Lucene search
K
SrcinciteMost viewed

293 matches found

Source Incite
Source Incite
added 2018/12/25 12:0 a.m.77 views

SRC-2019-0057 : Artifex MuJS regcompx pattern Integer Overflow Remote Code Execution Vulnerability Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of MuPDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

9.8CVSS9.7AI score0.01661EPSS
Exploits1
Source Incite
Source Incite
added 2020/05/20 12:0 a.m.76 views

SRC-2021-0004 : Microsoft Exchange Server msExchEcpCanary Cross Site Request Forgery Elevation of Privilege Vulnerability

Vulnerability Details: This vulnerability allows remote attackers escalate privileges on affected installations of Microsoft Exchange Server. Authentication and user interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists with...

6.5CVSS6.1AI score0.04627EPSS
Exploits7
Source Incite
Source Incite
added 2021/01/24 12:0 a.m.71 views

SRC-2021-0009 : Smarty Template Engine template_object Sandbox Escape Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers execute arbitrary code on affected installations of Smarty Template Engine. Authentication is context dependant and may not be required to exploit this vulnerability. The specific flaw exists within the...

9.8CVSS9AI score0.27362EPSS
Exploits5
Source Incite
Source Incite
added 2021/03/03 12:0 a.m.69 views

SRC-2021-0014 : Progress MOVEit Transfer (DMZ) SILHuman FolderApplySettingsRecurs SQL Injection Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on affected installations of MOVEit Transfer. Authentication is required to exploit this vulnerability. The specific flaw exists within the FolderApplySettingsRecurs function of the SILHuman class. The iss...

8.8CVSS9AI score0.01213EPSS
Exploits1
Source Incite
Source Incite
added 2020/11/18 12:0 a.m.68 views

SRC-2021-0019 : Microsoft SharePoint Server ProfilePropertyLoader Information Disclosure Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to disclose information on affected installations of Microsoft SharePoint Server. Authentication and user interaction is required to exploit this vulnerability. The specific flaw exists within the ProfilePropertyLoader control. The...

6.5CVSS6.1AI score0.0452EPSS
Exploits1
Source Incite
Source Incite
added 2021/08/20 12:0 a.m.67 views

SRC-2021-0025 : Foxit Reader Field Format event Use-After-Free Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS7.8AI score0.01253EPSS
Exploits1
Source Incite
Source Incite
added 2020/10/29 12:0 a.m.67 views

SRC-2021-0018 : Microsoft SharePoint Server OAuth Authorization Code Leak Elevation of Privilege Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to elevate privileges. User interaction is required required to exploit this vulnerability. The specific flaw exists in the oauthauthorize page. The issue results from a missing X-Frame-Options header when performing an authorizati...

7.1CVSS7.8AI score0.01812EPSS
Exploits1
Source Incite
Source Incite
added 2020/04/26 12:0 a.m.66 views

SRC-2020-0018 : Adobe Acrobat Reader DC Out-of-Bounds Read Information Disclosure Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specifi...

7.5CVSS7.3AI score0.03504EPSS
Exploits1
Source Incite
Source Incite
added 2021/09/23 12:0 a.m.65 views

SRC-2021-0022 : Dedecms ShowMsg Template Injection Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Dedecms. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of the rendering templates. The issue results from the lac...

7.7AI score
Exploits0
Source Incite
Source Incite
added 2021/08/20 12:0 a.m.65 views

SRC-2021-0027 : Foxit Reader Field Calculate event Use-After-Free Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS7.8AI score0.0068EPSS
Exploits1
Source Incite
Source Incite
added 2020/07/08 12:0 a.m.64 views

SRC-2020-0023 : Microsoft SharePoint Server SoapDataSource GetResponseString Server-Side Request Forgery Information Disclosure Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to disclose information on affected installations of SharePoint Server. Authentication is required to exploit this vulnerability. The specific flaw exists within the SoapDataSource class. The issue results from the lack of proper...

6.5CVSS7AI score0.02895EPSS
Exploits1
Source Incite
Source Incite
added 2020/11/19 12:0 a.m.63 views

SRC-2021-0006 : NetMotion Mobility Server RpcServlet Deserialization of Untrusted Data Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers execute arbitrary code on affected installations of NetMotion Mobility Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the RpcServlet class. The issue results from the lack of...

9.3CVSS6.9AI score0.13276EPSS
Exploits8
Source Incite
Source Incite
added 2021/06/23 12:0 a.m.62 views

SRC-2021-0020 : Eclipse PHP Development Tools DBGP XML External Entity Processing Information Disclosure Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to disclose sensitive information on affected installations of Eclipse PHP Development Tools. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DBG protocol. The issue results from th...

5.9AI score
Exploits0
Source Incite
Source Incite
added 2017/06/07 12:0 a.m.62 views

SRC-2017-0028 : Oracle Java SE Web Start jnlp XML External Entity Processing Information Disclosure Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Oracle Java SE. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

7.1CVSS6.6AI score0.08794EPSS
Exploits6
Source Incite
Source Incite
added 2021/08/20 12:0 a.m.61 views

SRC-2021-0024 : Foxit Reader Field OnFocus event Use-After-Free Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS7.7AI score0.01253EPSS
Exploits1
Source Incite
Source Incite
added 2019/12/12 12:0 a.m.61 views

SRC-2020-0011 : ManageEngine Desktop Central FileStorage getChartImage Deserialization of Untrusted Data Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on affected installations of ManageEngine Desktop Central. Authentication is not required to exploit this vulnerability. The specific flaw exists within the FileStorage class. The issue results from the la...

10CVSS9.8AI score0.99941EPSS
Exploits6
Source Incite
Source Incite
added 2021/08/20 12:0 a.m.60 views

SRC-2021-0026 : Foxit Reader Field Keystroke event Use-After-Free Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS7.8AI score0.01253EPSS
Exploits1
Source Incite
Source Incite
added 2020/11/19 12:0 a.m.60 views

SRC-2021-0008 : NetMotion Mobility Server webrepdb StatusServlet Deserialization of Untrusted Data Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers execute arbitrary code on affected installations of NetMotion Mobility Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the StatusServlet class. The issue results from the lack o...

9.3CVSS6.9AI score0.41844EPSS
Exploits8
Source Incite
Source Incite
added 2021/04/27 12:0 a.m.57 views

SRC-2021-0015 : zzzcms zzzphp parserIfLabel Template Injection Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on affected installations of zzzphp. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of the search template. The issue results from the lack of...

9.8CVSS9.8AI score0.03794EPSS
Exploits3
Source Incite
Source Incite
added 2021/08/20 12:0 a.m.56 views

SRC-2021-0028 : Foxit Reader Field OnBlur event Use-After-Free Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS7.8AI score0.01253EPSS
Exploits1
Source Incite
Source Incite
added 2020/08/13 12:0 a.m.56 views

SRC-2020-0034 : Microsoft SharePoint Server SPSqlDataSource Information Disclosure Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to disclose sensitive information on affected installations of SharePoint Server. Authentication is required to exploit this vulnerability. The specific flaw exists within the SPSqlDataSource class. The issue results from the lack ...

6.5CVSS6.5AI score0.02986EPSS
Exploits2
Source Incite
Source Incite
added 2020/02/18 12:0 a.m.55 views

SRC-2020-0010 : Schneider Electric EcoStruxure Operator Terminal Expert Hardcoded Cryptographic Key Information Disclosure Vulnerability

Vulnerability Details: This vulnerability allows local attackers to disclose sensitive information on affected installations of Schneider Electric EcoStruxure Operator Terminal Expert. Local access to project files is required to exploit this vulnerability. The specific flaw exists within the...

6.2AI score
Exploits0
Source Incite
Source Incite
added 2017/09/27 12:0 a.m.55 views

SRC-2018-0007 : Beckoff TwinCAT3 Multiple Kernel Drivers Untrusted Pointer Dereference Privilege Escalation Vulnerabilities

Vulnerability Details: This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Beckoff TwinCAT3. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exist...

7.8CVSS7.6AI score0.00557EPSS
Exploits1
Source Incite
Source Incite
added 2020/08/13 12:0 a.m.51 views

SRC-2020-0028 : Microsoft SharePoint Server PasswordRecovery Information Disclosure Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to disclose sensitive information on affected installations of SharePoint Server. Authentication is required to exploit this vulnerability. The specific flaw exists within the PasswordRecovery class. The issue results from the lack...

6.8CVSS6.5AI score0.0355EPSS
Exploits1
Source Incite
Source Incite
added 2020/11/19 12:0 a.m.50 views

SRC-2021-0007 : NetMotion Mobility Server MvcUtil valueStringToObject Deserialization of Untrusted Data Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers execute arbitrary code on affected installations of NetMotion Mobility Server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the MvcUtil class. The issue results from the lack of prop...

9.3CVSS8.3AI score0.77673EPSS
Exploits5
Source Incite
Source Incite
added 2018/05/09 12:0 a.m.50 views

SRC-2019-0053 : Hewlett Packard Enterprise Intelligent Management Center Standard OperatorMgrImpl isAccountBindingWithOperator SQL Injection Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be...

9CVSS9AI score0.01863EPSS
Exploits1
Source Incite
Source Incite
added 2016/03/17 12:0 a.m.50 views

SRC-2016-0009 : ATutor LMS password_reminder TOCTOU Authentication Bypass Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ATutor. Authentication is required to exploit this vulnerability however authentication bypass vulnerabilities are known and remote registration is open by default. The...

7.6AI score
Exploits0
Source Incite
Source Incite
added 2016/09/21 12:0 a.m.49 views

SRC-2016-0045 : Microsoft Internet Explorer HyperlinkString Out-Of-Bounds Read Information Disclosure Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to disclose information on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

5.3CVSS6.8AI score0.14665EPSS
Exploits1
Source Incite
Source Incite
added 2020/06/05 12:0 a.m.48 views

SRC-2020-0026 : Microsoft Exchange Server NewExchangeCertificate WriteRequest File Write Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exchange Server. Authentication with the “Exchange Server Certificates” role is required to exploit this vulnerability. The specific flaw exists within the processing of the...

9CVSS8.6AI score0.03568EPSS
Exploits1
Source Incite
Source Incite
added 2018/12/19 12:0 a.m.48 views

SRC-2019-0032 : Foxit Reader PDF Printer Request Out-of-Bounds Read Information Disclosure Vulnerability

Vulnerability Details: This vulnerability allows local attackers to disclose sensitive information on vulnerable installations of Foxit Reader. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw...

8.1CVSS7.8AI score0.00816EPSS
Exploits1
Source Incite
Source Incite
added 2019/02/01 12:0 a.m.47 views

SRC-2019-0034 : Cisco Prime Infrastructure Health Monitor HA TarArchive Directory Traversal Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Cisco Prime Infrastructure. Authentication is not required to exploit this vulnerability. The specific flaw exists within the TarArchive class. The issue results from the lac...

10CVSS8.7AI score0.98092EPSS
Exploits12
Source Incite
Source Incite
added 2020/05/22 12:0 a.m.45 views

SRC-2020-0019 : Microsoft Exchange Server DlpUtils AddTenantDlpPolicy Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exchange Server. Authentication with the “Data Loss Prevention” role is required to exploit this vulnerability. The specific flaw exists within the processing of the...

9CVSS7.8AI score0.47145EPSS
Exploits5
Source Incite
Source Incite
added 2016/02/24 12:0 a.m.45 views

SRC-2016-0007 : ATutor LMS searchFriends SQL Injection Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ATutor. Authentication is not required to exploit this vulnerability. The specific flaw exists in the searchFriends function within the ‘friends.inc.php’ script. An attacker...

9.8CVSS9.1AI score0.79622EPSS
Exploits7
Source Incite
Source Incite
added 2016/06/29 12:0 a.m.43 views

SRC-2016-0040 : Microsoft Office Excel Binary Worksheet Use-After-Free Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

9.3CVSS7.7AI score0.17466EPSS
Exploits1
Source Incite
Source Incite
added 2016/01/19 12:0 a.m.42 views

SRC-2016-0022 : Microsoft Office Component FSupportSAEXTChar Use-After-Free Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

9.3CVSS7.9AI score0.19384EPSS
Exploits1
Source Incite
Source Incite
added 2020/10/02 12:0 a.m.41 views

SRC-2020-0032 : Microsoft Exchange Server DlpUtils AddTenantDlpPolicy Remote Code Execution Vulnerability (patch bypass)

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Exchange Server. Authentication with the “Data Loss Prevention” role is required to exploit this vulnerability. The specific flaw exists within the processing of the...

9.1CVSS9.3AI score0.8979EPSS
Exploits3
Source Incite
Source Incite
added 2020/07/13 12:0 a.m.41 views

SRC-2021-0001 : Microsoft SharePoint Server ContentEditorWebPart GetHttpWebResponse Server-Side Request Forgery Information Disclosure Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to disclose sensitive information on affected installations of SharePoint Server. Authentication is required to exploit this vulnerability. The specific flaw exists within the ContentEditorWebPart class. The issue results from the...

8.8CVSS7.9AI score0.02592EPSS
Exploits1
Source Incite
Source Incite
added 2019/04/04 12:0 a.m.41 views

SRC-2019-0060 : Adobe Photoshop CC Type 1 Font FontBBox array Stack Buffer Overflow Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Photoshop CC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exis...

10CVSS9.6AI score0.06433EPSS
Exploits1
Source Incite
Source Incite
added 2019/02/01 12:0 a.m.41 views

SRC-2019-0083 : Cisco Prime Infrastructure Health Monitor HA TarArchive Command Injection Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Cisco Prime Infrastructure. Authentication is not required to exploit this vulnerability. The specific flaw exists within the TarArchive class. The issue results from the lac...

10CVSS8.7AI score0.98092EPSS
Exploits12
Source Incite
Source Incite
added 2016/06/07 12:0 a.m.41 views

SRC-2017-0007 : Adobe Acrobat Pro DC ImageConversion EMF parsing EMR_EXTTEXTOUTA Array Indexing Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

9.3CVSS9.4AI score0.06918EPSS
Exploits1
Source Incite
Source Incite
added 2021/01/11 12:0 a.m.40 views

SRC-2021-0016 : Microsoft SharePoint Server InputFormRegularExpressionValidator Denial of Service Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to cause a denial of service on affected installations of SharePoint Server. Authentication is required to exploit this vulnerability. The specific flaw exists within the InputFormRegularExpressionValidator class. The issue results...

6.5CVSS6AI score0.02395EPSS
Exploits1
Source Incite
Source Incite
added 2018/05/09 12:0 a.m.40 views

SRC-2019-0044 : Hewlett Packard Intelligent Management Center Standard SmscCfgDaoImpl updateEmailSuffix SQL Injection Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be...

9CVSS9AI score0.01863EPSS
Exploits1
Source Incite
Source Incite
added 2016/02/24 12:0 a.m.40 views

SRC-2016-0012 : ATutor LMS confirm ‘UPDATE’ Type Juggling Authentication Bypass Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to bypass the authentication mechanism on vulnerable installations of ATutor. The specific flaw exists in the ‘confirm.php’ script when updating a members email address. The code uses a loose comparison when comparing the supplied...

8AI score
Exploits0
Source Incite
Source Incite
added 2020/07/02 12:0 a.m.39 views

SRC-2020-0020 : Microsoft SharePoint Server ExchangeAutodiscover GetDataFromURL Blind Server-Side Request Forgery Tampering Vulnerability

Vulnerability Details: This vulnerability allows remote attackers escalate privileges under certain conditions. Authentication is required to exploit this vulnerability. The specific flaw exists within the GetFreeBusyStatusForOneUser function inside of the AsynchronousWebPartService class. The...

6.3CVSS8.2AI score0.01773EPSS
Exploits1
Source Incite
Source Incite
added 2020/01/08 12:0 a.m.39 views

SRC-2020-0013 : Cisco UCS Director MyCallable call Directory Traversal Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on affected installations of Cisco UCS Director and Cisco UCS Director Express for Big Data. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be...

9.8CVSS8.9AI score0.61516EPSS
Exploits1
Source Incite
Source Incite
added 2019/02/01 12:0 a.m.39 views

SRC-2019-0040 : Cisco Prime Infrastructure DbTableListAction orderByColumn SQL Injection Information Disclosure Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Cisco Prime Infrastructure. Authentication is required to exploit this vulnerability. The specific flaw exists within the DbTableListAction struts class. The issue...

8.1CVSS8.1AI score0.01901EPSS
Exploits1
Source Incite
Source Incite
added 2019/02/01 12:0 a.m.39 views

SRC-2019-0038 : Cisco Prime Infrastructure XmpFileUploadServlet Directory Traversal Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Cisco Prime Infrastructure. Authentication is required to exploit this vulnerability. The specific flaw exists within the XmpFileUploadServlet servlet. The issue results from...

9CVSS7.6AI score0.04415EPSS
Exploits1
Source Incite
Source Incite
added 2018/01/25 12:0 a.m.39 views

SRC-2018-0017 : Foxit Reader PDF Parsing U3D Array Indexing Out-of-Bounds Write Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

8.8CVSS8.9AI score0.04008EPSS
Exploits1
Source Incite
Source Incite
added 2019/06/02 12:0 a.m.38 views

SRC-2019-0078 : Adobe Acrobat Pro DC Type PostScript File Out-of-Bounds Read Information Disclosure Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific...

7.5CVSS8.4AI score0.02893EPSS
Exploits1
Source Incite
Source Incite
added 2019/04/04 12:0 a.m.38 views

SRC-2019-0061 : Adobe Photoshop CC ASCII85Decode filter Heap Buffer Overflow Remote Code Execution Vulnerability

Vulnerability Details: This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Photoshop CC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exis...

10CVSS9.6AI score0.06433EPSS
Exploits1
Total number of security vulnerabilities293