Lucene search
K

16763 matches found

Zero Day Initiative
Zero Day Initiative
•added 2026/03/16 12:0 a.m.•9 views

(Pwn2Own) Linux Kernel nf_tables_newset Out-Of-Bounds Write Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Linux Kernel. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling...

3.8CVSS5.3AI score0.01013EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/16 12:0 a.m.•7 views

(Pwn2Own) QNAP TS-453E conn_log_tool Format String Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of QNAP TS-453E devices. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handling ...

5.5CVSS5.6AI score0.0082EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/16 12:0 a.m.•7 views

(Pwn2Own) VMware ESXi VMXNET3 Integer Overflow Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of VMware ESXi. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the implementatio...

8.2CVSS7.6AI score0.02173EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/16 12:0 a.m.•8 views

(Pwn2Own) QNAP TS-453E malware_remover Code Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of QNAP TS-453E devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the malwareremover.cgi endpoint. The issue results from the lack of prope...

8.8CVSS6.2AI score0.01437EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/16 12:0 a.m.•5 views

KeePassXC OpenSSL Configuration Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of KeePassXC. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the configuration of...

7.3CVSS6.2AI score0.00226EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/16 12:0 a.m.•5 views

(Pwn2Own) Canon imageCLASS MF654Cdw XML SOAP Request Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Canon imageCLASS MF654Cdw printers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing of SOAP requests. The issue results from the la...

8.8CVSS6.2AI score0.0083EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/16 12:0 a.m.•13 views

(Pwn2Own) Linux Kernel nf_tables Use-After-Free Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Linux Kernel. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of...

8.8CVSS6.2AI score0.02881EPSS
Exploits6References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/16 12:0 a.m.•5 views

(Pwn2Own) Canon imageCLASS MF654Cdw XPS Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Canon imageCLASS MF654Cdw printers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing of XPS files. The issue results from the lack o...

8.8CVSS6.3AI score0.0083EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/16 12:0 a.m.•8 views

(Pwn2Own) Synology DiskStation Manager Netatalk Library Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Synology DiskStation Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within the afpgetappl function. The issue results from the lack of proper validati...

9.8CVSS6.2AI score0.00586EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/16 12:0 a.m.•3 views

Microsoft Exchange InterceptorSmtpAgent Improper Input Validation Security Feature Bypass Vulnerability

This vulnerability allows remote attackers to bypass a security feature on affected installations of Microsoft Exchange. Authentication is not required to exploit this vulnerability. The specific flaw exists within the InterceptorSmtpAgent class. The issue results from the improper parsing of SMT...

5.3CVSS5.9AI score0.09457EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/16 12:0 a.m.•7 views

(Pwn2Own) Samsung Galaxy S25 Samsung Members Open Redirect Security Bypass Vulnerability

This vulnerability allows remote attackers to bypass security on affected installations of Samsung Galaxy S25. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Samsung Members application. An attacker can force a redirection to a site that serves...

5CVSS5.4AI score0.00397EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/16 12:0 a.m.•4 views

GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of HDR files. The...

7.8CVSS6.2AI score0.00615EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/16 12:0 a.m.•6 views

(Pwn2Own) QNAP TS-453E nvrlog_event_add msg SQL Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of QNAP TS-453E devices. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handling ...

8CVSS6.2AI score0.00919EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/16 12:0 a.m.•7 views

(Pwn2Own) ChargePoint Home Flex revssh Service Command Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of ChargePoint Home Flex devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of OCPP messages. The issue results from the lack o...

7.5CVSS6.2AI score0.00855EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2026/03/16 12:0 a.m.•5 views

GIMP LBM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of LBM files. The...

7.8CVSS6.2AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/16 12:0 a.m.•13 views

(Pwn2Own) Samsung Galaxy S25 Samsung Members Security Feature Bypass Vulnerability

This vulnerability allows remote attackers to bypass a security feature on affected installations of Samsung Galaxy S25. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Samsung Members application. The issue results from the exposure of a resource...

5.4CVSS5.9AI score0.00397EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/16 12:0 a.m.•25 views

(Pwn2Own) ChargePoint Home Flex OCPP getpreq Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of ChargePoint Home Flex EV chargers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of OCPP messages. The issue results from the la...

7.5CVSS6.3AI score0.00425EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2026/03/16 12:0 a.m.•6 views

(Pwn2Own) Canon imageCLASS MF654Cdw TTF Parsing Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Canon imageCLASS MF654Cdw printers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing of TrueType fonts. The issue results from the...

8.8CVSS6.2AI score0.00899EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/16 12:0 a.m.•4 views

(Pwn2Own) Canon imageCLASS MF654Cdw PJCC Request Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Canon imageCLASS MF654Cdw printers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the CADM service, which listens on TCP port 9013 by default...

8.8CVSS6.2AI score0.0083EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/10 12:0 a.m.•6 views

Apple macOS ImageIO SGI File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the ImageIO framework is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the...

3.3CVSS5.2AI score0.00237EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/10 12:0 a.m.•6 views

Microsoft Windows win32kfull Improper Locking Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the win32kfull...

8.8CVSS6.2AI score0.0364EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/10 12:0 a.m.•5 views

Microsoft Windows win32full Improper Release Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the win32kfull...

7.8CVSS6.2AI score0.00462EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/10 12:0 a.m.•6 views

Microsoft Windows win32full Improper Release Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the win32kfull...

7.8CVSS6.2AI score0.00462EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/10 12:0 a.m.•6 views

Fortinet FortiClient Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Fortinet FortiClient. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of...

7.8CVSS6.2AI score0.00228EPSS
Exploits1References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/10 12:0 a.m.•6 views

Microsoft Windows cdd Improper Locking Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the cdd.dll driver...

8.8CVSS6.2AI score0.0364EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/10 12:0 a.m.•3 views

Microsoft Windows GDI Bitmap Parsing Out-Of-Bound Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Microsoft Windows. Interaction with the GDI library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the...

3.3CVSS5.2AI score0.01386EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/10 12:0 a.m.•4 views

Microsoft Windows win32full Improper Release Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the win32kfull...

7.8CVSS6.2AI score0.00462EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/10 12:0 a.m.•5 views

Microsoft Windows NDIS Driver Use-After-Free Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the ndis.sys drive...

7.8CVSS6.2AI score0.04491EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/10 12:0 a.m.•4 views

Array Networks MotionPro ArrayInstallManager Incorrect Permission Assignment Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Array Networks MotionPro. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

7.8CVSS6.2AI score
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/10 12:0 a.m.•5 views

Apple macOS ImageIO SGI File Parsing Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. Interaction with the ImageIO library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the ImageIO...

7.8CVSS6.2AI score0.00249EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/10 12:0 a.m.•5 views

Apple macOS Audio APAC Frame Decoding Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the decoding of audio...

7.8CVSS6.2AI score0.00254EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/10 12:0 a.m.•3 views

Apple macOS libusd_ms Alembic File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. User interaction is required to exploit this vulnerability in that the target must receive a malicious file that is written to the local filesystem. The specific flaw exists within the...

7.8CVSS6.2AI score0.0054EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/10 12:0 a.m.•6 views

Microsoft Windows cdd Improper Locking Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the cdd.dll driver...

8.8CVSS6.2AI score0.0364EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/09 12:0 a.m.•5 views

Unraid Update Request Path Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Unraid. Authentication is required to exploit this vulnerability. The specific flaw exists within the update.php file. The issue results from the lack of proper validation of a user-supplied path pri...

8.8CVSS6.2AI score0.00757EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2026/03/09 12:0 a.m.•3 views

Unraid Authentication Request Path Traversal Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on affected installations of Unraid. Authentication is not required to exploit this vulnerability. The specific flaw exists within the auth-request.php file. The issue results from the lack of proper validation of a user-supplied...

7.3CVSS5.8AI score0.00651EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2026/03/06 12:0 a.m.•4 views

(Pwn2Own) Philips Hue Bridge hap_pair_verify_handler Sub-TLV Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Philips Hue Bridge. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

8CVSS6.1AI score0.00495EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/06 12:0 a.m.•6 views

(Pwn2Own) Philips Hue Bridge hk_hap characteristics Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Philips Hue Bridge. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handling of...

8CVSS6.1AI score0.00495EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/06 12:0 a.m.•6 views

(Pwn2Own) Philips Hue Bridge HomeKit Accessory Protocol Transient Pairing Mode Authentication Bypass Vulnerability

This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of Philips Hue Bridge. Authentication is not required to exploit this vulnerability. The specific flaw exists within the configuration of the HomeKit Accessory Protocol service, which listens o...

8.1CVSS5.8AI score0.004EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/06 12:0 a.m.•6 views

(Pwn2Own) Philips Hue Bridge Zigbee Stack Custom Command Handler Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Philips Hue Bridge. User interaction is required to exploit this vulnerability in that the user must initiate the device pairing process. The specific flaw exists within the handling of...

8CVSS6.2AI score0.00355EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/06 12:0 a.m.•5 views

GStreamer H.266 Codec Parser Integer Underflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the parsing of picture...

7.8CVSS6.2AI score0.00421EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/06 12:0 a.m.•4 views

GStreamer H.266 Codec Parser Stack-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the parsing of decoding...

7.8CVSS6.3AI score0.00425EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/06 12:0 a.m.•3 views

GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the handling of...

7.8CVSS6.2AI score0.00729EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/06 12:0 a.m.•8 views

GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the processing of video...

7.8CVSS6.2AI score0.00431EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/06 12:0 a.m.•5 views

GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the handling of palette...

7.8CVSS6.2AI score0.00867EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/06 12:0 a.m.•5 views

GStreamer JPEG Parser Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the processing of Huffm...

7.8CVSS6.2AI score0.00787EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/06 12:0 a.m.•3 views

GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the processing of strea...

7.8CVSS6.2AI score0.00773EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/06 12:0 a.m.•2 views

GStreamer rtpqdm2depay Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the processing of X-QDM...

8.8CVSS6.2AI score0.00806EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/06 12:0 a.m.•4 views

GStreamer rtpqdm2depay Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the processing of X-QDM...

8.8CVSS6.2AI score0.00828EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/06 12:0 a.m.•6 views

(Pwn2Own) Philips Hue Bridge HomeKit Pair-Setup Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Philips Hue Bridge. Authentication is not required to exploit this vulnerability. The specific flaw exists within the hkhappairstorageput function. The issue results from the lack of proper...

8.8CVSS6.2AI score0.00514EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2026/03/06 12:0 a.m.•3 views

Delta Electronics CNCSoft-G2 DPAX File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics CNCSoft-G2. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.2AI score0.00351EPSS
Exploits0References1
Total number of security vulnerabilities16763