17 matches found
CVE-2026-63093 Cursor for Windows 3.2.16 RCE via Malicious git.exe in Workspace
Cursor for Windows version 3.2.16 contains a binary planting vulnerability that allows remote attackers to achieve arbitrary code execution by placing a malicious git.exe file in the repository root directory. When a developer clones and opens a crafted repository, Cursor automatically resolves a...
EUVD-2017-17416
Malware in sbrugna...
EUVD-2022-44425
Malicious code in bioql PyPI...
CVE-2022-41183
Due to lack of proper memory management, when a victim opens manipulated Windows Cursor File .cur, ico.x3d file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until restart...
CVE-2022-41183
Due to lack of proper memory management, when a victim opens manipulated Windows Cursor File .cur, ico.x3d file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until restart...
CVE-2022-41184
Due to lack of proper memory management, when a victim opens a manipulated Windows Cursor File .cur, ico.x3d file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflow...
CVE-2022-41183
Due to lack of proper memory management, when a victim opens manipulated Windows Cursor File .cur, ico.x3d file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until restart...
CVE-2022-41184
Due to lack of proper memory management, when a victim opens a manipulated Windows Cursor File .cur, ico.x3d file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflow...
Stack overflow
Due to lack of proper memory management, when a victim opens a manipulated Windows Cursor File .cur, ico.x3d file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflow...
Code injection
Due to lack of proper memory management, when a victim opens manipulated Windows Cursor File .cur, ico.x3d file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until restart...
CVE-2022-41184
CVE-2022-41184 affects SAP 3D Visual Enterprise Author v9, where parsing manipulated Windows Cursor Files (.cur, ico.x3d) can trigger a stack-based overflow or use-after-free of a dangling pointer, enabling Remote Code Execution after user opens the crafted file. Exploitation requires user intera...
CVE-2022-41183
SAP 3D Visual Enterprise Author (v9) contains a vulnerability in the CUR file parsing code leading to memory corruption. The ZDI advisory describes an out-of-bounds read in CUR parsing that can be triggered by opening a malicious CUR file, enabling remote code execution in the context of the affe...
CVE-2022-41183
Due to lack of proper memory management, when a victim opens manipulated Windows Cursor File .cur, ico.x3d file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until restart...
The vulnerability of the Windows Cursor component in the Windows operating system allows attackers to escalate their privileges.
The vulnerability of the Windows Cursor component in the Windows operating system is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker acting locally to enhance their privileges...
CVE-2017-8466
Windows Cursor in Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and Windows Server 2016 allows improper elevation of privilege, aka "Windows Cursor Elevation of Privilege Vulnerability"...
CVE-2015-0058
Double free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows 8.1, Windows Server 2012 R2, and Windows RT 8.1 allows local users to gain privileges via a crafted application, aka "Windows Cursor Object Double Free Vulnerability."...
Double free
Double free vulnerability in win32k.sys in the kernel-mode drivers in Microsoft Windows 8.1, Windows Server 2012 R2, and Windows RT 8.1 allows local users to gain privileges via a crafted application, aka "Windows Cursor Object Double Free Vulnerability."...