10 matches found
CVE-2023-50196
Technical details (affected product/version, exploit specifics, and remediation) are not public in the provided documents. Monitor for updates from official advisories for CVE-2023-50196.
CVE-2023-50188
CVE-2023-50188 affects Trimble SketchUp Viewer. The issue is in SKP file parsing due to uninitialized memory access, enabling remote code execution when a user opens a malicious SKP/file or visits a crafted page. Exploitation requires user interaction; the attacker would run code in the target’s ...
CVE-2023-50195
CVE-2023-50195 concerns Trimble SketchUp Viewer, where the SKP file parsing is vulnerable to an out-of-bounds read that can enable remote code execution. The issue stems from improper validation of user-supplied data, potentially reading past the end of an allocated buffer. Exploitation requires ...
CVE-2023-50194
This CVE (CVE-2023-50194) affects Trimble SketchUp Viewer. The vulnerability stems from parsing SKP files, where insufficient validation can cause a read past the end of an allocated object in the parser, enabling remote code execution. It requires user interaction (the target must open a malicio...
CVE-2023-50189
CVE-2023-50189 concerns Trimble SketchUp Viewer. The vulnerability arises in SKP file parsing where the code fails to validate the existence of an object before operating on it, resulting in a use-after-free that can lead to remote code execution. Exploitation requires user interaction (target us...
CVE-2023-50187
CVE-2023-50187 : Trimble SketchUp Viewer is affected by a memory corruption vulnerability in the SKP file parser. The flaw arises from insufficient validation of user-supplied SKP data, enabling remote code execution in the context of the target process. Exploitation requires user interaction (ta...
CVE-2023-50190
CVE-2023-50190 affects Trimble SketchUp Viewer with an out-of-bounds write in SKP file parsing that can lead to remote code execution. The root cause is insufficient validation of user-supplied SKP data, allowing a write past the end of an allocated buffer. Exploitation requires user interaction ...
CVE-2023-50191
CVE-2023-50191 affects Trimble SketchUp Viewer via a vulnerability in SKP file parsing, described as a use-after-free that allows remote code execution. The flaw arises from not validating the existence of an object before performing operations, enabling an attacker to run code in the target proc...
CVE-2023-50192
CVE-2023-50192 affects Trimble SketchUp Viewer. The vulnerability is a Use-After-Free in SKP file parsing that allows remote code execution. It requires user interaction (target must visit a malicious page or open a malicious file). The issue arises from not validating object existence before ope...
CVE-2023-50193
The CVE-2023-50193 entry concerns Trimble SketchUp Viewer: SKP file parsing leads to a use-after-free that enables remote code execution. The flaw arises from not validating the existence of an object before operating on it, allowing an attacker to run code in the process context. Exploitation re...