Lucene search
K

13 matches found

Snyk
Snyk
added 2026/05/12 7:23 p.m.48 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow due to improper bounds checking in memory operations. An attacker can execute arbitrary code or escalate privileges by supplying crafted input to the affected process. Remediation Upgrade...

8.3CVSS6.2AI score0.00551EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/12 7:23 p.m.8 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow due to improper bounds checking in memory operations. An attacker can execute arbitrary code or escalate privileges by supplying crafted input to the affected process. Remediation Upgrade...

8.3CVSS6.2AI score0.00551EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/12 7:22 p.m.9 views

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound due to improper validation of user-supplied input in the authentication process. An attacker can gain elevated privileges by providing crafted input during local interaction. Remediation Upgrade...

8.3CVSS5.8AI score0.00662EPSS
Exploits0References2
Snyk
Snyk
added 2024/04/09 12:0 a.m.2 views

Improper Control of Generation of Code ('Code Injection')

Overview Affected versions of this package are vulnerable to Improper Control of Generation of Code 'Code Injection' due to improper handling of object lifecycles during the failure of CPimcManager object creation. An attacker can execute arbitrary code on the target system by convincing a user t...

7.3CVSS7.8AI score0.02513EPSS
Exploits0References2
Snyk
Snyk
added 2024/04/09 12:0 a.m.1 views

Improper Control of Generation of Code ('Code Injection')

Overview Affected versions of this package are vulnerable to Improper Control of Generation of Code 'Code Injection' due to improper handling of object lifecycles during the failure of CPimcManager object creation. An attacker can execute arbitrary code on the target system by convincing a user t...

7.3CVSS7.8AI score0.02513EPSS
Exploits0References2
Snyk
Snyk
added 2023/07/11 12:0 a.m.2 views

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE. A vulnerability exists in .NET applications where the diagnostic server can be exploited to achieve cross-session/cross-user elevation of privilege EoP and code execution. Remediation Upgrade...

8.1CVSS7.9AI score0.01976EPSS
Exploits0References2
Snyk
Snyk
added 2023/07/11 12:0 a.m.3 views

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE. A vulnerability exists in .NET applications where the diagnostic server can be exploited to achieve cross-session/cross-user elevation of privilege EoP and code execution. Remediation Upgrade...

8.1CVSS7.9AI score0.01976EPSS
Exploits0References2
Snyk
Snyk
added 2023/07/11 12:0 a.m.6 views

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE. A vulnerability exists in .NET applications where the diagnostic server can be exploited to achieve cross-session/cross-user elevation of privilege EoP and code execution. Remediation Upgrade...

8.1CVSS7.9AI score0.01976EPSS
Exploits0References2
Snyk
Snyk
added 2023/06/14 12:0 a.m.2 views

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE. A vulnerability exists in how WPF applications load and render XPS documents which may result in remote code execution. Remediation Upgrade Microsoft.WindowsDesktop.App.Runtime.win-arm64 to version 6.0.18, 7.0...

7.8CVSS8.1AI score0.01058EPSS
Exploits0References2
Snyk
Snyk
added 2023/06/14 12:0 a.m.1 views

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE. A vulnerability exists in how WPF applications load and render XPS documents which may result in remote code execution. Remediation Upgrade Microsoft.WindowsDesktop.App.Runtime.win-x86 to version 6.0.18, 7.0.7...

7.8CVSS8.1AI score0.01058EPSS
Exploits0References2
Snyk
Snyk
added 2022/12/14 2:33 p.m.2 views

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE such that a malicious actor could cause a user to run arbitrary code as a result of parsing maliciously crafted xps files. Remediation Upgrade Microsoft.WindowsDesktop.App.Runtime.win-x86 to version 3.1.32,...

8.8CVSS7.9AI score0.0113EPSS
Exploits0References2
Snyk
Snyk
added 2022/12/14 2:33 p.m.1 views

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE such that a malicious actor could cause a user to run arbitrary code as a result of parsing maliciously crafted xps files. Remediation Upgrade Microsoft.WindowsDesktop.App.Runtime.win-arm64 to version 6.0.12,...

8.8CVSS7.9AI score0.0113EPSS
Exploits0References2
Snyk
Snyk
added 2022/12/14 2:33 p.m.1 views

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE such that a malicious actor could cause a user to run arbitrary code as a result of parsing maliciously crafted xps files. Remediation Upgrade Microsoft.WindowsDesktop.App.Runtime.win-x64 to version 3.1.32,...

8.8CVSS7.9AI score0.0113EPSS
Exploits0References2
Rows per page
Query Builder