Lucene search
+L
ZdiMost viewed

16763 matches found

Zero Day Initiative
Zero Day Initiative
•added 2021/03/09 12:0 a.m.•59 views

Google Android fts_driver_test_write Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Google Android. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

5.5CVSS3.1AI score0.00124EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2020/09/21 12:0 a.m.•59 views

Apple Safari replace Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple Safari. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the optimization of...

8.8CVSS2.8AI score0.01694EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2020/08/12 12:0 a.m.•59 views

Adobe Acrobat Reader DC app.measureDialog Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

5.5CVSS2.3AI score0.03143EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/03/30 12:0 a.m.•59 views

(Pwn2Own) VMware Workstation Uninitialized Memory Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of VMware Workstation. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling...

6.9CVSS4.7AI score0.00427EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/02/05 12:0 a.m.•59 views

Advantech WebAccess webvrpcs Service BwKrlApi.dll strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable instances of Advantech WebAccess. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the 0x272F IOCTL in the ViewSrv subsystem. A stack-based buffer...

9.3CVSS4.8AI score0.16655EPSS
Exploits9References1
Zero Day Initiative
Zero Day Initiative
•added 2016/02/05 12:0 a.m.•59 views

Advantech WebAccess webvrpcs Service BwpAlarm.dll strcpy Heap-Based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable instances of Advantech WebAccess. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the 0x11367 IOCTL in the BwpAlarm subsystem. A heap-based buffer...

9.3CVSS4.6AI score0.28185EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/06/27 12:0 a.m.•59 views

Oracle Java ShortComponentRaster Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

10CVSS4.2AI score0.22988EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/06/11 12:0 a.m.•59 views

ABB DataManager National Instruments Multiple ActiveX Controls cwui.ocx ExportStyle() Method Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ABB DataManager Data Analysis. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

7.5CVSS3.2AI score0.02073EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2011/10/26 12:0 a.m.•59 views

Apple QuickTime H264 Stream frame_cropping Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Quicktim...

7.5CVSS4.4AI score0.04756EPSS
Exploits2References1
Zero Day Initiative
Zero Day Initiative
•added 2024/11/19 12:0 a.m.•58 views

RSA Security SecureID Software Token for Microsoft Windows Uncontrolled Search Path Element Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of RSA Security SecureID Software Token for Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must open a malicious file. The specific flaw exists within t...

7.8CVSS7.3AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/06/12 12:0 a.m.•58 views

(Pwn2Own) Microsoft Windows mskssrv Driver Use-After-Free Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Microsoft Kern...

8.8CVSS7AI score0.08038EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/08/15 12:0 a.m.•58 views

Schneider Electric EcoStruxure Operator Terminal Expert VXDZ File Parsing Code Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Schneider Electric EcoStruxure Operator Terminal Expert. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specif...

7.8CVSS7AI score0.00597EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
•added 2023/08/08 12:0 a.m.•58 views

(0Day) Microsoft GitHub Dev-Containers Improper Privilege Management Privilege Escalation Vulnerability

This vulnerability allows remote attackers to escalate privileges on affected installations of Microsoft GitHub. Authentication is required to exploit this vulnerability. The specific flaw exists within the configuration of Dev-Containers. The application does not enforce the privileged flag with...

9.9CVSS7.3AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2023/08/04 12:0 a.m.•58 views

Triangle MicroWorks SCADA Data Gateway certificate Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Triangle MicroWorks SCADA Data Gateway. Authentication is not required to exploit this vulnerability. The specific flaw exists within the configuration of certificate web directory. The issue...

5.3CVSS6.2AI score0.00539EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/05/04 12:0 a.m.•58 views

(Pwn2Own) Canon imageCLASS MF743Cdw CADM resourceStart2 Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Canon imageCLASS MF743Cdw printers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the resourceStart2 command in the CADM...

8.8CVSS7.4AI score0.01139EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/08/23 12:0 a.m.•58 views

(Pwn2Own) AVEVA Edge Uncontrolled Search Path Element Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of AVEVA Edge. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of APP...

7.8CVSS2.9AI score0.00652EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/01/31 12:0 a.m.•58 views

Bentley View DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing o...

3.3CVSS2.7AI score0.01612EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2021/12/08 12:0 a.m.•58 views

Bentley View FBX File Parsing Use-After-Free Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing o...

3.3CVSS2.6AI score0.01603EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2021/12/08 12:0 a.m.•58 views

Bentley View PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing o...

3.3CVSS2.7AI score0.01603EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2021/09/16 12:0 a.m.•58 views

Adobe Acrobat Reader DC AcroForm buttonGetCaption Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handli...

7.8CVSS2.1AI score0.64297EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2021/08/09 12:0 a.m.•58 views

Apple macOS CoreGraphics JPG File Parsing Out-of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the CoreGraphics library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the parsi...

7.8CVSS5.5AI score0.01204EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2021/07/30 12:0 a.m.•58 views

Trend Micro Worry-Free Business Security Incorrect Permission Assignment Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Worry-Free Business Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists...

7.8CVSS4.8AI score0.00589EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2021/07/29 12:0 a.m.•58 views

(0Day) Microsoft 3D Viewer 3MF File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft 3D Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

6.6CVSS5.6AI score0.04938EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2021/07/19 12:0 a.m.•58 views

Siemens JT2Go TIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of TIF...

7.8CVSS4.2AI score0.01574EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
•added 2021/07/19 12:0 a.m.•58 views

Siemens JT2Go TIFF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens JT2Go. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of TIFF...

7.8CVSS4.6AI score0.01574EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
•added 2021/06/07 12:0 a.m.•58 views

OpenText Brava! Desktop PDF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of OpenText Brava! Desktop. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

7.8CVSS4.9AI score0.01419EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2021/05/13 12:0 a.m.•58 views

Siemens Tecnomatix Plant Simulation SPP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS5.2AI score0.0145EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
•added 2021/04/29 12:0 a.m.•58 views

Microsoft Windows win32kfull MulFillPath Untrusted Pointer Dereference Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the win32kfull.sys...

7.8CVSS6AI score0.01441EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2021/04/23 12:0 a.m.•58 views

Trend Micro HouseCall for Home Networks Incorrect Permission Assignment Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro HouseCall for Home Networks. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists...

7.3CVSS3.8AI score0.00346EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2021/04/23 12:0 a.m.•58 views

Autodesk FBX Review FBX File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk FBX Review. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS5AI score0.01378EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2021/04/15 12:0 a.m.•58 views

Microsoft Windows Installer Service Untrusted File Path Arbitrary File Write Vulnerability

This vulnerability allows local attackers to write data to arbitrary files on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

7.3CVSS5.1AI score0.03569EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2021/01/22 12:0 a.m.•58 views

Oracle Database Procedure Improper Privilege Management Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Oracle Database. Authentication is required to exploit this vulnerability. The specific flaw exists within the execution of stored procedures. When executing stored procedures, the process does not...

8.8CVSS4.3AI score0.01673EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2020/06/15 12:0 a.m.•58 views

(0Day) NETGEAR R6700 httpd Firmware Upload Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of NETGEAR R6700 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the httpd service, which listens on TCP port 80 by default. The issue...

8.8CVSS7.2AI score
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2020/05/28 12:0 a.m.•58 views

(Pwn2Own) Apple macOS Core Virtual Machine Service Heap-based Buffer Overflow Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of Core...

5.3CVSS5.4AI score0.0139EPSS
Exploits3References1
Zero Day Initiative
Zero Day Initiative
•added 2020/03/25 12:0 a.m.•58 views

(Pwn2Own) TP-Link Archer A7 SSH Port Forwarding Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on affected installations of TP-Link Archer A7 AC1750 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of SSH port forwarding requests during initial setup. The...

5.9CVSS1.4AI score0.02457EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2019/11/13 12:0 a.m.•58 views

VMware Workstation e1000 Out-Of-Bounds Write Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on affected installations of VMware Workstation. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the...

8.2CVSS3.6AI score0.01412EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/12/13 12:0 a.m.•58 views

NetGain Systems Enterprise Manager common.download_jsp filename Directory Traversal Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of NetGain Systems Enterprise Manager. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within...

7.8CVSS1.4AI score0.03391EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2017/08/24 12:0 a.m.•58 views

Microsoft Edge DOMAttrModified Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Edge. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of t...

6.8CVSS7.9AI score0.51465EPSS
Exploits5References1
Zero Day Initiative
Zero Day Initiative
•added 2017/08/07 12:0 a.m.•58 views

(0Day) Advantech WebAccess bwocxrun OpenUrlToBufferTimeout Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Advantech WebAccess. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within bwocxrun.ocx...

7.5CVSS7AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/08/07 12:0 a.m.•58 views

(0Day) Advantech WebAccess nvA1Media Connect MediaPassword Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Advantech WebAccess. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within nvA1Media.oc...

7.5CVSS7AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/07/10 12:0 a.m.•58 views

(Pwn2Own) Microsoft Chakra ArrayBuffer Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Chakra. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.8CVSS2.4AI score0.31582EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2017/04/05 12:0 a.m.•58 views

Trend Micro Control Manager cgiShowClientAdm Missing Authentication for Critical Function Vulnerability

This vulnerability allows remote attackers to modify the security posture of the underlying product on vulnerable installations of Trend Micro Control Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the processing of calls to the...

7.5CVSS2.4AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/03/30 12:0 a.m.•58 views

(Pwn2Own) VMware Workstation Uninitialized Memory Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on vulnerable installations of VMware Workstation. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

4.9CVSS3.5AI score0.01204EPSS
Exploits3References1
Zero Day Initiative
Zero Day Initiative
•added 2017/02/28 12:0 a.m.•58 views

VIPA Automation WinPLC7 recv Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of VIPA Automation WinPLC7. Authentication is not required to exploit this vulnerability. The specific flaw exists within processing of TCP packets. The software fails to validate the length field...

6.8CVSS3.6AI score0.17711EPSS
Exploits5References1
Zero Day Initiative
Zero Day Initiative
•added 2015/11/02 12:0 a.m.•58 views

Adobe Acrobat Reader DC CMAP Table Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way...

6.8CVSS6.2AI score0.0382EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/04/15 12:0 a.m.•58 views

Microsoft Internet Explorer CSVGMarkerElement Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability relates to how...

6.8CVSS6.5AI score0.15789EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/05/10 12:0 a.m.•58 views

(Pwn2Own) Google Chrome Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Google Chrome. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the usage of...

6.8CVSS3.2AI score0.04267EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/02/01 12:0 a.m.•58 views

Oracle Java Runtime Environment MethodHandle Security Manager Bypass Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Oracle Java Runtime Environment. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific bypass exists...

7.5CVSS4.4AI score0.97612EPSS
Exploits38References1
Zero Day Initiative
Zero Day Initiative
•added 2012/04/18 12:0 a.m.•58 views

Samba lsa_LookupNames Heap Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Samba. Authentication is not required to exploit this vulnerability. The specific flaw exists within the way Samba handles lsaLookupNames requests. When parsing the data send in the request Samba...

10CVSS5.5AI score0.74034EPSS
Exploits9References1
Zero Day Initiative
Zero Day Initiative
•added 2011/07/27 12:0 a.m.•58 views

Apple Safari Webkit SVG Marker Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari's Webkit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.5CVSS4.9AI score0.03923EPSS
Exploits3References1
Total number of security vulnerabilities5000