Lucene search
K
ZdiMost viewed

16763 matches found

Zero Day Initiative
Zero Day Initiative
•added 2019/03/05 12:0 a.m.•48 views

Unity com.unity3d.kharma Protocol Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Unity Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handler for the...

8.8CVSS3AI score0.03744EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/12/20 12:0 a.m.•48 views

Adobe Flash Player BitmapData hitTest Out-Of-Bounds Access Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

6.8CVSS1.7AI score0.06518EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/12/13 12:0 a.m.•48 views

Trend Micro Mobile Security for Enterprise clt_report_sms_status Uninitialized Pointer Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Trend Micro Mobile Security for Enterprise. Authentication is not required to exploit this vulnerability. The specific flaw exists within processing of the cltreportsmsstatus action. The...

6.4CVSS1.6AI score0.03912EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/02/07 12:0 a.m.•48 views

Trend Micro Control Manager modDLPViolationCnt_drildown Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trend Micro Control Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within widgetold's modDLPViolationCntdrildown.php script. The issue lies in the...

6.8CVSS7.5AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/01/11 12:0 a.m.•48 views

Foxit PhantomPDF ConvertToPDF TIFF Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit PhantomPDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within ConvertToPDF's...

6.8CVSS7AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/01/10 12:0 a.m.•48 views

Adobe Reader DC XSLT processing-instruction Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within XSLT's...

6.8CVSS3.5AI score0.2042EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/01/10 12:0 a.m.•48 views

Adobe Acrobat Pro DC ImageConversion JPEG Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

6.8CVSS5.8AI score0.11472EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/12/14 12:0 a.m.•48 views

Fatek Automation FvDesigner Stack Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Fatek Automation FvDesigner. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.5CVSS5.8AI score0.02026EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/10/11 12:0 a.m.•48 views

Microsoft Windows JavaScript Spread Operator Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing...

7.5CVSS3.2AI score0.41323EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/07/12 12:0 a.m.•48 views

Microsoft Internet Explorer CTableRowCellsCollectionCacheItem Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability relates to how...

6.8CVSS3.5AI score0.13354EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/02/05 12:0 a.m.•48 views

Advantech WebAccess webvrpcs Service BwpAlarm.dll ProjectName/NodeName sprintf Stack-Based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable instances of Advantech WebAccess. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the 0x11367 IOCTL in the BwpAlarm subsystem. A stack-based buffe...

9.3CVSS5.8AI score0.16655EPSS
Exploits9References1
Zero Day Initiative
Zero Day Initiative
•added 2015/12/18 12:0 a.m.•48 views

Microsoft Internet Explorer RtfToForeign32 Out-Of-Bounds Indexing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.4AI score0.1253EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2015/12/08 12:0 a.m.•48 views

Adobe Flash MP3 ID3 COMM Tag Heap Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of MP3...

6.8CVSS8.6AI score0.07985EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/11/10 12:0 a.m.•48 views

Microsoft Office Excel Binary Worksheet Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Office Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.4AI score0.20568EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/07/14 12:0 a.m.•48 views

Microsoft Internet Explorer CTableSection Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability relates to how...

6.8CVSS6.4AI score0.13021EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/07/14 12:0 a.m.•48 views

Microsoft Internet Explorer CTableRow Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.3AI score0.13021EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/07/14 12:0 a.m.•48 views

Microsoft Internet Explorer Enhanced Protected Mode Read-Restrictions Bypass Vulnerability

This vulnerability allows remote attackers to partially escape AppContainer limitations on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw...

4.7CVSS5.9AI score0.17855EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/05/07 12:0 a.m.•48 views

EMC AutoStart ftAgent Opcode 20 Subcode 2219 Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of EMC AutoStart. Authentication is required to exploit this vulnerability, but can be easily bypassed. The specific flaw exists within ftAgent.exe which listens on TCP port 8045, when handling opcode...

9CVSS6.9AI score0.07209EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/03/12 12:0 a.m.•48 views

Hewlett-Packard POS Printer Windows and OPOS Drivers OPOSPOSPrinter.ocx Open Method Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard POS Printer Windows and OPOS Drivers. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specifi...

6.8CVSS6.9AI score0.10349EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/03/10 12:0 a.m.•48 views

Microsoft Internet Explorer CInputContext Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.3AI score0.15682EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2015/03/10 12:0 a.m.•48 views

Microsoft Internet Explorer CImgElement Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability relates to how...

6.8CVSS7.6AI score0.15525EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2015/02/27 12:0 a.m.•48 views

PTC Creo View Heap Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of PTC Creo View. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the Creo View...

7.5CVSS6.9AI score0.03896EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2014/10/14 12:0 a.m.•48 views

Microsoft Internet Explorer CMarkup Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.3AI score0.32854EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/05/30 12:0 a.m.•48 views

Apple Safari Array Indexing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Webkit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of JSArray...

6.8CVSS2.1AI score0.02801EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/05/29 12:0 a.m.•48 views

IBM SPSS SamplePower Vsflex8l.ocx ActiveX ComboList/ColComboList Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM SPSS SamplePower. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.5CVSS4.4AI score0.03498EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/05/10 12:0 a.m.•48 views

Oracle Java setICMpixels Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

10CVSS3.4AI score0.06917EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2012/04/18 12:0 a.m.•48 views

Samba ReportEventW Heap Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Samba. Authentication is not required to exploit this vulnerability. The specific flaw exists within the way Samba handles ReportEventW requests. When parsing the data send in the request Samba use...

10CVSS5.6AI score0.74034EPSS
Exploits9References1
Zero Day Initiative
Zero Day Initiative
•added 2011/04/14 12:0 a.m.•48 views

(Pwn2Own) Webkit CSS Text Element Count Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Webkit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the WebKit library's...

9CVSS3.7AI score0.09754EPSS
Exploits0References5
Zero Day Initiative
Zero Day Initiative
•added 2011/02/08 12:0 a.m.•48 views

Adobe Acrobat Reader U3D Texture .fli RLE Decompression Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

9.7CVSS3.9AI score0.0992EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2011/01/12 12:0 a.m.•48 views

HP Mercury Loadrunner Agent Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of HP LoadRunner. Authentication is not required to exploit this vulnerability. The specific flaw exists within the magentproc.exe process which binds by default on TCP ports 5001, 5002, 5003, 50500,...

10CVSS4.7AI score0.13442EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2010/10/12 12:0 a.m.•48 views

Oracle Sun JRE JPEGImageWriter.writeImage Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Sun's Java Runtime Environment. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the processing of JPEG image...

9CVSS8.6AI score0.05616EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2010/09/13 12:0 a.m.•48 views

Mozilla Firefox nsTreeSelection Dangling Pointer Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the fix...

9CVSS9.8AI score0.06672EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2010/04/05 12:0 a.m.•48 views

Sun Java Runtime RMIConnectionImpl Privileged Context Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Sun Java Runtime Environment. User interaction is required to exploit this vulnerability in that the target must visit a malicious website. The specific flaw exists within the deserialization o...

10CVSS5.5AI score0.81593EPSS
Exploits5References1
Zero Day Initiative
Zero Day Initiative
•added 2008/09/09 12:0 a.m.•48 views

Apple QuickTime AVC1 Atom Parsing Heap Overflow Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Apple QuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists in the parsing of AVC1...

9.3CVSS4.2AI score0.08618EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2024/06/21 12:0 a.m.•47 views

(Pwn2Own) HP Color LaserJet Pro MFP 4301fdw CFF Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of HP Color LaserJet Pro MFP 4301fdw printers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing of embedded fonts. The issue results fr...

8.8CVSS7.2AI score0.01342EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/06/13 12:0 a.m.•47 views

Autodesk AutoCAD MODEL File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS7.7AI score0.00415EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/06/12 12:0 a.m.•47 views

(Pwn2Own) Microsoft Windows NtQueryInformationToken Race Condition Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the implementation...

8.8CVSS7.1AI score0.68202EPSS
Exploits7References1
Zero Day Initiative
Zero Day Initiative
•added 2024/05/14 12:0 a.m.•47 views

Microsoft SharePoint BaseXmlDataSource XML External Entity Processing Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft SharePoint. Authentication is required to exploit this vulnerability. The specific flaw exists within the BaseXmlDataSource class. Due to the improper restriction of XML External...

7.1CVSS5.9AI score0.54659EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2024/04/23 12:0 a.m.•47 views

Ivanti Avalanche InstallPackageThread Time-Of-Check Time-Of-Use Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ivanti Avalanche. Authentication is required to exploit this vulnerability. The specific flaw exists within the InstallPackageThread class. The issue results from the lack of proper locking when...

8.8CVSS8.9AI score0.02373EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/03/01 12:0 a.m.•47 views

Linux Kernel ksmbd Chained Request Improper Input Validation Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Linux Kernel. Authentication is not required to exploit this vulnerability, but only systems with ksmbd enabled are vulnerable. The specific flaw exists within the handling of chained request...

9.3CVSS6.5AI score0.17442EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/04/13 12:0 a.m.•47 views

Linux Kernel RxRPC Race Condition Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the processing of RxRPC...

8.8CVSS6.6AI score0.00363EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/03/16 12:0 a.m.•47 views

Adobe Dimension USD File Parsing Uninitialized Variable Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe Dimension. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsin...

3.3CVSS5.9AI score0.00332EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/01/20 12:0 a.m.•47 views

RARLAB WinRAR ZIP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of RARLAB WinRAR. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing ...

2.5CVSS2.4AI score0.23043EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/12/22 12:0 a.m.•47 views

Linux Kernel ksmbd Memory Exhaustion Denial-of-Service Vulnerability

This vulnerability allows remote attackers to create a denial-of-service condition on affected installations of Linux Kernel. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of SMB2NEGOTIATE commands. The issue results from the lack of...

5.3CVSS2.4AI score0.04906EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/03 12:0 a.m.•47 views

SAP 3D Visual Enterprise Author OBJ File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of SAP 3D Visual Enterprise Author. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

3.3CVSS3AI score0.00242EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/10/25 12:0 a.m.•47 views

(0Day) Corel CorelDRAW Graphics Suite GIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Corel CorelDRAW Graphics Suite. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

3.3CVSS3.2AI score0.00807EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/09/29 12:0 a.m.•47 views

Microsoft Windows Active Directory Certificate Services Improper Authorization Privilege Escalation Vulnerability

This vulnerability allows network-adjacent attackers to escalate privileges on affected installations of Microsoft Windows Active Directory Certificate Services. Authentication is required to exploit this vulnerability. The specific flaw exists within the issuance of certificates. By including...

8.4CVSS3.9AI score0.01622EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/05/27 12:0 a.m.•47 views

(Pwn2Own) Mozilla Firefox Top-Level Await Prototype Pollution Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the Top-Level Awai...

8.8CVSS3.6AI score0.26709EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/03/23 12:0 a.m.•47 views

(Pwn2Own) NETGEAR R6700v3 libreadycloud.so Command Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 routers. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handli...

8CVSS3.5AI score0.01467EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/02/02 12:0 a.m.•47 views

Sante DICOM Viewer Pro DCM File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Sante DICOM Viewer Pro. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS3.1AI score0.01538EPSS
Exploits0
Total number of security vulnerabilities5000