Lucene search
K

16763 matches found

Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•29 views

(0Day) NIKON NIS-Elements Viewer PSD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of NIKON NIS-Elements Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5.7AI score0.01082EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•20 views

Trend Micro Apex One Origin Validation Error Denial-of-Service Vulnerability

This vulnerability allows local attackers to create a denial-of-service condition on affected installations of Trend Micro Apex One Security Agent. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific fl...

5.5CVSS3.6AI score0.00431EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•29 views

(0Day) Ansys SpaceClaim X_B File Parsing Uninitialized Pointer Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XB...

7.8CVSS6.3AI score0.00551EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•31 views

(0Day) Ansys SpaceClaim X_B File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XB...

7.8CVSS5.1AI score0.00783EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•25 views

(0Day) Ansys SpaceClaim X_B File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XB...

7.8CVSS5.2AI score0.00723EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•26 views

D-Link DIR-2150 xupnpd ui_upload Command Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary commands on affected installations of D-Link DIR-2150 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the xupnpd service, which listens on TCP port 4044 by default. The...

8.8CVSS5AI score0.01091EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•29 views

(0Day) Ansys SpaceClaim X_B File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XB...

7.8CVSS4.8AI score0.00551EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•31 views

D-Link DIR-2150 anweb websocket_data_handler Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected D-Link DIR-2150 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the anweb service, which listens on TCP ports 80 and 443 by default. The issue results...

8.8CVSS5.2AI score0.00623EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•23 views

(0Day) NIKON NIS-Elements Viewer TIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of NIKON NIS-Elements Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5.1AI score0.00721EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•26 views

(0Day) Ansys SpaceClaim X_B File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XB...

7.8CVSS5.2AI score0.00519EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•29 views

(0Day) Ansys SpaceClaim JT File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of JT...

7CVSS4.8AI score0.00486EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•28 views

(0Day) Ansys SpaceClaim X_B File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XB...

7.8CVSS5.2AI score0.00519EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•29 views

(0Day) Ansys SpaceClaim X_B File Parsing Uninitialized Pointer Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XB...

7.8CVSS6.3AI score0.00551EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•25 views

(0Day) NIKON NIS-Elements Viewer ND2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of NIKON NIS-Elements Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5.9AI score0.00981EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•20 views

(0Day) Ansys SpaceClaim X_B File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XB...

7.8CVSS5.4AI score0.00519EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•38 views

(0Day) NIKON NIS-Elements Viewer TIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of NIKON NIS-Elements Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5.1AI score0.01147EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•30 views

(0Day) Ansys SpaceClaim SKP File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SK...

7.8CVSS4.8AI score0.00551EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•36 views

D-Link DIR-2150 anweb action_handler Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected D-Link DIR-2150 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the anweb service, which listens on TCP ports 80 and 443 by default. The issue results...

8.8CVSS5.2AI score0.00623EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•23 views

(0Day) Ansys SpaceClaim X_B File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XB...

7.8CVSS5.2AI score0.00551EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•42 views

(0Day) NIKON NIS-Elements Viewer TIF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of NIKON NIS-Elements Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5.4AI score0.00626EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•34 views

Trend Micro Apex One Security Agent Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within...

7.8CVSS6AI score0.0034EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•24 views

Adobe InDesign SVG File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe InDesign. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SVG...

7.8CVSS5.6AI score0.00475EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•26 views

Adobe InDesign SVG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe InDesign. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SVG...

7.8CVSS5.1AI score0.00392EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•28 views

Trend Micro Apex One Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Local Web...

7.3CVSS5.9AI score0.00444EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•31 views

(0Day) NIKON NIS-Elements Viewer TIF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of NIKON NIS-Elements Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5.4AI score0.00909EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•24 views

Adobe InDesign SVG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe InDesign. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SVG...

7.8CVSS5.1AI score0.00392EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•32 views

D-Link DIR-2150 xupnpd Dreambox Plugin Command Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary commands on affected installations of D-Link DIR-2150 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Dreambox plugin for the xupnpd service, which listens on TCP...

8.8CVSS4.8AI score0.00968EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•32 views

(0Day) NIKON NIS-Elements Viewer BMP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of NIKON NIS-Elements Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5.8AI score0.00831EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•26 views

(0Day) Ansys SpaceClaim X_B File Parsing Uninitialized Pointer Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XB...

7.8CVSS6.3AI score0.00551EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•24 views

Adobe InDesign SVG File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe InDesign. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of SVG...

7.8CVSS5.6AI score0.00475EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/09/14 12:0 a.m.•33 views

(0Day) Ansys SpaceClaim X_T File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ansys SpaceClaim. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XT...

7.8CVSS5.2AI score0.00519EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/08 12:0 a.m.•39 views

(Pwn2Own) Tesla ice_updater Time-Of-Check Time-Of-Use Code Execution Vulnerability

This vulnerability allows physical attackers to execute arbitrary code on affected Tesla vehicles. Authentication is not required to exploit this vulnerability. The specific flaw exists within the iceupdater update mechanism. The issue results from the lack of proper validation of user-supplied...

7.6CVSS3.5AI score0.00439EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2022/09/08 12:0 a.m.•84 views

(Pwn2Own) ConnMan received_data Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installation of ConnMan. Authentication is not required to exploit this vulnerability. The specific flaw exists within the receiveddata method. Crafted data in a HTTP response can trigger a write past the e...

6.3CVSS1.4AI score0.02392EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/09/08 12:0 a.m.•38 views

(Pwn2Own) ConnMan wispr_portal_web_result wp_object Double Free Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of ConnMan. Authentication is not required to exploit this vulnerability. The specific flaw exists within the wisprportalwebresult method. The issue results from the lack of validating the...

6.3CVSS2.2AI score0.0152EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
•added 2022/09/06 12:0 a.m.•39 views

Microsoft Windows Active Directory Certificate Services Improper Authorization Privilege Escalation Vulnerability

This vulnerability allows network-adjacent attackers to escalate privileges on affected installations of Microsoft Windows Active Directory Certificate Services. Authentication is required to exploit this vulnerability. The specific flaw exists within the issuance of certificates. By including...

8.4CVSS4.7AI score0.01622EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/09/05 12:0 a.m.•28 views

ManageEngine OpManager Plus getDNSResolveOption Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of ManageEngine OpManager Plus. Authentication is required to exploit this vulnerability. The specific flaw exists within the getDNSResolveOption function. The issue results from the lack of proper...

7.2CVSS3.2AI score0.78326EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/09/01 12:0 a.m.•32 views

ManageEngine NetFlow Analyzer getDNSResolveOption Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of ManageEngine NetFlow Analyzer. Authentication is required to exploit this vulnerability. The specific flaw exists within the getDNSResolveOption function. The issue results from the lack of proper...

7.2CVSS4.2AI score0.78326EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/09/01 12:0 a.m.•46 views

ManageEngine NetFlow Analyzer getNmapInitialOption Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of ManageEngine NetFlow Analyzer. Authentication is required to exploit this vulnerability. The specific flaw exists within the getNmapInitialOption function. The issue results from the lack of proper...

7.2CVSS4.8AI score0.77618EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/09/01 12:0 a.m.•51 views

ManageEngine OpManager Plus getNmapInitialOption Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of ManageEngine OpManager Plus. Authentication is required to exploit this vulnerability. The specific flaw exists within the getNmapInitialOption function. The issue results from the lack of proper...

7.2CVSS4.1AI score0.77618EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/09/01 12:0 a.m.•19 views

ManageEngine OpManager getNmapInitialOption Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of ManageEngine OpManager. Authentication is required to exploit this vulnerability. The specific flaw exists within the getNmapInitialOption function. The issue results from the lack of proper validati...

7.2CVSS4AI score0.77618EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/09/01 12:0 a.m.•17 views

ManageEngine OpManager getDNSResolveOption Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of ManageEngine OpManager. Authentication is required to exploit this vulnerability. The specific flaw exists within the getDNSResolveOption function. The issue results from the lack of proper validatio...

7.2CVSS2.9AI score0.78326EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/08/31 12:0 a.m.•21 views

Trend Micro Maximum Security Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Trend Micro Maximum Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists...

4.4CVSS3.3AI score0.00248EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/08/31 12:0 a.m.•23 views

Trend Micro Maximum Security Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Trend Micro Maximum Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists...

4.4CVSS3.3AI score0.00248EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/08/31 12:0 a.m.•29 views

Trend Micro Maximum Security Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Maximum Security. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Tre...

7.8CVSS5.8AI score0.00275EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/08/31 12:0 a.m.•29 views

Trend Micro HouseCall Incorrect Permission Assignment Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro HouseCall. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the product...

7.3CVSS3.9AI score0.00211EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/08/25 12:0 a.m.•25 views

Fatek Automation FvDesigner FPJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fatek Automation FvDesigner. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS4.4AI score0.00291EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/08/25 12:0 a.m.•19 views

Fatek Automation FvDesigner FPJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fatek Automation FvDesigner. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS4.4AI score0.00291EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/08/25 12:0 a.m.•21 views

Fatek Automation FvDesigner FPJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fatek Automation FvDesigner. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS4.4AI score0.00291EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/08/25 12:0 a.m.•20 views

Fatek Automation FvDesigner FPJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fatek Automation FvDesigner. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS4.4AI score0.00291EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/08/25 12:0 a.m.•18 views

Fatek Automation FvDesigner FPJ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Fatek Automation FvDesigner. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS4.4AI score0.00291EPSS
Exploits0References1
Total number of security vulnerabilities16763