2 matches found
CVE-2023-35711
CVE-2023-35711 concerns Ashlar-Vellum Cobalt XE. The vulnerability is in the XE file parser where an unvalidated user-supplied value can be dereferenced as a pointer, enabling arbitrary code execution. Multiple sources (NVD, CVE records, ZDI advisory) describe it as a remote code execution vulner...
CVE-2023-35711 Ashlar-Vellum Cobalt XE File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability
Ashlar-Vellum Cobalt XE File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the...