Lucene search
K

49 matches found

RedHat Linux
RedHat Linux
added 2026/06/16 4:28 a.m.7 views

gimp: GIMP: Remote Code Execution via XPM File Parsing Integer Overflow

A flaw was found in GIMP. Remote attackers can exploit this vulnerability by tricking a user into opening a malicious XPM X PixMap image file. This can lead to an an integer overflow during file processing, allowing the attacker to execute arbitrary code on the affected system...

7.8CVSS7.8AI score0.00596EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/05/26 3:26 a.m.15 views

gimp: GIMP: Remote Code Execution via PSP file parsing

A flaw was found in GIMP. A remote attacker could exploit this vulnerability by enticing a user to open a specially crafted PSP PaintShop Pro file. This flaw is caused by a heap-based buffer overflow, where the application does not properly validate the length of user-supplied data. Successful...

7.8CVSS7.7AI score0.00651EPSS
Exploits0References6
NVD
NVD
added 2026/05/12 6:17 p.m.17 views

CVE-2026-34687

Illustrator versions 29.8.6, 30.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00174EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/12 6:13 p.m.7 views

CVE-2026-34681 Substance3D - Designer | Out-of-bounds Write (CWE-787)

Substance3D - Designer versions 15.1.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00148EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/14 10:58 p.m.2 views

CVE-2026-27299

Adobe Framemaker versions 2022.8 and earlier are affected by an Improper Input Validation vulnerability that could lead to arbitrary file system read. An attacker could leverage this vulnerability to access sensitive files or data on the system. Exploitation of this issue requires user interactio...

6.3CVSS5.9AI score0.00155EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/14 4:45 p.m.26 views

CVE-2026-27238 InDesign Desktop | Heap-based Buffer Overflow (CWE-122)

InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00178EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/07 7:46 p.m.20 views

CVE-2026-32861 Out-of-Bounds Write Vulnerability in NI LabVIEW when loading lvclass file

There is a memory corruption vulnerability due to an out-of-bounds write when loading a corrupted LVCLASS file in NI LabVIEW. This vulnerability may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted...

8.5CVSS0.0022EPSS
Exploits0References1
NVD
NVD
added 2026/03/10 11:16 p.m.2 views

CVE-2026-21333

Illustrator versions 29.8.4, 30.1 and earlier are affected by an Untrusted Search Path vulnerability that might allow attackers to execute arbitrary code in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

8.6CVSS0.00161EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/10 10:56 p.m.1 views

CVE-2026-27271 Illustrator | Heap-based Buffer Overflow (CWE-122)

Illustrator versions 29.8.4, 30.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00178EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/10 9:32 p.m.5 views

EUVD-2026-10770

Premiere Pro versions 25.5 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user...

7.8CVSS5.9AI score0.00159EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/10 6:24 p.m.5 views

CVE-2026-21346 Bridge | Out-of-bounds Write (CWE-787)

Bridge versions 15.1.3, 16.0.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00139EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/10 6:8 p.m.24 views

CVE-2026-21339 Substance3D - Designer | Out-of-bounds Read (CWE-125)

Substance3D - Designer versions 15.1.0 and earlier are affected by an out-of-bounds read vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to disclose sensitive information stored in memory. Exploitation of this issue requires user interaction in that...

5.5CVSS0.00153EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/10 5:52 p.m.5 views

CVE-2026-21319 After Effects | Out-of-bounds Read (CWE-125)

After Effects versions 25.6 and earlier are affected by an Out-of-bounds Read vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to access sensitive information stored in memory. Exploitation of this issue requires user interaction in that a victim mus...

5.5CVSS5.5AI score0.00153EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.7 views

PT-2026-7366

Name of the Vulnerable Software and Affected Versions Audition versions 25.3 and earlier Description Audition versions 25.3 and earlier are susceptible to an out-of-bounds read issue, potentially leading to memory exposure. An attacker could exploit this to disclose sensitive information stored i...

5.5CVSS5.3AI score0.00153EPSS
Exploits0References3
EUVD
EUVD
added 2025/11/11 6:30 p.m.4 views

EUVD-2025-93466

InDesign Desktop versions 20.5, 19.5.5 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.1AI score0.00236EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/14 9:30 p.m.2 views

EUVD-2025-34472

Substance3D - Stager versions 3.1.4 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current...

7.8CVSS6.5AI score0.00188EPSS
Exploits0References2
OSV
OSV
added 2025/10/14 8:15 p.m.4 views

CVE-2025-61802

Substance3D - Stager versions 3.1.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00197EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-24479

Malicious code in bioql PyPI...

7.8CVSS6.4AI score0.00289EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2021-21839

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A...

8.8CVSS8.1AI score0.0201EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/08/21 8:15 p.m.13 views

CVE-2009-20003 Xenorate <= 2.50 .xpl File Stack-Based Buffer Overflow

Xenorate versions up to and including 2.50, a Windows-based multimedia player, is vulnerable to a stack-based buffer overflow when processing .xpl playlist files. The application fails to properly validate the length of input data, allowing an attacker to craft a malicious .xpl file that overwrit...

8.4CVSS0.0031EPSS
Exploits0References7
Rows per page
Query Builder