Lucene search
+L

16763 matches found

zdi
zdi
•added 2021/05/13 12:0 a.m.•51 views

Microsoft Excel XLS File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XLS...

7.8CVSS4.4AI score0.03073EPSS
Exploits0References1
zdi
zdi
•added 2021/05/13 12:0 a.m.•45 views

Microsoft Excel XLS File Parsing Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Excel. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XLS...

7.8CVSS4.4AI score0.03047EPSS
Exploits0References1
zdi
zdi
•added 2021/05/13 12:0 a.m.•115 views

Microsoft SharePoint WebPart Interpretation Conflict Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft SharePoint. Authentication is required to exploit this vulnerability. The specific flaw exists within the handling of server-side controls in WebParts. By specifying a control using a...

8.8CVSS3.1AI score0.30045EPSS
Exploits5References1
zdi
zdi
•added 2021/05/13 12:0 a.m.•128 views

(Pwn2Own) Canonical Ubuntu io_uring Integer Overflow Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Canonical Ubuntu. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of...

8.8CVSS8.7AI score0.00629EPSS
Exploits0References1
zdi
zdi
•added 2021/05/13 12:0 a.m.•56 views

Microsoft Windows WalletService Directory Junction Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within WalletService. By...

7.8CVSS5.9AI score0.01136EPSS
Exploits0References1
zdi
zdi
•added 2021/05/13 12:0 a.m.•47 views

Adobe Illustrator TTF Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Illustrator. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing o...

7.8CVSS4.1AI score0.03467EPSS
Exploits0References1
zdi
zdi
•added 2021/05/13 12:0 a.m.•33 views

Adobe After Effects TIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe After Effects. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS2.7AI score0.01669EPSS
Exploits0References1
zdi
zdi
•added 2021/05/13 12:0 a.m.•67 views

Microsoft Windows Groove Music FLAC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

6.6CVSS5.7AI score0.03663EPSS
Exploits0References1
zdi
zdi
•added 2021/05/13 12:0 a.m.•36 views

Adobe After Effects PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe After Effects. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing...

7.8CVSS4.1AI score0.02341EPSS
Exploits0References1
zdi
zdi
•added 2021/05/13 12:0 a.m.•54 views

Microsoft Windows win32kfull Palette Use-After-Free Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of...

8.8CVSS4.7AI score0.0101EPSS
Exploits0References1
zdi
zdi
•added 2021/05/13 12:0 a.m.•51 views

Microsoft Windows Groove Music FLAC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

6.6CVSS5.7AI score0.03663EPSS
Exploits0References1
zdi
zdi
•added 2021/05/13 12:0 a.m.•39 views

Siemens Tecnomatix Plant Simulation SPP File Parsing Memory Corruption Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS4.7AI score0.01355EPSS
Exploits0References2
zdi
zdi
•added 2021/05/13 12:0 a.m.•56 views

Adobe Illustrator DOCX File Parsing Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Illustrator. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the conversion o...

7.8CVSS5AI score0.0388EPSS
Exploits0References1
zdi
zdi
•added 2021/05/13 12:0 a.m.•45 views

Adobe InDesign PCX File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe InDesign. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PCX...

7.8CVSS4.6AI score0.05751EPSS
Exploits0References1
zdi
zdi
•added 2021/05/13 12:0 a.m.•39 views

Siemens Tecnomatix Plant Simulation SPP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS5.2AI score0.0145EPSS
Exploits0References2
zdi
zdi
•added 2021/05/13 12:0 a.m.•48 views

Adobe InCopy DOCX File Parsing Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe InCopy. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the conversion of DOC...

7.8CVSS5.2AI score0.05371EPSS
Exploits0References1
zdi
zdi
•added 2021/05/12 12:0 a.m.•39 views

(0Day) Siemens Solid Edge Viewer 3DXML File Parsing XML External Entity Processing Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

5.5CVSS2.5AI score0.01745EPSS
Exploits0
zdi
zdi
•added 2021/05/12 12:0 a.m.•43 views

(0Day) Siemens Solid Edge Viewer JT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5AI score0.02029EPSS
Exploits0
zdi
zdi
•added 2021/05/12 12:0 a.m.•45 views

(0Day) Siemens Solid Edge Viewer STP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5.3AI score0.02203EPSS
Exploits0
zdi
zdi
•added 2021/05/12 12:0 a.m.•44 views

(0Day) Siemens Solid Edge Viewer CATPart File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS4.2AI score0.01982EPSS
Exploits0
zdi
zdi
•added 2021/05/12 12:0 a.m.•47 views

(0Day) Siemens Solid Edge Viewer PRT File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Solid Edge Viewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS5.1AI score0.02029EPSS
Exploits0
zdi
zdi
•added 2021/05/11 12:0 a.m.•43 views

Schneider Electric C-Bus Toolkit Incorrect Permission Assignment Privilege Escalation Vulnerability

This vulnerability allows local attackers to execute arbitrary code on affected installations of Schneider Electric C-Bus Toolkit. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within...

7.8CVSS5AI score0.00765EPSS
Exploits0References1
zdi
zdi
•added 2021/05/11 12:0 a.m.•73 views

Cisco RV340 set_snmp usmUserEngineID Command Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Cisco RV340 routers. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of JSON-RPC requests. When parsing the usmUserEngineID property...

5.5CVSS4.5AI score0.01612EPSS
Exploits1References1
zdi
zdi
•added 2021/05/11 12:0 a.m.•71 views

Cisco RV340 set_snmp usmUserAuthKey Command Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Cisco RV340 routers. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of JSON-RPC requests. When parsing the usmUserAuthKey property,...

5.5CVSS4.3AI score0.01612EPSS
Exploits1References1
zdi
zdi
•added 2021/05/11 12:0 a.m.•66 views

Foxit Reader browseForDoc Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the browseForDoc...

7.8CVSS3.3AI score0.05589EPSS
Exploits1References1
zdi
zdi
•added 2021/05/11 12:0 a.m.•65 views

Cisco RV340 set_snmp usmUserPrivKey Command Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Cisco RV340 routers. Authentication is required to exploit this vulnerability. The specific flaw exists within the processing of JSON-RPC requests. When parsing the usmUserPrivKey property,...

5.5CVSS4.4AI score0.01863EPSS
Exploits2References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•30 views

Foxit Reader U3D File Parsing Double Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of U3D...

7.8CVSS3.7AI score0.02819EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•31 views

Foxit Reader XFA leadDigits Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of the...

7.8CVSS3.4AI score0.02511EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•38 views

Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling ...

3.3CVSS2AI score0.02023EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•45 views

Foxit Reader U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of U3D...

7.8CVSS4AI score0.02819EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•42 views

Foxit Reader U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of U3D...

7.8CVSS4AI score0.02819EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•37 views

Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling ...

3.3CVSS2AI score0.02023EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•29 views

Foxit Reader XFA Form Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of XFA...

7.8CVSS2.1AI score0.02778EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•39 views

Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling ...

3.3CVSS2AI score0.02018EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•33 views

Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling ...

3.3CVSS2AI score0.02682EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•33 views

Foxit Reader Annotation Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.8CVSS2.2AI score0.02784EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•41 views

Foxit Reader U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of U3D...

7.8CVSS3.9AI score0.02812EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•37 views

Foxit Reader XFA Form Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of XFA...

7.8CVSS1.9AI score0.02933EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•236 views

Foxit Reader app.media Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the the handling of...

7.8CVSS2.5AI score0.04287EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•33 views

Foxit Reader XFA Form Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of XFA...

7.8CVSS2.1AI score0.02761EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•35 views

Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling ...

3.3CVSS2AI score0.02018EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•37 views

Foxit Reader Annotation Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.8CVSS2.2AI score0.02778EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•37 views

Foxit Reader Annotation Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.8CVSS2.2AI score0.02784EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•37 views

Foxit Reader Annotation Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.8CVSS2.2AI score0.02778EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•30 views

Foxit Reader Annotation Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of...

7.8CVSS2.2AI score0.02755EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•30 views

Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling ...

3.3CVSS2AI score0.02023EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•40 views

Foxit Reader U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of U3D...

7.8CVSS3.9AI score0.02819EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•42 views

Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling ...

3.3CVSS2AI score0.02023EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•41 views

Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling ...

3.3CVSS2AI score0.02018EPSS
Exploits0References1
zdi
zdi
•added 2021/05/07 12:0 a.m.•34 views

Foxit Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling ...

3.3CVSS2AI score0.02018EPSS
Exploits0References1
Total number of security vulnerabilities16763