Lucene search
K
TalosMost viewed

2224 matches found

Talos
Talos
added 2017/06/19 12:0 a.m.50 views

Foscam IP Video Camera CGIProxy.fcgi SMTP Test Password Parameter Configuration Command Injection Vulnerability

Summary An exploitable command injection vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.37. A specially crafted HTTP request can allow for a user to inject arbitrary data in the “msmtprc” configuration file resulting...

8.8CVSS9AI score0.03439EPSS
Exploits1
Talos
Talos
added 2016/11/21 12:0 a.m.50 views

Network Time Protocol Broadcast Mode Replay Prevention Denial of Service Vulnerability

Summary An exploitable denial of service vulnerability exists in the broadcast mode replay prevention functionality of ntpd. To prevent replay of broadcast mode packets, ntpd rejects broadcast mode packets with non-monotonically increasing transmit timestamps. Remote unauthenticated attackers can...

6.5CVSS6.6AI score0.03334EPSS
Exploits2
Talos
Talos
added 2016/06/08 12:0 a.m.50 views

IBM Domino KeyView PDF Filter Encrypted Stream Code Execution Vulnerability

Summary A stack overflow vulnerability present in the PDF filter of KeyView as used by Domino can lead to process crash and possible arbitrary code execution. Tested Versions KeyView 10.16 as used by IBM Domino 9.0.1 Product URLs http://www-03.ibm.com/software/products/en/ibmdomino Details While...

7.8CVSS7.9AI score0.02674EPSS
Exploits1
Talos
Talos
added 2026/05/20 12:0 a.m.49 views

MediaArea MediaInfoLib Channel Splitting heap-based buffer overflow vulnerability

Summary A heap-based buffer overflow vulnerability exists in the Channel Splitting functionality of MediaInfoLib versions: 26.01. A specially crafted .riff file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability. Confirmed Vulnerable...

7.8CVSS6.3AI score0.002EPSS
Exploits0
Talos
Talos
added 2024/04/09 12:0 a.m.49 views

Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point (EAP225 V3) TDDP denial of service vulnerability

Talos Vulnerability Report TALOS-2023-1861 Tp-Link AC1350 Wireless MU-MIMO Gigabit Access Point EAP225 V3 TDDP denial of service vulnerability April 9, 2024 CVE Number CVE-2023-49074 SUMMARY A denial of service vulnerability exists in the TDDP functionality of Tp-Link AC1350 Wireless MU-MIMO...

7.5CVSS7.5AI score0.13479EPSS
Exploits1
Talos
Talos
added 2023/11/14 12:0 a.m.49 views

Weston Embedded uC-HTTP HTTP Server memory corruption vulnerability

Talos Vulnerability Report TALOS-2023-1732 Weston Embedded uC-HTTP HTTP Server memory corruption vulnerability November 14, 2023 CVE Number CVE-2023-28391 SUMMARY A memory corruption vulnerability exists in the HTTP Server header parsing functionality of Weston Embedded uC-HTTP v3.01.01. Speciall...

9.8CVSS9.7AI score0.01475EPSS
Exploits1
Talos
Talos
added 2022/12/22 12:0 a.m.49 views

OpenImageIO TIFF file string field information disclosure vulnerability

Talos Vulnerability Report TALOS-2022-1627 OpenImageIO TIFF file string field information disclosure vulnerability December 22, 2022 CVE Number CVE-2022-41977 SUMMARY An out of bounds read vulnerability exists in the way OpenImageIO version v2.3.19.0 processes string fields in TIFF image files. A...

5.3CVSS6.3AI score0.00677EPSS
Exploits1
Talos
Talos
added 2022/12/21 12:0 a.m.49 views

Ghost user enumeration vulnerablity

Talos Vulnerability Report TALOS-2022-1625 Ghost user enumeration vulnerablity December 21, 2022 CVE Number CVE-2022-41697 SUMMARY A user enumeration vulnerability exists in the login functionality of Ghost Foundation Ghost 5.9.4. A specially-crafted HTTP request can lead to a disclosure of...

5.3CVSS5.3AI score0.20196EPSS
Exploits1
Talos
Talos
added 2022/10/27 12:0 a.m.49 views

InHand Networks InRouter302 console verify leftover debug code vulnerability

Talos Vulnerability Report TALOS-2022-1520 InHand Networks InRouter302 console verify leftover debug code vulnerability October 27, 2022 CVE Number CVE-2022-26023 SUMMARY A leftover debug code vulnerability exists in the console verify functionality of InHand Networks InRouter302 V3.5.45. A...

6.5CVSS6.9AI score0.00771EPSS
Exploits1
Talos
Talos
added 2022/10/27 12:0 a.m.49 views

InHand Networks InRouter302 console infct leftover debug code vulnerability

Talos Vulnerability Report TALOS-2022-1519 InHand Networks InRouter302 console infct leftover debug code vulnerability October 27, 2022 CVE Number CVE-2022-30543 SUMMARY A leftover debug code vulnerability exists in the console infct functionality of InHand Networks InRouter302 V3.5.45. A...

8.8CVSS6.6AI score0.0085EPSS
Exploits1
Talos
Talos
added 2022/10/20 12:0 a.m.49 views

Abode Systems, Inc. iota All-In-One Security Kit web interface /action/wirelessConnect OS command injection vulnerabilities

Talos Vulnerability Report TALOS-2022-1568 Abode Systems, Inc. iota All-In-One Security Kit web interface /action/wirelessConnect OS command injection vulnerabilities October 20, 2022 CVE Number CVE-2022-33205,CVE-2022-33204,CVE-2022-33206,CVE-2022-33207 SUMMARY Four OS command injection...

10CVSS9.5AI score0.04222EPSS
Exploits4
Talos
Talos
added 2022/10/20 12:0 a.m.49 views

Abode Systems, Inc. iota All-In-One Security Kit XCMD testWifiAP OS command injection vulnerabilities

Talos Vulnerability Report TALOS-2022-1559 Abode Systems, Inc. iota All-In-One Security Kit XCMD testWifiAP OS command injection vulnerabilities October 20, 2022 CVE Number CVE-2022-33194,CVE-2022-33195,CVE-2022-33193,CVE-2022-33192 SUMMARY Four OS command injection vulnerabilities exist in the...

10CVSS10AI score0.03244EPSS
Exploits4
Talos
Talos
added 2022/08/16 12:0 a.m.49 views

WWBN AVideo aVideoEncoder wget OS command injection vulnerability

Talos Vulnerability Report TALOS-2022-1548 WWBN AVideo aVideoEncoder wget OS command injection vulnerability August 16, 2022 CVE Number CVE-2022-32572 SUMMARY An os command injection vulnerability exists in the aVideoEncoder wget functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A...

9.9CVSS9AI score0.22746EPSS
Exploits1
Talos
Talos
added 2022/08/03 12:0 a.m.49 views

ESTsoft Alyac OLE header Mini FAT sectors integer overflow

Talos Vulnerability Report TALOS-2022-1533 ESTsoft Alyac OLE header Mini FAT sectors integer overflow August 3, 2022 CVE Number CVE-2022-29886 SUMMARY An integer overflow vulnerability exists in the way ESTsoft Alyac 2.5.8.544 parses OLE files. A specially-crafted OLE file can lead to a heap buff...

7.8CVSS6.9AI score0.00455EPSS
Exploits1
Talos
Talos
added 2022/08/01 12:0 a.m.49 views

TCL LinkHub Mesh Wifi ucloud_del_node denial of service vulnerability

Talos Vulnerability Report TALOS-2022-1507 TCL LinkHub Mesh Wifi uclouddelnode denial of service vulnerability August 1, 2022 CVE Number CVE-2022-26346 SUMMARY A denial of service vulnerability exists in the uclouddelnode functionality of TCL LinkHub Mesh Wi-Fi MS1G0001.0014. A specially-crafted...

9.8CVSS9.3AI score0.01043EPSS
Exploits1
Talos
Talos
added 2022/02/01 12:0 a.m.49 views

Sealevel Systems, Inc. SeaConnect 370W OTA update task out-of-bounds write vulnerability

Summary An out-of-bounds write vulnerability exists in the OTA update task functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT payload can lead to denial of service. An attacker can perform a man-in-the-middle attack to trigger this vulnerability. Tested...

7.1CVSS6.3AI score0.00733EPSS
Exploits1
Talos
Talos
added 2022/02/01 12:0 a.m.49 views

Sealevel Systems, Inc. SeaConnect 370W OTA update task file overwrite vulnerability

Summary A file write vulnerability exists in the OTA update task functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted MQTT payload can lead to arbitrary file overwrite. An attacker can perform a man-in-the-middle attack to trigger this vulnerability. Tested Version...

8.3CVSS8.2AI score0.00952EPSS
Exploits1
Talos
Talos
added 2021/11/22 12:0 a.m.49 views

Advantech R-SeeNet installation privilege escalation vulnerability

Summary A privilege escalation vulnerability exists in the Windows version of installation for Advantech R-SeeNet Advantech R-SeeNet 2.4.15 30.07.2021. A specially-crafted file can be replaced in the system to escalate privileges to NT SYSTEM authority. An attacker can provide a malicious file to...

8.8CVSS8.1AI score0.00378EPSS
Exploits3
Talos
Talos
added 2021/04/26 12:0 a.m.49 views

Systemd DHCP client denial-of-service vulnerability

Summary An exploitable denial-of-service vulnerability exists in Systemd 245. A specially crafted DHCP FORCERENEW packet can cause a server running the DHCP client to be vulnerable to a DHCP ACK spoofing attack. An attacker can forge a pair of FORCERENEW and DCHP ACK packets to reconfigure the...

6.1CVSS6.7AI score0.01399EPSS
Exploits1
Talos
Talos
added 2020/11/12 12:0 a.m.49 views

Pixar OpenUSD binary file format specs memory corruption

Summary An out-of-bounds memory corruption vulnerability exists in the way Pixar OpenUSD 20.05 uses SPECS data from binary USD files. A specially crafted malformed file can trigger an out-of-bounds memory access and modification which results in memory corruption. To trigger this vulnerability, t...

6.3CVSS6.7AI score0.00817EPSS
Exploits1
Talos
Talos
added 2020/01/16 12:0 a.m.49 views

Foxit PDF Reader Javascript Field Action Validate Remote Code Execution Vulnerability

Summary An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader version 9.7.0.29435. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to...

8.8CVSS8.8AI score0.03485EPSS
Exploits1
Talos
Talos
added 2019/12/02 12:0 a.m.49 views

Forma LMS 2.2.1 /appCore/index.php users parameter SQL injections

Summary Exploitable SQL injection vulnerabilities exist in the authenticated portion of Forma LMS 2.2.1. Specially crafted web requests can cause SQL injections. An attacker can send a web request with parameters containing SQL injection attacks to trigger this vulnerability, potentially allowing...

8.8CVSS8.7AI score0.01064EPSS
Exploits1
Talos
Talos
added 2018/04/12 12:0 a.m.49 views

NASA CFITSIO `ffghbn` and `ffghtb` Stack Overflow Code Execution Vulnerabilities

Summary Exploitable buffer overflow vulnerabilities exist in image parsing functionality of the CFITSIO library version 3.42. Specially crafted images parsed via the library, can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this...

8.8CVSS9.1AI score0.04034EPSS
Exploits1
Talos
Talos
added 2018/04/11 12:0 a.m.49 views

Computerinsel Photoline PCX Run Length Code Execution Vulnerability

Summary A memory corruption vulnerability exists in the PCX-parsing functionality of Computerinsel Photoline 20.53. A specially crafted PCX image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a PCX image to trigger this...

8.8CVSS8.1AI score0.0147EPSS
Exploits1
Talos
Talos
added 2018/04/04 12:0 a.m.49 views

Natus Xltek EEG NeuroWorks RequestForPatientInfoEEGfile Code Execution Vulnerability

Summary An exploitable Code Execution vulnerability exists in the RequestForPatientInfoEEGfile functionality of Natus Xltek NeuroWorks 8. A specially crafted network packet can cause a stack buffer overflow resulting in arbitrary command execution. An attacker can send a malicious packet to trigg...

10CVSS9.9AI score0.03436EPSS
Exploits0
Talos
Talos
added 2018/01/11 12:0 a.m.49 views

Blender multires_load_old_dm base vertex map Integer Overflow Code Execution Vulnerability

Summary An exploitable integer overflow exists in the multiresloadolddm functionality of the Blender open-source 3d creation suite v2.78c. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the...

8.8CVSS8AI score0.01861EPSS
Exploits1
Talos
Talos
added 2017/11/15 12:0 a.m.49 views

libxls xls_mergedCells Code Execution Vulnerability

Summary An exploitable out-of-bounds write vulnerability exists in the xlsmergedCells function of libxls 1.4. A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An attacker can send malicious xls file to trigger this vulnerability. Tested Versions libxl...

8.8CVSS8.1AI score0.02052EPSS
Exploits1
Talos
Talos
added 2017/07/24 12:0 a.m.49 views

FreeRDP Rdp Client GCC Read Server Security Data Denial of Service Vulnerability

Summary An exploitable denial of service vulnerability exists within the handling of security data in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or use man in...

6.5CVSS6.7AI score0.01569EPSS
Exploits1
Talos
Talos
added 2017/07/20 12:0 a.m.49 views

Corel CorelDRAW X8 EMF Parser Code Execution Vulnerability

Summary An out of bound write vulnerability exists in the EMF parsing functionality of CorelDRAW X8 CdrGfx - Corel Graphics Engine 64-Bit - 18.1.0.661. A specially crafted EMF file can cause a vulnerability resulting in potential code execution. An attacker can send the victim a specific EMF file...

8.8CVSS8.4AI score0.0274EPSS
Exploits2
Talos
Talos
added 2017/03/07 12:0 a.m.49 views

Pharos PopUp Printer Client memcpy Code Execution Vulnerability

Summary A buffer overflows exists in the psnotifyd application of the Pharos PopUp printer client version 9.0. A specially crafted packet can be sent to the victim’s computer and can lead to a heap based buffer overflow resulting in potential remote code execution. This client is always listening...

9.3CVSS9.4AI score0.04038EPSS
Exploits1
Talos
Talos
added 2016/08/04 12:0 a.m.49 views

Hancom Hangul Office HShow!NXDeleteLineObj+0x560cb Code Execution Vulnerability

Talos Vulnerability Report TALOS-2016-0144 Hancom Hangul Office HShow!NXDeleteLineObj+0x560cb Code Execution Vulnerability August 4, 2016 CVE Number CVE-2016-4298 Description This vulnerability was discovered within the Hangul HShow application which is part of the Hangul Office Suite. Hangul...

7.8CVSS0.02342EPSS
Exploits2
Talos
Talos
added 2016/04/26 12:0 a.m.49 views

Network Time Protocol libntp Message Digest Disclosure Vulnerability

SUMMARY An exploitable vulnerability exists in the message authentication functionality of Network Time Protocol libntp. An attacker can send a series of crafted messages to attempt to recover the message digest key. TESTED VERSIONS ntp 4.2.8p4 NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92...

5.3CVSS0.7AI score0.03634EPSS
Exploits1
Talos
Talos
added 2015/08/13 12:0 a.m.49 views

Apple Quicktime Invalid URL Atom Size Denial of Service Vulnerability

Talos Vulnerability Report TALOS-2015-0012 Apple Quicktime Invalid URL Atom Size Denial of Service Vulnerability August 13, 2015 CVE Number CVE-2015-3788 Description An exploitable denial of service vulnerability exists in Apple Quicktime. An attacker who can control the size of a “url” atom in a...

6.8CVSS8.9AI score0.0364EPSS
Exploits0
Talos
Talos
added 2023/08/10 12:0 a.m.48 views

NVIDIA D3D10 Driver Shader Functionality dcl_resource_structured index memory corruption vulnerability

Talos Vulnerability Report TALOS-2023-1721 NVIDIA D3D10 Driver Shader Functionality dclresourcestructured index memory corruption vulnerability August 10, 2023 CVE Number CVE-2022-34671 SUMMARY A memory corruption vulnerability exists in the Shader Functionality of NVIDIA D3D10 Driver NVIDIA D3D1...

8.8CVSS8.7AI score0.01387EPSS
Exploits0
Talos
Talos
added 2023/06/13 12:0 a.m.48 views

Microsoft Office Excel WebCharts out-of-bounds write vulnerability

Talos Vulnerability Report TALOS-2023-1734 Microsoft Office Excel WebCharts out-of-bounds write vulnerability June 13, 2023 CVE Number CVE-2023-33133 SUMMARY An access violation vulnerability exists in the WebCharts functionality of Microsoft Office Excel 2019 Plus version 2302 build 16130.20332....

7.8CVSS7.9AI score0.44048EPSS
Exploits0
Talos
Talos
added 2022/02/23 12:0 a.m.48 views

Accusoft ImageGear Palette box parser heap-based buffer overflow vulnerability

Summary A heap-based buffer overflow vulnerability exists in the Palette box parser functionality of Accusoft ImageGear 19.10. A specially-crafted file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability. Tested Versions Accusoft ImageGear 19.10...

9.8CVSS8.8AI score0.01792EPSS
Exploits1
Talos
Talos
added 2021/11/16 12:0 a.m.48 views

Google Chrome WebRTC addIceCandidate use after free vulnerability

Summary A use after free vulnerability exists in the WebRTC functionality of Google Chrome 91.0.4472.114 Stable and 93.0.4575.0 Canary. A specially-crafted web page can trigger reuse of previously freed memory which can lead to arbitrary code execution. Victim would need to visit a malicious...

8.8CVSS8.8AI score0.02118EPSS
Exploits1
Talos
Talos
added 2021/11/15 12:0 a.m.48 views

Lantronix PremierWave 2050 Web Manager FsTFtp OS command injection vulnerabilities

Summary Multiple OS command injection vulnerabilities exists in the Web Manager FsTFtp functionality of Lantronix PremierWave 2050 8.9.0.0R4. Specially-crafted HTTP requests can lead to arbitrary command execution. An attacker can make authenticated HTTP requests to trigger these vulnerabilities...

9.1CVSS9.7AI score0.02694EPSS
Exploits1
Talos
Talos
added 2021/05/24 12:0 a.m.48 views

Trend Micro, Inc. Home Network Security tdts.ko chrdev_ioctl_handle privilege escalation vulnerability

Summary A privilege escalation vulnerability exists in the tdts.ko chrdevioctlhandle functionality of Trend Micro, Inc. Home Network Security 6.1.567. A specially crafted ioctl can lead to increased privileges. An attacker can issue an ioctl to trigger this vulnerability. Tested Versions Trend...

7.8CVSS7.8AI score0.00434EPSS
Exploits1
Talos
Talos
added 2021/03/30 12:0 a.m.48 views

Accusoft ImageGear TIFF Header count processing out-of-bounds write vulnerability

Summary An out-of-bounds write vulnerability exists in the TIFF header count-processing functionality of Accusoft ImageGear 19.8. A specially crafted malformed file can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability. Tested Versions Accusoft...

8.1CVSS8.2AI score0.00678EPSS
Exploits1
Talos
Talos
added 2020/08/24 12:0 a.m.48 views

Microsoft Azure Sphere Capability access control privilege escalation vulnerability

Talos Vulnerability Report TALOS-2020-1133 Microsoft Azure Sphere Capability access control privilege escalation vulnerability August 24, 2020 CVE Number None SUMMARY A privilege escalation vulnerability exists in the Capability access control functionality of Microsoft Azure Sphere 20.06. A set ...

7.3AI score
Exploits0
Talos
Talos
added 2020/01/21 12:0 a.m.48 views

AMD ATI Radeon ATIDXX64.DLL MAD shader functionality denial-of-service vulnerability

Summary An exploitable out-of-bounds read vulnerability exists in AMD ATIDXX64.DLL driver, version 26.20.13025.10004. A specially crafted pixel shader can cause a denial of service. An attacker can provide a specially crafted shader file to trigger this vulnerability. This vulnerability can be...

8.6CVSS8.3AI score0.01705EPSS
Exploits0
Talos
Talos
added 2020/01/16 12:0 a.m.48 views

Foxit PDF Reader Javascript createTemplate Invalid Page Code Execution Vulnerability

Summary An exploitable use-after-free vulnerability exists in the JavaScript engine of Foxit Software’s Foxit PDF Reader version 9.7.0.29435. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to...

8.8CVSS8.6AI score0.02312EPSS
Exploits1
Talos
Talos
added 2019/08/13 12:0 a.m.48 views

Schneider Electric Modicon M580 UMAS Function Code 0x29 Denial of Service Vulnerability

Summary An exploitable denial of service vulnerability exists in the UMAS function code 0x29 functionality of the Schneider Electric Modicon M580 Programmable Automation Controller firmware version SV2.70. A specially crafted UMAS command can cause the device to enter a non-recoverable fault stat...

7.8CVSS7.8AI score0.01609EPSS
Exploits1
Talos
Talos
added 2018/07/20 12:0 a.m.48 views

Sony IPELA E Series Camera 802dot1xclientcert remote code execution vulnerability

Summary An exploitable stack-based buffer overflow vulnerability exists in the 802dot1xclientcert.cgi functionality of Sony IPELA E Series Camera. A specially crafted POST can cause a stack-based buffer overflow, resulting in remote code execution. An attacker can send a malicious POST request to...

10CVSS9.8AI score0.03299EPSS
Exploits0
Talos
Talos
added 2018/06/19 12:0 a.m.48 views

Insteon Hub PubNub Firmware Downgrade Vulnerability

Summary An exploitable firmware downgrade vulnerability exists in Insteon Hub running firmware version 1013. The firmware upgrade functionality, triggered via PubNub, retrieves signed firmware binaries using plain HTTP requests. The device doesn’t check the firmware version that is going to be...

8.6CVSS7.8AI score0.01119EPSS
Exploits2
Talos
Talos
added 2018/04/19 12:0 a.m.48 views

Foxit PDF Reader AssociatedFile Annotation Type Confusion

Summary An exploitable type confusion vulnerability exists in the way Foxit PDF Reader version 9.0.1.1049 parses files with associated file annotations. A specially crafted PDF document can lead to an object of invalid type to be dereferenced, which can potentially lead to sensitive memory...

8.8CVSS7.8AI score0.24033EPSS
Exploits2
Talos
Talos
added 2018/04/11 12:0 a.m.48 views

Computerinsel Photoline PCX Color Map Code Execution Vulnerability

Summary A memory corruption vulnerability exists in the PCX-parsing functionality of Computerinsel Photoline 20.53. A specially crafted PCX image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a PCX image to trigger this...

8.8CVSS7.9AI score0.0147EPSS
Exploits1
Talos
Talos
added 2018/03/01 12:0 a.m.48 views

Simple DirectMedia Layer SDL2_Image IMG_LoadLBM_RW Code Execution Vulnerability

Summary An exploitable code execution vulnerability exists in the ILBM image rendering functionality of SDL2image-2.0.2. A specially crafted ILBM image can cause a heap overflow resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability. Tested...

8.8CVSS8.7AI score0.02395EPSS
Exploits0
Talos
Talos
added 2018/01/11 12:0 a.m.48 views

Blender modifier_mdef_compact_influences Integer Overflow Code Execution Vulnerability

Summary An exploitable integer overflow exists in the modifiermdefcompactinfluences functionality of the Blender open-source 3d creation suite v2.78c. A specially crafted .blend file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context ...

8.8CVSS7.9AI score0.01866EPSS
Exploits1
Total number of security vulnerabilities2224