CVE-2025-59299

Delta Electronics DIAScreen lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process...

PT-2025-40456

Name of the Vulnerable Software and Affected Versions Delta Electronics DIAScreen affected versions not specified Description The software does not properly validate user-supplied files. An attacker can execute code within the current process if a user opens a malicious file. Recommendations At t...

PT-2025-40453

Name of the Vulnerable Software and Affected Versions Delta Electronics DIAScreen affected versions not specified Description The software does not properly validate user-supplied files. An attacker can exploit this to execute code within the current process if a user opens a malicious file...

CVE-2025-58317

Delta Electronics CNCSoft-G2 lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process...

CVE-2025-47725

Delta Electronics CNCSoft lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process...

CVE-2025-47728

Delta Electronics CNCSoft-G2 lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process...

CVE-2025-47727

Delta Electronics CNCSoft lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process...

CVE-2025-47726

Delta Electronics CNCSoft lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process...

CVE-2025-47724

CVE-2025-47724 concerns Delta Electronics CNCSoft, which reportedly suffers from an out-of-bounds write due to improper validation of user-supplied files. The vulnerability can allow code to execute in the context of the current process when a user opens a malicious file, with a local attack vect...

Arbitrary File Write

Ironic is vulnerable to Arbitrary File Write. The vulnerability is due to insufficient validation of user-supplied file paths during image deployment via the API, allowing attackers to write unintended files to the target node disk...

CVE-2024-1961

CVE-2024-1961 affects the open-source project vertaai/modeldb. The vulnerability is a path traversal flaw caused by improper sanitization of user-supplied file paths in the file upload flow, specifically in the NFSController.java and NFSService.java components. Attackers can manipulate the artifa...

Trend Micro Multiple Products Directory Traversal (CVE-2020-8470)

A directory traversal vulnerability exists in Trend Micro Apex One and OfficeScan. The vulnerability is due to improper validation of user-supplied file name in the request...

Trend Micro Apex One and OfficeScan Directory Traversal (CVE-2020-8599)

A directory traversal vulnerability exists in Trend Micro Apex One and OfficeScan. The vulnerability is due to improper validation of user-supplied file name in the request...

VMware Workstation Virtual Printer External Control of File Name Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of VMware Workstation. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Virtual Print...