Lucene search
K
AshlarArgon

11 matches found

CVE
CVE
added 2024/05/03 2:14 a.m.55 views

CVE-2023-44438

CVE-2023-44438 concerns Ashlar-Vellum Argon, a CAD/3D modeling tool. The vulnerability stems from how Argon parses various file types, loading a library from an unsecured location, which enables remote code execution with the attacker’s code running in the context of the target process. Exploitat...

8.8CVSS8AI score0.00825EPSS
CVE
CVE
added 2023/10/26 7:29 p.m.43 views

CVE-2023-39427

CVE-2023-39427 affects Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share v12 SP0 Build (1204.77). The root cause is insufficient validation of user-supplied XE file data, causing an out-of-bounds write that could enable arbitrary code execution in the current process. Related sources ...

7.8CVSS7.8AI score0.00202EPSS
CVE
CVE
added 2025/08/18 9:7 p.m.40 views

CVE-2025-41392

CVE-2025-41392 affects Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share prior to 12.6.1204.204. The root cause is lack of validation of user-supplied data when parsing AR files, which can lead to an out-of-bounds read and allow arbitrary code execution in the current process. Public ...

8.4CVSS7.5AI score0.00153EPSS
CVE
CVE
added 2026/05/12 8:22 p.m.31 views

CVE-2025-65086

The CVE-2025-65086 entry describes an Out-of-Bounds Write vulnerability in Ashlar-Vellum products Cobalt, Xenon, Argon, Lithium, and Cobalt Share, affected in version 12.6.1204.216 and earlier. The issue arises during parsing of a specially crafted VC6 file, allowing an attacker to execute arbitr...

8.4CVSS6.2AI score0.00165EPSS
CVE
CVE
added 2026/05/12 8:25 p.m.30 views

CVE-2025-65087

CVE-2025-65087 is an Out-of-Bounds Read vulnerability in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share (versions 12.6.1204.216 and earlier). The flaw occurs while parsing VC6 files and could allow an attacker to disclose information or execute arbitrary code. Affected components a...

8.4CVSS6AI score0.00165EPSS
CVE
CVE
added 2026/05/12 8:27 p.m.26 views

CVE-2025-65088

CVE-2025-65088 affects Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share up to version 12.6.1204.216 and earlier. An Out-of-Bounds Read during parsing of a specially crafted VC6 file could disclose information or allow arbitrary code execution. Affected components are the VC6 parser w...

8.4CVSS6AI score0.00165EPSS
CVE
CVE
added 2025/08/18 9:9 p.m.21 views

CVE-2025-52584

CVE-2025-52584 affects Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share prior to version 12.6.1204.204. The issue is a lack of input validation while parsing XE files, which can cause a heap-based buffer overflow and allow arbitrary code execution in the affected process. Public sour...

8.4CVSS7.2AI score0.00156EPSS
CVE
CVE
added 2025/08/18 9:5 p.m.21 views

CVE-2025-53705

Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share versions prior to 12.6.1204.204 contain a parsing flaw in CO files that can cause an out-of-bounds write, potentially allowing an attacker to execute arbitrary code in the current process. Multiple sources (NVD, Red Hat, CVE listing, P...

8.4CVSS7.5AI score0.00158EPSS
CVE
CVE
added 2025/08/18 9:11 p.m.19 views

CVE-2025-46269

In Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share, versions before 12.6.1204.204 are affected. The issue is a heap-based buffer overflow caused by insufficient validation of user-supplied data when parsing VC6 files, leading to potential arbitrary code execution in the current proc...

8.4CVSS7.2AI score0.00156EPSS
CVE
CVE
added 2025/11/25 5:49 p.m.19 views

CVE-2025-65085

CVE-2025-65085 is a heap-based buffer overflow vulnerability reported in Ashlar-Vellum products: Cobalt, Xenon, Argon, Lithium, and Cobalt Share up to version 12.6.1204.207 (and earlier). The issue could allow an attacker to disclose information or execute arbitrary code. Public documents identif...

9.8CVSS6AI score0.00388EPSS
CVE
CVE
added 2025/11/25 5:48 p.m.18 views

CVE-2025-65084

CVE-2025-65084 describes an Out-of-Bounds Write in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share (versions 12.6.1204.207 and prior). The root cause is an out-of-bounds write that could disclose information or allow execution of arbitrary code. Affected products are Ashlar-Vellum C...

9.8CVSS6AI score0.00299EPSS