023-22274 - Information disclosure due to a memory leak. CVE-2023-22272 - Path traversal vulnerability...
Virtuozzo Hybrid Server 7.5 Update 5 Hotfix 2 (7.5.5-291)
The Hotfix 2 for Virtuozzo Hybrid Server 7.5 Update 5 provides stability and usability bug fixes. Vulnerability id: PSBM-149314 When running the ‘vzpkg install template’ command, the system could install the log4j.jar file and treat its content as a security risk. Vulnerability id: PSBM-150027 So...
Description of the security update for the remote code execution vulnerability in Microsoft Visual Studio 2013 Update 5: October 10, 2023 (KB5029365)
Description of the security update for the remote code execution vulnerability in Microsoft Visual Studio 2013 Update 5: October 10, 2023 KB5029365 Applies to: All Visual Studio 2013 Update 5 editions except Integrated Shell, Build Tools, and Remote Tools. Notice In December 2023, Visual Studio...
Description of the security update for the remote code execution vulnerability in Microsoft Visual Studio 2013 Update 5: June 13, 2023 (KB5026610)
Description of the security update for the remote code execution vulnerability in Microsoft Visual Studio 2013 Update 5: June 13, 2023 KB5026610 Applies to: All Visual Studio 2013 Update 5 editions except Integrated Shells, Build Tools, and Remote Tools. Summary A remote code execution...
Deserialization of untrusted data
Adobe ColdFusion versions 2018 Update 15 and earlier and 2021 Update 5 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction...
Path traversal
Adobe ColdFusion versions 2018 Update 15 and earlier and 2021 Update 5 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability that could result in Arbitrary file system read. Exploitation of this issue does not require user...
PT-2023-1943 · Adobe · Coldfusion
Name of the Vulnerable Software and Affected Versions: Adobe ColdFusion versions 2018 Update 15 and earlier and 2021 Update 5 and earlier Description: The issue is related to a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the...
Description of the security update for the remote code execution vulnerability in Microsoft Visual Studio 2012 Update 5: August 9, 2022 (KB5016314)
Description of the security update for the remote code execution vulnerability in Microsoft Visual Studio 2012 Update 5: August 9, 2022 KB5016314 Note: This security update applies to all Visual Studio 2012 Update 5 editions except Isolated and Integrated Shells, Build Tools, Remote Tools, and...
Microsoft Visual Studio 安全漏洞
Microsoft Visual Studio is a family of development tool suites from Microsoft Corporation USA and a largely complete development toolset that includes most of the tools needed throughout the software lifecycle. A security vulnerability exists in Microsoft Visual Studio. The following products and...
Microsoft Visual Studio 代码注入漏洞
Microsoft Visual Studio is a family of development tool suites and a fundamentally complete set of development tools from Microsoft Corporation USA that includes most of the tools needed throughout the software life cycle. A code injection vulnerability exists in Microsoft Visual Studio. The...
Code injection
Acronis True Image prior to 2021 Update 4 for Windows and Acronis True Image prior to 2021 Update 5 for macOS allowed an unauthenticated attacker who has a local code execution ability to tamper with the micro-service API...
Description of the security update for Microsoft Visual Studio 2013 Update 5: September 8, 2020
Description of the security update for Microsoft Visual Studio 2013 Update 5: September 8, 2020 Note This security update applies to Visual Studio 2013 Update 5 except for Visual Studio Isolated and Integrated Shells, Build Tools, Remote Tools, and Express for Web. Summary A remote code execution...
Product release: Virtuozzo Infrastructure Platform 3.0 Update 5 Hotfix 3 (3.0.5-72)
This update provides a fix for the 3.0 to 3.5 upgrade procedure. Vulnerability id: VSTOR-34105 Upgrade from version 3.0 to 3.5 may fail in some cases due to the absence of an internal product file...