Lucene search
K
ZdiMost viewed

16763 matches found

Zero Day Initiative
Zero Day Initiative
•added 2017/04/11 12:0 a.m.•44 views

Microsoft Windows Font Object Buffer Overflow Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the processing o...

7.2CVSS4.5AI score0.02106EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/04/11 12:0 a.m.•44 views

Adobe Reader DC Collab shareFile Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

4.3CVSS3.2AI score0.04107EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/03/30 12:0 a.m.•44 views

(Pwn2Own) VMware Workstation SVGA Uninitialized Memory Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of VMware Workstation. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling...

6.9CVSS4.6AI score0.0041EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/03/11 12:0 a.m.•44 views

Hewlett Packard Enterprise Intelligent Management Center RMI Registry Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within the euplat RMI registry. The issue lies in th...

7.5CVSS2.9AI score0.34882EPSS
Exploits4References1
Zero Day Initiative
Zero Day Initiative
•added 2017/03/11 12:0 a.m.•44 views

Hewlett Packard Enterprise Intelligent Management Center accessMgrServlet Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett Packard Enterprise Intelligent Management Center. Authentication is not required to exploit this vulnerability. The specific flaw exists within the accessMgrServlet servlet. The issue lies ...

10CVSS4.9AI score0.1834EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/02/07 12:0 a.m.•44 views

Ecava IntegraXor getdata param SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Ecava IntegraXor. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the param parameter in getdata requests. The issue lies in the failur...

7.5CVSS2.1AI score0.01645EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/01/10 12:0 a.m.•44 views

Adobe Reader DC XSLT namespace-alias Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within XSLT's...

6.8CVSS3.5AI score0.2042EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/01/10 12:0 a.m.•44 views

Adobe Acrobat Pro DC ImageConversion JPEG Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

4.3CVSS2.8AI score0.0333EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/01/10 12:0 a.m.•44 views

Adobe Reader DC XFA template Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within XFA's template...

6.8CVSS2.8AI score0.0333EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2017/01/10 12:0 a.m.•44 views

Adobe Acrobat Pro DC ImageConversion TIFF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

6.8CVSS4.6AI score0.03216EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/11/15 12:0 a.m.•44 views

Apple OS X WindowServer _XSetPerUserConfigurationData Type Confusion Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on vulnerable installations of Apple OS X. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the CoreGraphics...

4.4CVSS5.4AI score0.00472EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/11/08 12:0 a.m.•44 views

Microsoft Windows win32k.sys Bitmap Null Pointer Dereference Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on vulnerable installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of...

7.2CVSS3.4AI score0.03019EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/08/18 12:0 a.m.•44 views

Apple Safari Array.slice Out-Of-Bounds Access Remote Code Execuction Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.5CVSS2.4AI score0.18843EPSS
Exploits4References1
Zero Day Initiative
Zero Day Initiative
•added 2016/08/09 12:0 a.m.•44 views

Microsoft Internet Explorer CAnchor Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability relates to how...

6.8CVSS3AI score0.17704EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/06/29 12:0 a.m.•44 views

Foxit Reader ConvertToPDF GIF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the ConvertToPDF...

6.8CVSS7AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/06/16 12:0 a.m.•44 views

Microsoft Internet Explorer PerformDoDragDrop Protected Mode Sandbox Escape Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the usage o...

6.9CVSS2.3AI score0.31828EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/05/10 12:0 a.m.•44 views

Adobe Acrobat Pro DC WillSave OCG Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handlin...

6.8CVSS3.1AI score0.0641EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/04/12 12:0 a.m.•44 views

Microsoft Internet Explorer CAttrValue Double-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.4AI score0.19795EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/04/08 12:0 a.m.•44 views

(Pwn2Own) Adobe Flash AS2 Transform matrix Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the Transform object...

6.8CVSS3.7AI score0.06102EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/02/09 12:0 a.m.•44 views

Microsoft Internet Explorer CAttrArray Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS3.7AI score0.2777EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2016/02/05 12:0 a.m.•44 views

Advantech WebAccess webvrpcs Service BwpAlarm.dll Primary RPC Hostname strcpy Stack-Based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable instances of Advantech WebAccess. Authentication is not required to exploit this vulnerability. The specific flaw exists within the implementation of the 0x11366 IOCTL in the BwpAlarm subsystem. A stack-based buffe...

9.3CVSS3.3AI score0.16655EPSS
Exploits9References1
Zero Day Initiative
Zero Day Initiative
•added 2015/10/20 12:0 a.m.•44 views

SAP 3D Visual Enterprise Viewer FBX Out-Of-Bounds Indexing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of SAP 3D Visual Enterprise Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

6.8CVSS6.4AI score0.04074EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2015/09/23 12:0 a.m.•44 views

Kaseya Virtual System Administrator Remote Privilege Escalation Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Kaseya Virtual System Administrator. Authentication is not required to exploit this vulnerability. The specific flaw exists within the forwarding service's handing of the setAccount.aspx page, whic...

7.5CVSS9.4AI score0.82102EPSS
Exploits13References1
Zero Day Initiative
Zero Day Initiative
•added 2015/05/12 12:0 a.m.•44 views

Microsoft Internet Explorer CElement::DelMarkupPtr Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The vulnerability relates to how...

6.8CVSS6.5AI score0.15631EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/04/22 12:0 a.m.•44 views

Novell ZENworks Preboot Policy Service Stack Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell ZENWorks. Authentication is not required to exploit this vulnerability. The specific flaw exists within ZENworks Preboot Policy Service, which listens on port 13331. The vulnerability is in...

10CVSS9.2AI score0.23643EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/02/20 12:0 a.m.•44 views

Dell ScriptLogic Asset Manager GetClientPackage SQL Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Dell ScriptLogic Asset Manager, also known as Quest Workspace Asset Manager. Authentication is not required to exploit this vulnerability. To exploit this security flaw, an attacker would make a...

7.5CVSS7.2AI score0.17558EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2015/01/07 12:0 a.m.•44 views

ManageEngine Desktop Central MSP StatusUpdateServlet fileName File Upload Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ManageEngine Desktop Central MSP. Authentication is not required to exploit this vulnerability. The specific flaw exists within the StatusUpdateServlet servlet. The issue lies in the failure to...

10CVSS9.4AI score0.77848EPSS
Exploits12References1
Zero Day Initiative
Zero Day Initiative
•added 2014/12/09 12:0 a.m.•44 views

Microsoft Internet Explorer CInputElement Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS6.3AI score0.13118EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2014/10/01 12:0 a.m.•44 views

Hewlett-Packard Network Node Manager ovopi.dll Option -T Stack Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard Network Node Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within ovopi.dll which listens by default on a UDP port 696. When parsin...

10CVSS7.2AI score0.65435EPSS
Exploits5References1
Zero Day Initiative
Zero Day Initiative
•added 2014/08/07 12:0 a.m.•44 views

(0Day) (Pwn2Own) Microsoft Internet Explorer PresentationHost.exe Protected Mode Bypass Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.2CVSS7.5AI score0.11697EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/10/11 12:0 a.m.•44 views

Microsoft Windows OpenType Font Parsing Persistent Denial-of-Service Vulnerability

This vulnerability allows remote attackers to causes a persistent Denial-of-Service on machines running vulnerable versions of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must open a vulnerable font. The specific flaw exists within the handling...

7.1CVSS2.8AI score0.50374EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/10/08 12:0 a.m.•44 views

Microsoft Windows TTF CMAP Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling o...

6.9CVSS3.5AI score0.43101EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2013/02/14 12:0 a.m.•44 views

Microsoft Internet Explorer CHTML Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Internet Explorer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

6.8CVSS2.3AI score0.30339EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2012/08/03 12:0 a.m.•44 views

Microsoft .NET Framework Undersized Glyph Buffer Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the .NET Framework. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within Microsoft .NE...

7.5CVSS4.9AI score0.21902EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2012/06/08 12:0 a.m.•44 views

Symantec Web Gateway Shell Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Web Gateway. Authentication is not required to exploit this vulnerability. The specific flaw exists due to insufficiently filtered user-supplied data used in a call to exec in multiple...

7.5CVSS5.3AI score0.72596EPSS
Exploits22References1
Zero Day Initiative
Zero Day Initiative
•added 2012/01/30 12:0 a.m.•44 views

IBM SPSS mraboutb.dll ActiveX Control SetLicenseInfoEx Method Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of IBM SPSS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within SetLicenseInfoEx method...

7.5CVSS6.1AI score0.03585EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2011/05/10 12:0 a.m.•44 views

Mozilla Firefox OBJECT mChannel Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists within the OnChannelRedirect method. When an...

9CVSS4.3AI score0.73655EPSS
Exploits10References1
Zero Day Initiative
Zero Day Initiative
•added 2011/03/02 12:0 a.m.•44 views

Mozilla Firefox JSON.stringify Dangling Pointer Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within js3250.dll. In the...

9CVSS4.3AI score0.072EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2010/10/27 12:0 a.m.•44 views

Symantec IM Manager Administrative Interface LoggedInUsers.lgx Definition File SQL Injection Vulnerabilities

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec IM Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the rdpageimlogic.aspx and rdPage.aspx pages which is exposed through an IIS...

10CVSS7.5AI score0.05822EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2010/09/13 12:0 a.m.•44 views

Mozilla Firefox nsTreeContentView Dangling Pointer Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the implementati...

9CVSS9.4AI score0.06527EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2010/04/02 12:0 a.m.•44 views

Apple QuickTime QDMC/QDM2 Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists in the...

10CVSS4.9AI score0.0284EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2010/03/15 12:0 a.m.•44 views

Apple WebKit innerHTML element Substitution Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple WebKit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the WebCore's...

10CVSS3.8AI score0.0504EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2008/05/27 12:0 a.m.•44 views

Motorola RAZR JPG Processing Stack Overflow Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable Motorola RAZR firmware based cell phones. User interaction is required to exploit this vulnerability in that the target must accept a malicious image sent via MMS. The specific flaw exists in the JPEG thumbprint...

9.3CVSS7.3AI score0.05837EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2006/12/19 12:0 a.m.•44 views

Mozilla Firefox SVG Processing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Mozilla Firefox. User interaction is required to exploit this vulnerability in that the target must visit a malicious page. The specific flaw exists in the browser's handling of SVG comment objects...

9.3CVSS3.7AI score0.08604EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2025/03/18 12:0 a.m.•43 views

Autodesk AutoCAD MODEL File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS6.8AI score0.00224EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2024/04/09 12:0 a.m.•43 views

Microsoft Windows Internet Shortcut SmartScreen Bypass Vulnerability

This vulnerability allows remote attackers to bypass the SmartScreen security feature to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The...

8.8CVSS7.3AI score0.45151EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2023/11/15 12:0 a.m.•43 views

GStreamer MXF File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the parsing of MXF vide...

8.8CVSS7.6AI score0.01744EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/10/05 12:0 a.m.•43 views

Microsoft PC Manager SAS Token Incorrect Permission Assignment Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on Microsoft PC Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the permissions granted to an SAS token. An attacker can leverage this vulnerability to launch a supply-chain...

10CVSS7.7AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2023/09/27 12:0 a.m.•43 views

(0Day) Exim NTLM Challenge Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Exim. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of NTLM challenge requests. The issue results from the lack of proper validati...

3.7CVSS6.1AI score0.28084EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2023/08/15 12:0 a.m.•43 views

Siemens Solid Edge Viewer DWG File Parsing Use-After-Free Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

3.3CVSS6AI score0.00221EPSS
Exploits0References1
Total number of security vulnerabilities5000