ZDI-24-415 |
ZDI-CAN-23775 |
Oracle |
CVE-2024-21113 |
6.0 |
2024-04-26 |
|
(Pwn2Own) Oracle VirtualBox E1000 Uninitialized Memory Information Disclosure Vulnerability |
ZDI-24-414 |
ZDI-CAN-23787 |
Oracle |
CVE-2024-21112 |
6.0 |
2024-04-26 |
|
(Pwn2Own) Oracle VirtualBox AHCI Controller Uninitialized Memory Information Disclosure Vulnerability |
ZDI-24-413 |
ZDI-CAN-23796 |
Oracle |
CVE-2024-21115 |
8.2 |
2024-04-26 |
|
(Pwn2Own) Oracle VirtualBox DevVGA Out-Of-Bounds Write Local Privilege Escalation Vulnerability |
ZDI-24-412 |
ZDI-CAN-23797 |
Oracle |
CVE-2024-21114 |
8.2 |
2024-04-26 |
|
(Pwn2Own) Oracle VirtualBox VirtIOCore Buffer Overflow Local Privilege Escalation Vulnerability |
ZDI-24-411 |
ZDI-CAN-23798 |
Oracle |
CVE-2024-21121 |
6.0 |
2024-04-26 |
|
(Pwn2Own) Oracle VirtualBox BusLogic Uninitialized Memory Information Disclosure Vulnerability |
ZDI-24-410 |
ZDI-CAN-23403 |
Oracle |
CVE-2024-21116 |
7.8 |
2024-04-26 |
|
Oracle VirtualBox vboxdrv Improper Privilege Management Local Privilege Escalation Vulnerability |
ZDI-24-409 |
ZDI-CAN-23388 |
Oracle |
CVE-2024-21110 |
7.3 |
2024-04-26 |
|
Oracle VirtualBox Guest Additions Improper Access Control Local Privilege Escalation Vulnerability |
ZDI-24-408 |
ZDI-CAN-23076 |
Oracle |
CVE-2024-21109 |
5.9 |
2024-04-26 |
|
Oracle VirtualBox Web Service Exposure of Resource to Wrong Sphere Information Disclosure Vulnerability |
ZDI-24-407 |
ZDI-CAN-22880 |
X.Org |
CVE-2024-31083 |
7.8 |
2024-04-26 |
|
X.Org Server ProcRenderAddGlyphs Use-After-Free Local Privilege Escalation Vulnerability |
ZDI-24-406 |
ZDI-CAN-22173 |
Adobe |
CVE-2023-48633 |
7.8 |
2024-04-26 |
|
Adobe After Effects AEP File Parsing Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-405 |
ZDI-CAN-22549 |
Lexmark |
CVE-2023-50739 |
8.8 |
2024-04-26 |
|
Lexmark CX331adwe IPP Server Authorization HTTP Header Heap-Based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-404 |
ZDI-CAN-22327 |
Apple |
CVE-2024-23264 |
3.3 |
2024-04-25 |
|
Apple macOS Metal Framework PVR File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-403 |
ZDI-CAN-23903 |
Progress Software |
CVE-2024-1800 |
8.8 |
2024-04-25 |
|
Progress Software Telerik Report Server ObjectReader Deserialization of Untrusted Data Remote Code Execution Vulnerability |
ZDI-24-402 |
ZDI-CAN-23902 |
Progress Software |
CVE-2024-1856 |
7.2 |
2024-04-25 |
|
Progress Software Telerik Reporting ObjectReader Deserialization of Untrusted Data Remote Code Execution Vulnerability |
ZDI-24-401 |
ZDI-CAN-23001 |
Progress Software |
CVE-2024-1801 |
7.8 |
2024-04-25 |
|
Progress Software Telerik Reporting ObjectReader Deserialization of Untrusted Data Remote Code Execution Vulnerability |
ZDI-24-400 |
ZDI-CAN-23558 |
Microsoft |
|
9.8 |
2024-04-25 |
|
Microsoft uAMQP for Python azure-iot-sdks-ci Uncontrolled Search Path Element Remote Code Execution Vulnerability |
ZDI-24-399 |
ZDI-CAN-22547 |
Microsoft |
CVE-2024-29991 |
7.5 |
2024-04-25 |
|
Microsoft Windows MHT File Mark-Of-The-Web Bypass Remote Code Execution Vulnerability |
ZDI-24-398 |
ZDI-CAN-22560 |
Wazuh |
CVE-2023-50260 |
8.8 |
2024-04-25 |
2024-04-25 |
Wazuh Active Response Module Improper Input Validation Remote Code Execution Vulnerability |
ZDI-24-397 |
ZDI-CAN-22475 |
Wazuh |
CVE-2024-32038 |
9.8 |
2024-04-25 |
|
Wazuh Analysis Engine Event Decoder Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-396 |
ZDI-CAN-23024 |
Microsoft |
|
9.8 |
2024-04-23 |
|
Microsoft Azure ODSP nikisos Uncontrolled Search Path Element Remote Code Execution Vulnerability |
ZDI-24-395 |
ZDI-CAN-22810 |
Ivanti |
CVE-2024-27984 |
7.1 |
2024-04-23 |
|
Ivanti Avalanche WLInfoRailService DELKEY Directory Traversal Arbitrary File Deletion Vulnerability |
ZDI-24-394 |
ZDI-CAN-22990 |
Ivanti |
CVE-2024-27978 |
6.5 |
2024-04-23 |
|
Ivanti Avalanche WLAvalancheService Null Pointer Dereference Denial-of-Service Vulnerability |
ZDI-24-393 |
ZDI-CAN-22989 |
Ivanti |
CVE-2024-27977 |
7.1 |
2024-04-23 |
|
Ivanti Avalanche WLAvalancheService Directory Traversal Arbitrary File Deletion Vulnerability |
ZDI-24-392 |
ZDI-CAN-22988 |
Ivanti |
CVE-2024-27976 |
8.8 |
2024-04-23 |
|
Ivanti Avalanche WLAvalancheService Directory Traversal Remote Code Execution Vulnerability |
ZDI-24-391 |
ZDI-CAN-22987 |
Ivanti |
CVE-2024-27975 |
8.8 |
2024-04-23 |
|
Ivanti Avalanche WLAvalancheService Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-390 |
ZDI-CAN-22986 |
Ivanti |
CVE-2024-25000 |
8.8 |
2024-04-23 |
|
Ivanti Avalanche WLAvalancheService Directory Traversal Remote Code Execution Vulnerability |
ZDI-24-389 |
ZDI-CAN-22985 |
Ivanti |
CVE-2024-24999 |
8.8 |
2024-04-23 |
|
Ivanti Avalanche WLAvalancheService Directory Traversal Remote Code Execution Vulnerability |
ZDI-24-388 |
ZDI-CAN-22984 |
Ivanti |
CVE-2024-24998 |
8.8 |
2024-04-23 |
|
Ivanti Avalanche WLAvalancheService Directory Traversal Remote Code Execution Vulnerability |
ZDI-24-387 |
ZDI-CAN-22950 |
Ivanti |
CVE-2024-24997 |
8.8 |
2024-04-23 |
|
Ivanti Avalanche WLAvalancheService Directory Traversal Remote Code Execution Vulnerability |
ZDI-24-386 |
ZDI-CAN-22940 |
Ivanti |
CVE-2024-24996 |
9.8 |
2024-04-23 |
|
Ivanti Avalanche WLInfoRailService Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-385 |
ZDI-CAN-22885 |
Ivanti |
CVE-2024-24995 |
8.8 |
2024-04-23 |
|
Ivanti Avalanche doInTransaction Time-Of-Check Time-Of-Use Remote Code Execution Vulnerability |
ZDI-24-384 |
ZDI-CAN-22866 |
Ivanti |
CVE-2024-24994 |
8.8 |
2024-04-23 |
|
Ivanti Avalanche extractZipEntry Directory Traversal Remote Code Execution Vulnerability |
ZDI-24-383 |
ZDI-CAN-22865 |
Ivanti |
CVE-2024-24993 |
8.8 |
2024-04-23 |
|
Ivanti Avalanche InstallPackageThread Time-Of-Check Time-Of-Use Remote Code Execution Vulnerability |
ZDI-24-382 |
ZDI-CAN-22854 |
Ivanti |
CVE-2024-24992 |
8.8 |
2024-04-23 |
|
Ivanti Avalanche getAdhocFilePath Directory Traversal Remote Code Execution Vulnerability |
ZDI-24-381 |
ZDI-CAN-22839 |
Ivanti |
CVE-2024-24991 |
6.5 |
2024-04-23 |
|
Ivanti Avalanche WLAvalancheService Null Pointer Dereference Denial-of-Service Vulnerability |
ZDI-24-380 |
ZDI-CAN-22836 |
Ivanti |
CVE-2024-23535 |
8.8 |
2024-04-23 |
|
Ivanti Avalanche copyFile Directory Traversal Remote Code Execution Vulnerability |
ZDI-24-379 |
ZDI-CAN-22835 |
Ivanti |
CVE-2024-23534 |
8.8 |
2024-04-23 |
|
Ivanti Avalanche getMasterAdhocCollectionsPath Unrestricted File Upload Remote Code Execution Vulnerability |
ZDI-24-378 |
ZDI-CAN-22827 |
Ivanti |
CVE-2024-23532 |
7.5 |
2024-04-23 |
|
Ivanti Avalanche WLAvalancheService Out-Of-Bounds Read Remote Code Execution Vulnerability |
ZDI-24-377 |
ZDI-CAN-22826 |
Ivanti |
CVE-2024-23533 |
4.3 |
2024-04-23 |
|
Ivanti Avalanche WLAvalancheService Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-376 |
ZDI-CAN-22756 |
Ivanti |
CVE-2024-23531 |
7.5 |
2024-04-23 |
|
Ivanti Avalanche WLInfoRailService Integer Overflow Information Disclosure Vulnerability |
ZDI-24-375 |
ZDI-CAN-22703 |
Ivanti |
CVE-2024-23530 |
5.3 |
2024-04-23 |
|
Ivanti Avalanche WLAvalancheService Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-374 |
ZDI-CAN-22702 |
Ivanti |
CVE-2024-23529 |
5.3 |
2024-04-23 |
|
Ivanti Avalanche WLAvalancheService Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-373 |
ZDI-CAN-22701 |
Ivanti |
CVE-2024-23528 |
5.3 |
2024-04-23 |
|
Ivanti Avalanche WLAvalancheService Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-372 |
ZDI-CAN-22700 |
Ivanti |
CVE-2024-23527 |
5.3 |
2024-04-23 |
|
Ivanti Avalanche WLAvalancheService Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-371 |
ZDI-CAN-22699 |
Ivanti |
CVE-2024-23526 |
5.3 |
2024-04-23 |
|
Ivanti Avalanche WLAvalancheService Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-370 |
ZDI-CAN-22682 |
Ivanti |
CVE-2024-22061 |
8.1 |
2024-04-23 |
|
Ivanti Avalanche WLInfoRailService Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-369 |
ZDI-CAN-22648 |
Google |
|
5.3 |
2024-04-22 |
|
Google cAdvisor REST API Improper Access Control Information Disclosure Vulnerability |
ZDI-24-368 |
ZDI-CAN-22300 |
GStreamer |
CVE-2023-50186 |
7.5 |
2024-04-19 |
|
GStreamer AV1 Video Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-367 |
ZDI-CAN-23785 |
Google |
CVE-2024-3159 |
5.4 |
2024-04-15 |
|
(Pwn2Own) Google Chrome V8 Enum Cache Out-Of-Bounds Read Remote Code Execution Vulnerability |
ZDI-24-366 |
ZDI-CAN-23792 |
Google |
CVE-2024-2887 |
5.4 |
2024-04-15 |
|
(Pwn2Own) Google Chrome WASM Improper Input Validation Remote Code Execution Vulnerability |
ZDI-24-365 |
ZDI-CAN-23799 |
Microsoft |
CVE-2024-3914 |
5.4 |
2024-04-15 |
2024-04-19 |
(Pwn2Own) Microsoft Edge DOMArrayBuffer Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-364 |
ZDI-CAN-21954 |
Arista |
CVE-2024-27889 |
8.8 |
2024-04-09 |
|
Arista NG Firewall ReportEntry SQL Injection Remote Code Execution Vulnerability |
ZDI-24-363 |
ZDI-CAN-22924 |
Microsoft |
CVE-2024-26158 |
7.8 |
2024-04-09 |
|
Microsoft Windows Installer Service Link Following Local Privilege Escalation Vulnerability |
ZDI-24-362 |
ZDI-CAN-23397 |
Microsoft |
CVE-2024-20685 |
5.9 |
2024-04-09 |
|
Microsoft Azure Private 5G Core InitialUEMessage Improper Input Validation Denial-of-Service Vulnerability |
ZDI-24-361 |
ZDI-CAN-23943 |
Microsoft |
CVE-2024-29988 |
8.8 |
2024-04-09 |
|
Microsoft Windows Internet Shortcut SmartScreen Bypass Vulnerability |
ZDI-24-360 |
ZDI-CAN-23446 |
JetBrains |
CVE-2024-31138 |
4.6 |
2024-04-01 |
|
JetBrains TeamCity AgentDistributionSettingsController Cross-Site Scripting Vulnerability |
ZDI-24-359 |
ZDI-CAN-22591 |
Flexera Software |
CVE-2024-2658 |
7.8 |
2024-04-01 |
|
Flexera Software FlexNet Publisher Uncontrolled Search Path Element Local Privilege Escalation Vulnerability |
ZDI-24-358 |
ZDI-CAN-21883 |
GitLab |
CVE-2024-2818 |
4.3 |
2024-04-01 |
|
GitLab Label Description Uncontrolled Resource Consumption Denial-of-Service Vulnerability |
ZDI-24-357 |
ZDI-CAN-23156 |
RARLAB |
CVE-2024-30370 |
4.3 |
2024-04-01 |
|
RARLAB WinRAR Mark-Of-The-Web Bypass Vulnerability |
ZDI-24-356 |
ZDI-CAN-22051 |
Siemens |
CVE-2024-27907 |
7.8 |
2024-03-28 |
|
Siemens Simcenter Femap MODEL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-355 |
ZDI-CAN-22164 |
Wireshark |
CVE-2023-6175 |
7.8 |
2024-03-28 |
|
Wireshark NetScreen File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-354 |
ZDI-CAN-21032 |
Schneider Electric |
CVE-2024-2229 |
7.8 |
2024-03-28 |
|
Schneider Electric EcoStruxure Power Design - Ecodial BinSerializer Deserialization of Untrusted Data Remote Code Execution Vulnerability |
ZDI-24-353 |
ZDI-CAN-20492 |
Softing |
CVE-2024-0860 |
8.0 |
2024-03-28 |
|
Softing edgeConnector Siemens Cleartext Transmission of Credentials Authentication Bypass Vulnerability |
ZDI-24-352 |
ZDI-CAN-21225 |
Softing |
CVE-2023-38126 |
7.2 |
2024-03-28 |
|
Softing edgeConnector Siemens Directory Traversal Remote Code Execution Vulnerability |
ZDI-24-351 |
ZDI-CAN-22695 |
SolarWinds |
CVE-2024-23479 |
10.0 |
2024-03-28 |
|
SolarWinds Access Rights Manager OpenFileStreamLocal Directory Traversal Remote Code Execution Vulnerability |
ZDI-24-350 |
ZDI-CAN-22531 |
SolarWinds |
CVE-2023-40057 |
9.9 |
2024-03-28 |
|
SolarWinds Access Rights Manager JsonSerializationHelper Deserialization of Untrusted Data Remote Code Execution Vulnerability |
ZDI-24-349 |
ZDI-CAN-22713 |
SolarWinds |
CVE-2024-23476 |
10.0 |
2024-03-28 |
|
SolarWinds Access Rights Manager OpenFile Directory Traversal Remote Code Execution Vulnerability |
ZDI-24-348 |
ZDI-CAN-22739 |
SolarWinds |
CVE-2024-23477 |
9.0 |
2024-03-28 |
|
SolarWinds Access Rights Manager openServerFileStream Directory Traversal Remote Code Execution Vulnerability |
ZDI-24-347 |
ZDI-CAN-22416 |
SolarWinds |
CVE-2024-23478 |
9.9 |
2024-03-28 |
|
SolarWinds Access Rights Manager JsonSerializationBinder Deserialization of Untrusted Data Remote Code Execution Vulnerability |
ZDI-24-346 |
ZDI-CAN-23355 |
Foxit |
CVE-2024-30371 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-345 |
ZDI-CAN-23013 |
Foxit |
CVE-2024-30367 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-344 |
ZDI-CAN-23002 |
Foxit |
CVE-2024-30366 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-343 |
ZDI-CAN-22947 |
Foxit |
CVE-2024-30365 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-342 |
ZDI-CAN-23008 |
Foxit |
CVE-2024-30363 |
3.3 |
2024-03-28 |
|
Foxit PDF Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-341 |
ZDI-CAN-23009 |
Foxit |
CVE-2024-30364 |
3.3 |
2024-03-28 |
|
Foxit PDF Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-340 |
ZDI-CAN-22797 |
Foxit |
CVE-2024-30360 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-339 |
ZDI-CAN-22798 |
Foxit |
CVE-2024-30362 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader PDF File Parsing Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-338 |
ZDI-CAN-22877 |
Foxit |
CVE-2024-30361 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-337 |
ZDI-CAN-22809 |
Foxit |
CVE-2024-30355 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-336 |
ZDI-CAN-22811 |
Foxit |
CVE-2024-30356 |
3.3 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-335 |
ZDI-CAN-22800 |
Foxit |
CVE-2024-30352 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-334 |
ZDI-CAN-22807 |
Foxit |
CVE-2024-30353 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Out-Of-Bounds Read Remote Code Execution Vulnerability |
ZDI-24-333 |
ZDI-CAN-22708 |
Foxit |
CVE-2024-30350 |
3.3 |
2024-03-28 |
|
Foxit PDF Reader Annotation Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-332 |
ZDI-CAN-22808 |
Foxit |
CVE-2024-30354 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-331 |
ZDI-CAN-22818 |
Foxit |
CVE-2024-30357 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Annotation Type Confusion Remote Code Execution Vulnerability |
ZDI-24-330 |
ZDI-CAN-22821 |
Foxit |
CVE-2024-30358 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm User-After-Free Remote Code Execution Vulnerability |
ZDI-24-329 |
ZDI-CAN-22888 |
Foxit |
CVE-2024-30359 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm 3D Out-Of-Bounds Read Remote Code Execution Vulnerability |
ZDI-24-328 |
ZDI-CAN-22799 |
Foxit |
CVE-2024-30351 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-327 |
ZDI-CAN-22910 |
Foxit |
CVE-2024-30347 |
3.3 |
2024-03-28 |
|
Foxit PDF Reader U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-326 |
ZDI-CAN-22911 |
Foxit |
CVE-2024-30348 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-325 |
ZDI-CAN-22912 |
Foxit |
CVE-2024-30349 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader U3D File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-324 |
ZDI-CAN-22745 |
Foxit |
CVE-2024-30346 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-323 |
ZDI-CAN-22742 |
Foxit |
CVE-2024-30345 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-322 |
ZDI-CAN-22720 |
Foxit |
CVE-2024-30342 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-321 |
ZDI-CAN-22707 |
Foxit |
CVE-2024-30340 |
3.3 |
2024-03-28 |
|
Foxit PDF Reader Annotation Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-320 |
ZDI-CAN-22733 |
Foxit |
CVE-2024-30344 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-319 |
ZDI-CAN-22705 |
Foxit |
CVE-2024-30338 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader Doc Object Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-318 |
ZDI-CAN-22704 |
Foxit |
CVE-2024-30337 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-317 |
ZDI-CAN-22706 |
Foxit |
CVE-2024-30339 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-316 |
ZDI-CAN-22721 |
Foxit |
CVE-2024-30343 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader Annotation Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-315 |
ZDI-CAN-22709 |
Foxit |
CVE-2024-30341 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader Doc Object Out-Of-Bounds Read Remote Code Execution Vulnerability |
ZDI-24-314 |
ZDI-CAN-22592 |
Foxit |
CVE-2024-30325 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-313 |
ZDI-CAN-22593 |
Foxit |
CVE-2024-30326 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader Doc Object Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-312 |
ZDI-CAN-22633 |
Foxit |
CVE-2024-30328 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-311 |
ZDI-CAN-22632 |
Foxit |
CVE-2024-30327 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader template Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-310 |
ZDI-CAN-22634 |
Foxit |
CVE-2024-30329 |
3.3 |
2024-03-28 |
|
Foxit PDF Reader Annotation Use-After-Free Information Disclosure Vulnerability |
ZDI-24-309 |
ZDI-CAN-22636 |
Foxit |
CVE-2024-30330 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-308 |
ZDI-CAN-22637 |
Foxit |
CVE-2024-30331 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-307 |
ZDI-CAN-22639 |
Foxit |
CVE-2024-30333 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader Doc Object Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-306 |
ZDI-CAN-22640 |
Foxit |
CVE-2024-30334 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader Doc Object Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-305 |
ZDI-CAN-22638 |
Foxit |
CVE-2024-30332 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader Doc Object Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-304 |
ZDI-CAN-22641 |
Foxit |
CVE-2024-30335 |
3.3 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Annotation Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-303 |
ZDI-CAN-22642 |
Foxit |
CVE-2024-30336 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-302 |
ZDI-CAN-22576 |
Foxit |
CVE-2024-30324 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader Doc Object Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-301 |
ZDI-CAN-22501 |
Foxit |
CVE-2024-30323 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader template Out-Of-Bounds Read Remote Code Execution Vulnerability |
ZDI-24-300 |
ZDI-CAN-22499 |
Foxit |
CVE-2024-30322 |
7.8 |
2024-03-28 |
|
Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-299 |
ZDI-CAN-21951 |
Linux |
CVE-2023-52628 |
7.3 |
2024-03-28 |
|
Linux Kernel nft_exthdr_ipv6_eval Stack-based Buffer Overflow Information Disclosure Vulnerability |
ZDI-24-298 |
ZDI-CAN-21950 |
Linux |
CVE-2023-52628 |
7.3 |
2024-03-28 |
|
Linux Kernel nft_exthdr_tcp_eval Stack-based Buffer Overflow Information Disclosure Vulnerability |
ZDI-24-297 |
ZDI-CAN-21961 |
Linux |
CVE-2023-52628 |
7.3 |
2024-03-28 |
|
Linux Kernel nft_exthdr_sctp_eval Stack-based Buffer Overflow Information Disclosure Vulnerability |
ZDI-24-296 |
ZDI-CAN-22587 |
Autodesk |
CVE-2024-23138 |
7.8 |
2024-03-27 |
|
Autodesk DWG TrueView DWG File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-295 |
ZDI-CAN-21341 |
Autodesk |
CVE-2024-23139 |
7.8 |
2024-03-27 |
|
Autodesk FBX Review ABC File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-294 |
ZDI-CAN-23146 |
Microsoft |
CVE-2024-26199 |
7.8 |
2024-03-13 |
|
Microsoft Office Performance Monitor Link Following Local Privilege Escalation Vulnerability |
ZDI-24-293 |
ZDI-CAN-22552 |
Microsoft |
CVE-2024-21411 |
8.8 |
2024-03-13 |
|
Microsoft Skype Protection Mechanism Failure Remote Code Execution Vulnerability |
ZDI-24-292 |
ZDI-CAN-22671 |
Adobe |
CVE-2024-20745 |
7.8 |
2024-03-13 |
|
Adobe Premiere Pro AVI File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-291 |
ZDI-CAN-22653 |
Adobe |
CVE-2024-20752 |
7.8 |
2024-03-13 |
|
Adobe Bridge PS File Parsing Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-290 |
ZDI-CAN-22159 |
NI |
CVE-2024-23609 |
7.8 |
2024-03-12 |
|
NI LabVIEW VI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-289 |
ZDI-CAN-21996 |
NI |
CVE-2024-23612 |
7.8 |
2024-03-12 |
|
NI LabVIEW VI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-288 |
ZDI-CAN-21987 |
NI |
CVE-2024-23611 |
7.8 |
2024-03-12 |
|
NI LabVIEW VI File Parsing Out-of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-287 |
ZDI-CAN-21985 |
NI |
CVE-2024-23610 |
7.8 |
2024-03-12 |
|
NI LabVIEW VI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-286 |
ZDI-CAN-21984 |
NI |
CVE-2024-23608 |
7.8 |
2024-03-12 |
|
NI LabVIEW VI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-285 |
ZDI-CAN-22141 |
NI |
CVE-2024-23609 |
7.8 |
2024-03-12 |
|
NI LabVIEW VI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-284 |
ZDI-CAN-22674 |
Adobe |
CVE-2024-20765 |
7.8 |
2024-03-11 |
|
Adobe Acrobat Reader DC PDF File Parsing Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-283 |
ZDI-CAN-22250 |
Apple |
CVE-2024-23257 |
3.3 |
2024-03-11 |
|
Apple macOS JP2 Image Parsing Uninitialized Pointer Information Disclosure Vulnerability |
ZDI-24-282 |
ZDI-CAN-22371 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings Viewer SAT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-281 |
ZDI-CAN-22367 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings Viewer SAT File Parsing Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-280 |
ZDI-CAN-22370 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings Viewer SAT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-279 |
ZDI-CAN-22372 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings Viewer SAT File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-278 |
ZDI-CAN-22490 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings Viewer JT File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-277 |
ZDI-CAN-22373 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings Viewer SAT File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-276 |
ZDI-CAN-22491 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings Viewer JT File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-275 |
ZDI-CAN-22489 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings Viewer JT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-274 |
ZDI-CAN-22590 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings Viewer STL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-273 |
ZDI-CAN-22723 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings IPT File Parsing Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-272 |
ZDI-CAN-22857 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings SAT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
ZDI-24-271 |
ZDI-CAN-22846 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings SAT File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-270 |
ZDI-CAN-22847 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings STP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-269 |
ZDI-CAN-22848 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings JT File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-268 |
ZDI-CAN-22849 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings IPT File Parsing Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-267 |
ZDI-CAN-22850 |
Dassault Systèmes |
CVE-2024-3299 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings SLDDRW File Parsing Uninitialized Variable Remote Code Execution Vulnerability |
ZDI-24-266 |
ZDI-CAN-22851 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings IPT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
ZDI-24-265 |
ZDI-CAN-22852 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings SAT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
ZDI-24-264 |
ZDI-CAN-22853 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings IPT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
ZDI-24-263 |
ZDI-CAN-22855 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings SAT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
ZDI-24-262 |
ZDI-CAN-22856 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings JT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
ZDI-24-261 |
ZDI-CAN-22858 |
Dassault Systèmes |
CVE-2024-3299 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings SLDPRT File Parsing Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-260 |
ZDI-CAN-22859 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings IPT File Parsing Uninitialized Variable Remote Code Execution Vulnerability |
ZDI-24-259 |
ZDI-CAN-22860 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings IPT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-258 |
ZDI-CAN-22862 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings CATPART File Parsing Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-257 |
ZDI-CAN-22863 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-11 |
2024-03-11 |
Dassault Systèmes eDrawings X_B File Parsing Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-256 |
ZDI-CAN-22861 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-08 |
2024-03-08 |
Dassault Systèmes eDrawings CATPART File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-255 |
ZDI-CAN-22864 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-08 |
2024-03-08 |
Dassault Systèmes eDrawings X_T File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-254 |
ZDI-CAN-22841 |
Dassault Systèmes |
CVE-2024-3298 |
7.8 |
2024-03-08 |
2024-03-08 |
Dassault Systèmes eDrawings DWG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-253 |
ZDI-CAN-22843 |
Dassault Systèmes |
CVE-2024-3299 |
7.8 |
2024-03-08 |
2024-03-08 |
Dassault Systèmes eDrawings SLDDRW File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-252 |
ZDI-CAN-22844 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-08 |
2024-03-08 |
Dassault Systèmes eDrawings JT File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-251 |
ZDI-CAN-22842 |
Dassault Systèmes |
CVE-2024-1847 |
7.8 |
2024-03-08 |
2024-03-08 |
Dassault Systèmes eDrawings SAT File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-250 |
ZDI-CAN-22845 |
Dassault Systèmes |
CVE-2024-3298 |
7.8 |
2024-03-08 |
2024-03-08 |
Dassault Systèmes eDrawings DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-249 |
ZDI-CAN-21918 |
Ashlar-Vellum |
|
7.8 |
2024-03-05 |
|
(0Day) Ashlar-Vellum Cobalt IGS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-248 |
ZDI-CAN-21917 |
Ashlar-Vellum |
|
7.0 |
2024-03-05 |
|
(0Day) Ashlar-Vellum Cobalt IGS File Parsing Type Confusion Remote Code Execution Vulnerability |
ZDI-24-247 |
ZDI-CAN-21740 |
Ashlar-Vellum |
|
7.8 |
2024-03-05 |
|
(0Day) Ashlar-Vellum Cobalt STP File Parsing Uninitialized Pointer Remote Code Execution Vulnerability |
ZDI-24-246 |
ZDI-CAN-21741 |
Ashlar-Vellum |
|
7.8 |
2024-03-05 |
|
(0Day) Ashlar-Vellum Cobalt STP File Parsing Type Confusion Remote Code Execution Vulnerability |
ZDI-24-245 |
ZDI-CAN-21732 |
Ashlar-Vellum |
|
7.8 |
2024-03-05 |
|
(0Day) Ashlar-Vellum Cobalt STP File Parsing Uninitialized Pointer Remote Code Execution Vulnerability |
ZDI-24-244 |
ZDI-CAN-21746 |
Ashlar-Vellum |
|
7.8 |
2024-03-05 |
|
(0Day) Ashlar-Vellum Cobalt STP File Parsing Type Confusion Remote Code Execution Vulnerability |
ZDI-24-243 |
ZDI-CAN-21523 |
Ashlar-Vellum |
|
7.8 |
2024-03-05 |
|
(0Day) Ashlar-Vellum Cobalt STP File Parsing Type Confusion Remote Code Execution Vulnerability |
ZDI-24-242 |
ZDI-CAN-21729 |
Ashlar-Vellum |
|
7.8 |
2024-03-05 |
|
(0Day) Ashlar-Vellum Cobalt STP File Parsing Type Confusion Remote Code Execution Vulnerability |
ZDI-24-241 |
ZDI-CAN-21730 |
Ashlar-Vellum |
|
7.8 |
2024-03-05 |
|
(0Day) Ashlar-Vellum Cobalt STP File Parsing Type Confusion Remote Code Execution Vulnerability |
ZDI-24-240 |
ZDI-CAN-21728 |
Ashlar-Vellum |
|
7.8 |
2024-03-05 |
|
(0Day) Ashlar-Vellum Cobalt STP File Parsing Type Confusion Remote Code Execution Vulnerability |
ZDI-24-239 |
ZDI-CAN-21535 |
Ashlar-Vellum |
|
7.8 |
2024-03-05 |
|
(0Day) Ashlar-Vellum Cobalt STP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-238 |
ZDI-CAN-21745 |
Ashlar-Vellum |
|
7.8 |
2024-03-05 |
|
(0Day) Ashlar-Vellum Cobalt STP File Parsing Type Confusion Remote Code Execution Vulnerability |
ZDI-24-237 |
ZDI-CAN-21738 |
Ashlar-Vellum |
|
7.8 |
2024-03-05 |
|
(0Day) Ashlar-Vellum Cobalt STP File Parsing Type Confusion Remote Code Execution Vulnerability |
ZDI-24-236 |
ZDI-CAN-21735 |
Ashlar-Vellum |
|
7.8 |
2024-03-05 |
|
(0Day) Ashlar-Vellum Cobalt STP File Parsing Type Confusion Remote Code Execution Vulnerability |
ZDI-24-235 |
ZDI-CAN-21744 |
Ashlar-Vellum |
|
7.8 |
2024-03-05 |
|
(0Day) Ashlar-Vellum Cobalt STP File Parsing Type Confusion Remote Code Execution Vulnerability |
ZDI-24-234 |
ZDI-CAN-21553 |
Ashlar-Vellum |
|
7.8 |
2024-03-05 |
|
(0Day) Ashlar-Vellum Cobalt STP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-233 |
ZDI-CAN-22789 |
Delta Electronics |
CVE-2024-1941 |
7.8 |
2024-03-04 |
|
Delta Electronics CNCSoft-B DPA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-232 |
ZDI-CAN-21978 |
Kofax |
CVE-2024-27334 |
3.3 |
2024-03-04 |
|
Kofax Power PDF JPG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-231 |
ZDI-CAN-22925 |
Kofax |
CVE-2024-27339 |
7.8 |
2024-03-04 |
|
Kofax Power PDF PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-230 |
ZDI-CAN-22033 |
Kofax |
CVE-2024-27337 |
7.8 |
2024-03-04 |
|
Kofax Power PDF TIF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-229 |
ZDI-CAN-21940 |
Linux |
CVE-2023-52440 |
9.0 |
2024-03-01 |
|
Linux Kernel ksmbd Session Key Exchange Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-228 |
ZDI-CAN-21541 |
Linux |
CVE-2023-52441 |
8.6 |
2024-03-01 |
|
Linux Kernel ksmbd Negotiate Request Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-227 |
ZDI-CAN-21506 |
Linux |
CVE-2023-52442 |
9.3 |
2024-03-01 |
|
Linux Kernel ksmbd Chained Request Improper Input Validation Information Disclosure Vulnerability |
ZDI-24-226 |
ZDI-CAN-22934 |
Kofax |
CVE-2024-27346 |
3.3 |
2024-03-01 |
|
Kofax Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-225 |
ZDI-CAN-22932 |
Kofax |
CVE-2024-27345 |
3.3 |
2024-03-01 |
|
Kofax Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-224 |
ZDI-CAN-22931 |
Kofax |
CVE-2024-27344 |
7.8 |
2024-03-01 |
|
Kofax Power PDF PDF File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-223 |
ZDI-CAN-22929 |
Kofax |
CVE-2024-27343 |
3.3 |
2024-03-01 |
|
Kofax Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-222 |
ZDI-CAN-22928 |
Kofax |
CVE-2024-27342 |
7.8 |
2024-03-01 |
|
Kofax Power PDF PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-221 |
ZDI-CAN-22927 |
Kofax |
CVE-2024-27341 |
7.8 |
2024-03-01 |
|
Kofax Power PDF PDF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-220 |
ZDI-CAN-22926 |
Kofax |
CVE-2024-27340 |
7.8 |
2024-03-01 |
|
Kofax Power PDF PDF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-219 |
ZDI-CAN-22588 |
Kofax |
CVE-2024-27338 |
7.8 |
2024-03-01 |
|
Kofax Power PDF app response Out-Of-Bounds Read Remote Code Execution Vulnerability |
ZDI-24-218 |
ZDI-CAN-22022 |
Kofax |
CVE-2024-27336 |
3.3 |
2024-03-01 |
|
Kofax Power PDF PNG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-217 |
ZDI-CAN-22018 |
Kofax |
CVE-2024-27335 |
7.8 |
2024-03-01 |
|
Kofax Power PDF PNG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
ZDI-24-216 |
ZDI-CAN-21976 |
Kofax |
CVE-2024-27333 |
3.3 |
2024-03-01 |
|
Kofax Power PDF GIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-215 |
ZDI-CAN-22955 |
SolarWinds |
CVE-2024-0692 |
9.8 |
2024-03-01 |
|
SolarWinds Security Event Manager AMF Deserialization of Untrusted Data Remote Code Execution Vulnerability |
ZDI-24-214 |
ZDI-CAN-21775 |
NI |
CVE-2024-1156 |
7.8 |
2024-02-28 |
|
NI FlexLogger RabbitMQ Incorrect Permission Assignment Local Privilege Escalation Vulnerability |
ZDI-24-213 |
ZDI-CAN-21773 |
NI |
CVE-2024-1155 |
7.8 |
2024-02-28 |
|
NI FlexLogger userservices Missing Authorization Local Privilege Escalation Vulnerability |
ZDI-24-212 |
ZDI-CAN-21939 |
NI |
CVE-2024-1155 |
7.8 |
2024-02-28 |
|
NI FlexLogger TagHistorian Missing Authorization Local Privilege Escalation Vulnerability |
ZDI-24-211 |
ZDI-CAN-21938 |
NI |
CVE-2024-1155 |
7.8 |
2024-02-28 |
|
NI FlexLogger DocumentManager Missing Authorization Local Privilege Escalation Vulnerability |
ZDI-24-210 |
ZDI-CAN-21941 |
NI |
CVE-2024-1155 |
7.8 |
2024-02-28 |
|
NI FlexLogger SkylineService Missing Authorization Local Privilege Escalation Vulnerability |
ZDI-24-209 |
ZDI-CAN-21772 |
NI |
CVE-2024-1155 |
7.8 |
2024-02-28 |
|
NI FlexLogger ServiceRegistry Missing Authorization Local Privilege Escalation Vulnerability |
ZDI-24-208 |
ZDI-CAN-23012 |
Microsoft |
|
9.8 |
2024-02-26 |
|
Microsoft Azure MCR VSTS CLI vstscli Uncontrolled Search Path Element Remote Code Execution Vulnerability |
ZDI-24-207 |
ZDI-CAN-22261 |
Apple |
CVE-2023-42902 |
8.8 |
2024-02-26 |
|
Apple macOS VideoToolbox Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-206 |
ZDI-CAN-21769 |
Apple |
CVE-2023-42888 |
3.3 |
2024-02-26 |
|
Apple macOS ImageIO MPO Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-205 |
ZDI-CAN-22277 |
PDF-XChange |
CVE-2024-27327 |
7.8 |
2024-02-23 |
|
PDF-XChange Editor PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-204 |
ZDI-CAN-22276 |
PDF-XChange |
CVE-2024-27326 |
3.3 |
2024-02-23 |
|
PDF-XChange Editor XPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-203 |
ZDI-CAN-22275 |
PDF-XChange |
CVE-2024-27325 |
3.3 |
2024-02-23 |
|
PDF-XChange Editor EMF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-202 |
ZDI-CAN-22280 |
PDF-XChange |
CVE-2024-27328 |
3.3 |
2024-02-23 |
|
PDF-XChange Editor EMF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-201 |
ZDI-CAN-22287 |
PDF-XChange |
CVE-2024-27331 |
3.3 |
2024-02-23 |
|
PDF-XChange Editor EMF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-200 |
ZDI-CAN-22285 |
PDF-XChange |
CVE-2024-27329 |
3.3 |
2024-02-23 |
|
PDF-XChange Editor XPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-199 |
ZDI-CAN-22286 |
PDF-XChange |
CVE-2024-27330 |
3.3 |
2024-02-23 |
|
PDF-XChange Editor EMF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-198 |
ZDI-CAN-22224 |
PDF-XChange |
CVE-2024-27323 |
7.5 |
2024-02-23 |
|
PDF-XChange Editor Updater Improper Certificate Validation Remote Code Execution Vulnerability |
ZDI-24-197 |
ZDI-CAN-22288 |
PDF-XChange |
CVE-2024-27332 |
3.3 |
2024-02-23 |
|
PDF-XChange Editor JPG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-196 |
ZDI-CAN-22270 |
PDF-XChange |
CVE-2024-27324 |
3.3 |
2024-02-23 |
|
PDF-XChange Editor TIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-195 |
ZDI-CAN-22991 |
Linux |
CVE-2024-26592 |
9.0 |
2024-02-23 |
|
Linux Kernel ksmbd TCP Connection Race Condition Remote Code Execution Vulnerability |
ZDI-24-194 |
ZDI-CAN-22890 |
Linux |
CVE-2024-26594 |
9.3 |
2024-02-23 |
|
Linux Kernel ksmbd Mech Token Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-193 |
ZDI-CAN-21539 |
Sante |
CVE-2024-1863 |
9.8 |
2024-02-23 |
|
Sante PACS Server Token Endpoint SQL Injection Remote Code Execution Vulnerability |
ZDI-24-192 |
ZDI-CAN-22161 |
Schneider Electric |
CVE-2024-0865 |
7.8 |
2024-02-21 |
|
Schneider Electric EcoStruxure IT Gateway Hard-Coded Credentials Local Privilege Escalation Vulnerability |
ZDI-24-191 |
ZDI-CAN-22087 |
Schneider Electric |
CVE-2024-0865 |
7.0 |
2024-02-21 |
|
Schneider Electric EcoStruxure IT Gateway Hard-Coded Credentials Local Privilege Escalation Vulnerability |
ZDI-24-190 |
ZDI-CAN-18983 |
Trimble |
|
7.8 |
2024-02-21 |
|
Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-189 |
ZDI-CAN-18984 |
Trimble |
|
3.3 |
2024-02-21 |
|
Trimble SketchUp SKP File Parsing Use-After-Free Information Disclosure Vulnerability |
ZDI-24-188 |
ZDI-CAN-19114 |
Trimble |
|
7.8 |
2024-02-21 |
|
Trimble SketchUp SKP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-187 |
ZDI-CAN-19112 |
Trimble |
|
7.8 |
2024-02-21 |
|
Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-186 |
ZDI-CAN-19115 |
Trimble |
|
7.8 |
2024-02-21 |
|
Trimble SketchUp SKP File Parsing Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-185 |
ZDI-CAN-22029 |
Inductive Automation |
CVE-2023-50233 |
8.8 |
2024-02-21 |
|
Inductive Automation Ignition getJavaExecutable Directory Traversal Remote Code Execution Vulnerability |
ZDI-24-184 |
ZDI-CAN-22028 |
Inductive Automation |
CVE-2023-50232 |
8.8 |
2024-02-21 |
|
Inductive Automation Ignition getParams Argument Injection Remote Code Execution Vulnerability |
ZDI-24-183 |
ZDI-CAN-23030 |
Apache |
CVE-2024-23946 |
5.3 |
2024-02-21 |
|
Apache OFBiz createRegister Error Message Information Disclosure Vulnerability |
ZDI-24-182 |
ZDI-CAN-22323 |
ESET |
CVE-2024-0353 |
7.8 |
2024-02-15 |
|
ESET Smart Security Premium ekrn Link Following Local Privilege Escalation Vulnerability |
ZDI-24-181 |
ZDI-CAN-22060 |
Siemens |
CVE-2024-24925 |
7.8 |
2024-02-15 |
2024-02-15 |
Siemens Simcenter Femap MODEL File Parsing Uninitialized Pointer Remote Code Execution Vulnerability |
ZDI-24-180 |
ZDI-CAN-22059 |
Siemens |
CVE-2024-24924 |
7.8 |
2024-02-15 |
|
Siemens Simcenter Femap MODEL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-179 |
ZDI-CAN-22055 |
Siemens |
CVE-2024-24923 |
7.8 |
2024-02-15 |
2024-02-15 |
Siemens Simcenter Femap MODEL File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability |
ZDI-24-178 |
ZDI-CAN-21715 |
Siemens |
CVE-2024-24922 |
7.8 |
2024-02-15 |
|
Siemens Simcenter Femap MODEL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-177 |
ZDI-CAN-21712 |
Siemens |
CVE-2024-24921 |
7.8 |
2024-02-15 |
|
Siemens Simcenter Femap MODEL File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-176 |
ZDI-CAN-21710 |
Siemens |
CVE-2024-24920 |
7.8 |
2024-02-15 |
2024-02-15 |
Siemens Simcenter Femap MODEL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-175 |
ZDI-CAN-22783 |
Siemens |
CVE-2024-23798 |
7.8 |
2024-02-15 |
|
Siemens Tecnomatix Plant Simulation WRL File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-174 |
ZDI-CAN-22763 |
Siemens |
CVE-2024-23797 |
7.8 |
2024-02-15 |
|
Siemens Tecnomatix Plant Simulation WRL File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-173 |
ZDI-CAN-22759 |
Siemens |
CVE-2024-23796 |
7.8 |
2024-02-15 |
|
Siemens Tecnomatix Plant Simulation WRL File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-172 |
ZDI-CAN-22758 |
Siemens |
CVE-2024-23795 |
7.0 |
2024-02-15 |
|
Siemens Tecnomatix Plant Simulation WRL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-171 |
ZDI-CAN-21894 |
SolarWinds |
CVE-2023-50395 |
8.8 |
2024-02-15 |
2024-02-15 |
SolarWinds Orion Platform AppendUpdate SQL Injection Remote Code Execution Vulnerability |
ZDI-24-170 |
ZDI-CAN-21895 |
SolarWinds |
CVE-2023-35188 |
8.8 |
2024-02-15 |
2024-02-15 |
SolarWinds Orion Platform AppendCreatePrimary SQL Injection Remote Code Execution Vulnerability |
ZDI-24-169 |
ZDI-CAN-22647 |
Adobe |
CVE-2024-20739 |
7.8 |
2024-02-13 |
|
Adobe Audition AVI File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-168 |
ZDI-CAN-22727 |
Adobe |
CVE-2024-20728 |
7.8 |
2024-02-13 |
|
Adobe Acrobat Pro DC Annotation Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-167 |
ZDI-CAN-22516 |
Adobe |
CVE-2024-20734 |
3.3 |
2024-02-13 |
|
Adobe Acrobat Pro DC AcroForm Use-After-Free Information Disclosure Vulnerability |
ZDI-24-166 |
ZDI-CAN-22822 |
Adobe |
CVE-2024-20736 |
3.3 |
2024-02-13 |
|
Adobe Acrobat Pro DC AcroForm Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-165 |
ZDI-CAN-23100 |
Microsoft |
CVE-2024-21412 |
8.8 |
2024-02-13 |
|
Microsoft Windows Internet Shortcut SmartScreen Bypass Vulnerability |
ZDI-24-164 |
ZDI-CAN-21970 |
Microsoft |
CVE-2024-21379 |
7.8 |
2024-02-13 |
|
Microsoft Office Word PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-163 |
ZDI-CAN-20875 |
Autodesk |
CVE-2024-0446 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD STP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-162 |
ZDI-CAN-20874 |
Autodesk |
|
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD X_T File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
ZDI-24-161 |
ZDI-CAN-20873 |
Autodesk |
CVE-2024-23123 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD CATPART File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-160 |
ZDI-CAN-20879 |
Autodesk |
CVE-2024-23136 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD STP File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability |
ZDI-24-159 |
ZDI-CAN-20880 |
Autodesk |
CVE-2024-23135 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD SLDPRT File Parsing Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-158 |
ZDI-CAN-20962 |
Autodesk |
CVE-2024-23134 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD IGES File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-157 |
ZDI-CAN-20961 |
Autodesk |
CVE-2024-23129 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD 3DM File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-156 |
ZDI-CAN-20960 |
Autodesk |
CVE-2024-23129 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD 3DM File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-155 |
ZDI-CAN-20959 |
Autodesk |
CVE-2024-23134 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD IGS File Parsing Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-154 |
ZDI-CAN-20958 |
Autodesk |
CVE-2024-23131 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD STP File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-153 |
ZDI-CAN-20957 |
Autodesk |
CVE-2024-23129 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD 3DM File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-152 |
ZDI-CAN-20956 |
Autodesk |
CVE-2024-23132 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD STP File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-151 |
ZDI-CAN-20955 |
Autodesk |
CVE-2024-23131 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD STP File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-150 |
ZDI-CAN-20954 |
Autodesk |
CVE-2024-23127 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD SLDPRT File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-149 |
ZDI-CAN-20953 |
Autodesk |
CVE-2024-23127 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD SLDASM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-148 |
ZDI-CAN-20952 |
Autodesk |
CVE-2024-23127 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD 3DM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-147 |
ZDI-CAN-20951 |
Autodesk |
CVE-2024-23126 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD CATPART File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-146 |
ZDI-CAN-20950 |
Autodesk |
CVE-2024-0446 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD STP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-145 |
ZDI-CAN-20948 |
Autodesk |
CVE-2024-23127 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD SLDASM File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-144 |
ZDI-CAN-20947 |
Autodesk |
CVE-2024-23122 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD 3DM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-143 |
ZDI-CAN-20946 |
Autodesk |
CVE-2024-23121 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD MODEL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-142 |
ZDI-CAN-20945 |
Autodesk |
CVE-2024-23137 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD SLDPRT File Parsing Uninitialized Variable Remote Code Execution Vulnerability |
ZDI-24-141 |
ZDI-CAN-20905 |
Autodesk |
CVE-2024-23124 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD STP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-140 |
ZDI-CAN-20885 |
Autodesk |
CVE-2024-23127 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD MODEL File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-139 |
ZDI-CAN-20863 |
Autodesk |
CVE-2024-23131 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD SLDASM File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-138 |
ZDI-CAN-20862 |
Autodesk |
CVE-2024-23130 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD SLDASM File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-137 |
ZDI-CAN-20861 |
Autodesk |
CVE-2024-23129 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD SLDASM File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-136 |
ZDI-CAN-20860 |
Autodesk |
CVE-2024-23128 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD MODEL File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-135 |
ZDI-CAN-20900 |
Autodesk |
CVE-2024-23131 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD STP File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-134 |
ZDI-CAN-20899 |
Autodesk |
CVE-2024-23131 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD STP File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-133 |
ZDI-CAN-20898 |
Autodesk |
CVE-2024-23130 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD SLDPRT File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-132 |
ZDI-CAN-20896 |
Autodesk |
CVE-2024-23129 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD 3DM File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-131 |
ZDI-CAN-20895 |
Autodesk |
CVE-2024-23123 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD CATPART File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-130 |
ZDI-CAN-20894 |
Autodesk |
CVE-2024-23131 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD STEP File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-129 |
ZDI-CAN-20893 |
Autodesk |
CVE-2024-23128 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD MODEL File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-128 |
ZDI-CAN-20859 |
Autodesk |
CVE-2024-23127 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD MODEL File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-127 |
ZDI-CAN-20858 |
Autodesk |
CVE-2024-23125 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD SLDPRT File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-126 |
ZDI-CAN-20878 |
Autodesk |
CVE-2024-23120 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD STP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-125 |
ZDI-CAN-20876 |
Autodesk |
CVE-2024-0446 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD MODEL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-124 |
ZDI-CAN-20877 |
Autodesk |
CVE-2024-0446 |
7.8 |
2024-02-12 |
2024-03-28 |
Autodesk AutoCAD STP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-123 |
ZDI-CAN-22664 |
X.Org |
CVE-2023-6816 |
7.8 |
2024-02-09 |
|
X.Org Server DeviceFocusEvent Improper Validation of Array Index Local Privilege Escalation Vulnerability |
ZDI-24-122 |
ZDI-CAN-22665 |
X.Org |
CVE-2023-6816 |
7.8 |
2024-02-09 |
|
X.Org Server XIQueryPointer Improper Validation of Array Index Local Privilege Escalation Vulnerability |
ZDI-24-121 |
ZDI-CAN-22678 |
X.Org |
CVE-2024-0229 |
7.8 |
2024-02-09 |
|
X.Org Server DeliverStateNotifyEvent Heap-based Buffer Overflow Local Privilege Escalation Vulnerability |
ZDI-24-120 |
ZDI-CAN-22744 |
X.Org |
CVE-2024-21885 |
7.8 |
2024-02-09 |
|
X.Org Server XISendDeviceHierarchyEvent Heap-based Buffer Overflow Local Privilege Escalation Vulnerability |
ZDI-24-119 |
ZDI-CAN-22840 |
X.Org |
CVE-2024-21886 |
7.8 |
2024-02-09 |
|
X.Org Server DisableDevice Heap-based Buffer Overflow Local Privilege Escalation Vulnerability |
ZDI-24-118 |
ZDI-CAN-22294 |
Centreon |
CVE-2024-0637 |
8.8 |
2024-02-09 |
|
Centreon updateDirectory SQL Injection Remote Code Execution Vulnerability |
ZDI-24-117 |
ZDI-CAN-22295 |
Centreon |
CVE-2024-23115 |
7.2 |
2024-02-09 |
|
Centreon updateGroups SQL Injection Remote Code Execution Vulnerability |
ZDI-24-116 |
ZDI-CAN-22296 |
Centreon |
CVE-2024-23116 |
7.2 |
2024-02-09 |
|
Centreon updateLCARelation SQL Injection Remote Code Execution Vulnerability |
ZDI-24-115 |
ZDI-CAN-22297 |
Centreon |
CVE-2024-23117 |
7.2 |
2024-02-09 |
|
Centreon updateContactServiceCommands SQL Injection Remote Code Execution Vulnerability |
ZDI-24-114 |
ZDI-CAN-22298 |
Centreon |
CVE-2024-23118 |
7.2 |
2024-02-09 |
|
Centreon updateContactHostCommands SQL Injection Remote Code Execution Vulnerability |
ZDI-24-113 |
ZDI-CAN-22339 |
Centreon |
CVE-2024-23119 |
8.8 |
2024-02-09 |
|
Centreon insertGraphTemplate SQL Injection Remote Code Execution Vulnerability |
ZDI-24-112 |
ZDI-CAN-22507 |
Allegra |
CVE-2024-22507 |
7.5 |
2024-02-09 |
|
Allegra downloadAttachmentGlobal Directory Traversal Information Disclosure Vulnerability |
ZDI-24-111 |
ZDI-CAN-22360 |
Allegra |
|
9.8 |
2024-02-09 |
2024-04-25 |
Allegra Hard-coded Credentials Authentication Bypass Vulnerability |
ZDI-24-110 |
ZDI-CAN-22361 |
Allegra |
|
9.8 |
2024-02-09 |
2024-04-25 |
Allegra downloadExportedChart Directory Traversal Authentication Bypass Vulnerability |
ZDI-24-109 |
ZDI-CAN-22527 |
Allegra |
|
7.2 |
2024-02-09 |
2024-04-25 |
Allegra uploadSimpleFile Directory Traversal Remote Code Execution Vulnerability |
ZDI-24-108 |
ZDI-CAN-22528 |
Allegra |
|
7.2 |
2024-02-09 |
2024-04-25 |
Allegra saveInlineEdit Directory Traversal Remote Code Execution Vulnerability |
ZDI-24-107 |
ZDI-CAN-22504 |
Allegra |
|
7.2 |
2024-02-09 |
2024-04-25 |
Allegra extarctZippedFile Directory Traversal Remote Code Execution Vulnerability |
ZDI-24-106 |
ZDI-CAN-22505 |
Allegra |
|
9.8 |
2024-02-09 |
2024-04-25 |
Allegra renderFieldMatch Deserialization of Unstrusted Data Remote Code Execution Vulnerability |
ZDI-24-105 |
ZDI-CAN-22506 |
Allegra |
|
9.8 |
2024-02-09 |
2024-04-25 |
Allegra loadFieldMatch Deserialization of Untrusted Data Remote Code Execution Vulnerability |
ZDI-24-104 |
ZDI-CAN-22548 |
Allegra |
|
9.8 |
2024-02-09 |
2024-04-25 |
Allegra saveFile Directory Traversal Remote Code Execution Vulnerability |
ZDI-24-103 |
ZDI-CAN-22510 |
Allegra |
|
7.2 |
2024-02-09 |
2024-04-25 |
Allegra uploadFile Directory Traversal Remote Code Execution Vulnerability |
ZDI-24-102 |
ZDI-CAN-22512 |
Allegra |
|
9.8 |
2024-02-09 |
2024-04-25 |
Allegra SiteConfigAction Improper Access Control Remote Code Execution Vulnerability |
ZDI-24-101 |
ZDI-CAN-22513 |
Allegra |
|
7.2 |
2024-02-09 |
2024-04-25 |
Allegra unzipFile Directory Traversal Remote Code Execution Vulnerability |
ZDI-24-100 |
ZDI-CAN-22532 |
Allegra |
|
7.5 |
2024-02-09 |
2024-04-25 |
Allegra serveMathJaxLibraries Directory Traversal Information Disclosure Vulnerability |
ZDI-24-099 |
ZDI-CAN-22530 |
Allegra |
|
7.5 |
2024-02-09 |
2024-04-25 |
Allegra getFileContentAsString Directory Traversal Information Disclosure Vulnerability |
ZDI-24-098 |
ZDI-CAN-21065 |
Schneider Electric |
CVE-2023-7032 |
7.8 |
2024-02-08 |
|
Schneider Electric Easergy Studio InitializeChannel Deserialization of Untrusted Data Local Privilege Escalation Vulnerability |
ZDI-24-097 |
ZDI-CAN-22015 |
Wazuh |
CVE-2023-42463 |
7.4 |
2024-02-08 |
|
Wazuh Log Collector Integer Underflow Local Privilege Escalation Vulnerability |
ZDI-24-096 |
ZDI-CAN-21848 |
Oracle |
CVE-2024-20953 |
8.8 |
2024-02-06 |
|
Oracle Product Lifecycle Management ExportServlet Deserialization of Untrusted Data Remote Code Execution Vulnerability |
ZDI-24-095 |
ZDI-CAN-22658 |
Canon |
CVE-2024-0244 |
8.8 |
2024-02-06 |
|
Canon imageCLASS MF753Cdw Fax Job Heap-Based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-094 |
ZDI-CAN-22533 |
Canon |
CVE-2023-6234 |
8.8 |
2024-02-06 |
|
(Pwn2Own) Canon imageCLASS MF753Cdw CADM setResource Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-093 |
ZDI-CAN-22389 |
Canon |
CVE-2023-6233 |
8.8 |
2024-02-06 |
|
(Pwn2Own) Canon imageCLASS MF753Cdw SLP service-url Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-092 |
ZDI-CAN-22386 |
Canon |
CVE-2023-6232 |
8.8 |
2024-02-06 |
|
(Pwn2Own) Canon imageCLASS MF753Cdw rls-login Authorization Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-091 |
ZDI-CAN-22381 |
Canon |
CVE-2023-6231 |
8.8 |
2024-02-06 |
|
(Pwn2Own) Canon imageCLASS MF753Cdw Probe message Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-090 |
ZDI-CAN-22391 |
Canon |
CVE-2023-6230 |
8.8 |
2024-02-06 |
|
(Pwn2Own) Canon imageCLASS MF753Cdw rls-login Authorization Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-089 |
ZDI-CAN-22403 |
Canon |
CVE-2023-6229 |
8.8 |
2024-02-06 |
|
(Pwn2Own) Canon imageCLASS MF753Cdw CADM rmSetFileName Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-088 |
ZDI-CAN-22440 |
Western Digital |
CVE-2023-22819 |
5.3 |
2024-02-06 |
|
(Pwn2Own) Western Digital MyCloud PR4100 RESTSDK Uncontrolled Resource Consumption Denial-of-Service Vulnerability |
ZDI-24-087 |
ZDI-CAN-22456 |
Western Digital |
CVE-2023-22817 |
6.3 |
2024-02-06 |
|
(Pwn2Own) Western Digital MyCloud PR4100 RESTSDK Server-Side Request Forgery Vulnerability |
ZDI-24-086 |
ZDI-CAN-22227 |
TP-Link |
CVE-2024-1180 |
6.8 |
2024-02-05 |
|
TP-Link Omada ER605 Access Control Command Injection Remote Code Execution Vulnerability |
ZDI-24-085 |
ZDI-CAN-22420 |
TP-Link |
CVE-2024-1179 |
7.5 |
2024-02-05 |
|
(Pwn2Own) TP-Link Omada ER605 DHCPv6 Client Options Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-084 |
ZDI-CAN-22520 |
Lexmark |
CVE-2023-50737 |
8.8 |
2024-01-31 |
|
(Pwn2Own) Lexmark CX331adwe Missing Authentication Remote Code Execution Vulnerability |
ZDI-24-083 |
ZDI-CAN-22445 |
Lexmark |
CVE-2023-50736 |
8.8 |
2024-01-31 |
|
(Pwn2Own) Lexmark CX331adwe PostScript File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-082 |
ZDI-CAN-22443 |
Lexmark |
CVE-2023-50735 |
7.5 |
2024-01-31 |
|
(Pwn2Own) Lexmark CX331adwe PDF File Parsing Memory Corruption Remote Code Execution Vulnerability |
ZDI-24-081 |
ZDI-CAN-22380 |
Lexmark |
CVE-2023-50734 |
8.8 |
2024-01-31 |
|
(Pwn2Own) Lexmark CX331adwe make42charstring Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-080 |
ZDI-CAN-20806 |
Trend Micro |
CVE-2023-41178 |
6.3 |
2024-01-19 |
|
Trend Micro Mobile Security for Enterprises vpplist_assign_list Cross-Site Scripting Vulnerability |
ZDI-24-079 |
ZDI-CAN-20805 |
Trend Micro |
CVE-2023-41177 |
6.3 |
2024-01-19 |
|
Trend Micro Mobile Security for Enterprises ServerUpdate_UpdateSuccessful Cross-Site Scripting Vulnerability |
ZDI-24-078 |
ZDI-CAN-20804 |
Trend Micro |
CVE-2023-41176 |
6.3 |
2024-01-19 |
|
Trend Micro Mobile Security for Enterprises DevicesManagementEditNotePopupTip Cross-Site Scripting Vulnerability |
ZDI-24-077 |
ZDI-CAN-20803 |
Trend Micro |
CVE-2023-52324 |
6.5 |
2024-01-19 |
|
Trend Micro Apex Central Unrestricted File Upload Vulnerability |
ZDI-24-076 |
ZDI-CAN-21780 |
Trend Micro |
CVE-2023-52338 |
7.8 |
2024-01-19 |
|
Trend Micro Deep Security Link Following Local Privilege Escalation Vulnerability |
ZDI-24-075 |
ZDI-CAN-16568 |
Trend Micro |
CVE-2023-52337 |
7.8 |
2024-01-19 |
|
Trend Micro Deep Security Improper Access Control Local Privilege Escalation Vulnerability |
ZDI-24-074 |
ZDI-CAN-18868 |
Trend Micro |
CVE-2023-52329 |
6.1 |
2024-01-11 |
2024-01-18 |
Trend Micro Apex Central Cross-Site Scripting Remote Code Execution Vulnerability |
ZDI-24-073 |
ZDI-CAN-21182 |
Paessler |
CVE-2023-51630 |
8.8 |
2024-01-15 |
|
Paessler PRTG Network Monitor Cross-Site Scripting Authentication Bypass Vulnerability |
ZDI-24-072 |
ZDI-CAN-19708 |
Synology |
CVE-2024-21473 |
7.5 |
2024-01-15 |
2024-01-16 |
Synology RT6600ax Qualcomm LDB Service Improper Input Validation Remote Code Execution Vulnerability |
ZDI-24-071 |
ZDI-CAN-22643 |
Ivanti |
CVE-2023-46804 |
7.5 |
2024-01-11 |
|
Ivanti Avalanche WLAvalancheService Integer Underflow Denial-of-Service Vulnerability |
ZDI-24-070 |
ZDI-CAN-22582 |
Ivanti |
CVE-2023-46223 |
9.8 |
2024-01-11 |
|
Ivanti Avalanche WLAvalancheService Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-069 |
ZDI-CAN-22581 |
Ivanti |
CVE-2023-46222 |
9.8 |
2024-01-11 |
|
Ivanti Avalanche WLAvalancheService Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-068 |
ZDI-CAN-22580 |
Ivanti |
CVE-2023-46221 |
9.8 |
2024-01-11 |
|
Ivanti Avalanche WLAvalancheService Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-067 |
ZDI-CAN-22544 |
Ivanti |
CVE-2023-46803 |
7.5 |
2024-01-11 |
|
Ivanti Avalanche WLAvalancheService Divide By Zero Denial-of-Service Vulnerability |
ZDI-24-066 |
ZDI-CAN-22553 |
Ivanti |
CVE-2023-46220 |
9.8 |
2024-01-11 |
|
Ivanti Avalanche WLAvalancheService Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-065 |
ZDI-CAN-22586 |
Ivanti |
CVE-2023-46258 |
9.8 |
2024-01-11 |
|
Ivanti Avalanche WLAvalancheService Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-064 |
ZDI-CAN-22585 |
Ivanti |
CVE-2023-46257 |
9.8 |
2024-01-11 |
|
Ivanti Avalanche WLAvalancheService Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-063 |
ZDI-CAN-22584 |
Ivanti |
CVE-2023-46225 |
9.8 |
2024-01-11 |
|
Ivanti Avalanche WLAvalancheService Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-062 |
ZDI-CAN-22583 |
Ivanti |
CVE-2023-46224 |
9.8 |
2024-01-11 |
|
Ivanti Avalanche WLAvalancheService Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-061 |
ZDI-CAN-21972 |
Ivanti |
CVE-2023-46259 |
9.8 |
2024-01-11 |
|
Ivanti Avalanche WLAvalancheService TV_FC Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-060 |
ZDI-CAN-21992 |
Ivanti |
CVE-2023-46260 |
7.5 |
2024-01-11 |
|
Ivanti Avalanche WLAvalancheService TV_NL Null Pointer Dereference Denial-of-Service Vulnerability |
ZDI-24-059 |
ZDI-CAN-22000 |
Ivanti |
CVE-2023-46261 |
9.8 |
2024-01-11 |
|
Ivanti Avalanche WLInfoRailService Heap-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-058 |
ZDI-CAN-21953 |
Ivanti |
CVE-2021-22962 |
7.3 |
2024-01-11 |
|
Ivanti Avalanche SecureFilter allowPassThrough Authentication Bypass Vulnerability |
ZDI-24-057 |
ZDI-CAN-21943 |
Ivanti |
CVE-2023-46266 |
7.3 |
2024-01-11 |
|
Ivanti Avalanche SecureFilter Content-Type Authentication Bypass Vulnerability |
ZDI-24-056 |
ZDI-CAN-21952 |
Ivanti |
CVE-2023-46263 |
7.2 |
2024-01-11 |
|
Ivanti Avalanche FileStoreConfig Arbitrary File Upload Remote Code Execution Vulnerability |
ZDI-24-055 |
ZDI-CAN-22001 |
Ivanti |
CVE-2023-46264 |
7.2 |
2024-01-11 |
|
Ivanti Avalanche FileStoreConfig Arbitrary File Upload Remote Code Execution Vulnerability |
ZDI-24-054 |
ZDI-CAN-21458 |
Ivanti |
CVE-2023-46265 |
6.5 |
2024-01-11 |
|
Ivanti Avalanche decode XML External Entity Processing Information Disclosure Vulnerability |
ZDI-24-053 |
ZDI-CAN-21406 |
Ivanti |
CVE-2023-46262 |
7.5 |
2024-01-11 |
|
Ivanti Avalanche validateAMCWSConnection Server-Side Request Forgery Information Disclosure Vulnerability |
ZDI-24-052 |
ZDI-CAN-21888 |
Trend Micro |
CVE-2023-52331 |
9.1 |
2024-01-11 |
|
Trend Micro Apex Central modVulnerabilityProtect Server-Side Request Forgery Information Disclosure Vulnerability |
ZDI-24-051 |
ZDI-CAN-21447 |
Trend Micro |
CVE-2023-52330 |
5.4 |
2024-01-11 |
|
Trend Micro Apex Central Cross-Site Scripting Privilege Escalation Vulnerability |
ZDI-24-050 |
ZDI-CAN-21675 |
D-Link |
CVE-2023-51631 |
6.8 |
2024-01-11 |
|
D-Link DIR-X3260 prog.cgi SetUsersSettings Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-049 |
ZDI-CAN-21492 |
D-Link |
CVE-2023-51629 |
6.3 |
2024-01-11 |
|
D-Link DCS-8300LHV2 ONVIF Hardcoded PIN Authentication Bypass Vulnerability |
ZDI-24-048 |
ZDI-CAN-21322 |
D-Link |
CVE-2023-51628 |
8.0 |
2024-01-11 |
|
D-Link DCS-8300LHV2 ONVIF SetHostName Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-047 |
ZDI-CAN-21321 |
D-Link |
CVE-2023-51627 |
8.0 |
2024-01-11 |
|
D-Link DCS-8300LHV2 ONVIF Duration Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-046 |
ZDI-CAN-21320 |
D-Link |
CVE-2023-51626 |
8.8 |
2024-01-11 |
|
D-Link DCS-8300LHV2 RTSP ValidateAuthorizationHeader Username Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-045 |
ZDI-CAN-21319 |
D-Link |
CVE-2023-51625 |
8.0 |
2024-01-11 |
|
D-Link DCS-8300LHV2 ONVIF SetSystemDateAndTime Command Injection Remote Code Execution Vulnerability |
ZDI-24-044 |
ZDI-CAN-20072 |
D-Link |
CVE-2023-51624 |
8.8 |
2024-01-11 |
|
D-Link DCS-8300LHV2 RTSP ValidateAuthorizationHeader Nonce Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-043 |
ZDI-CAN-21673 |
D-Link |
CVE-2023-51623 |
6.8 |
2024-01-11 |
|
D-Link DIR-X3260 prog.cgi SetAPClientSettings Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-042 |
ZDI-CAN-21672 |
D-Link |
CVE-2023-51622 |
6.8 |
2024-01-11 |
|
D-Link DIR-X3260 prog.cgi SetTriggerPPPoEValidate Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-041 |
ZDI-CAN-21670 |
D-Link |
CVE-2023-51621 |
6.8 |
2024-01-11 |
|
D-Link DIR-X3260 prog.cgi SetDeviceSettings Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-040 |
ZDI-CAN-21669 |
D-Link |
CVE-2023-51620 |
6.8 |
2024-01-11 |
|
D-Link DIR-X3260 prog.cgi SetIPv6PppoeSettings Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-039 |
ZDI-CAN-21667 |
D-Link |
CVE-2023-51619 |
6.8 |
2024-01-11 |
|
D-Link DIR-X3260 prog.cgi SetMyDLinkRegistration Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-038 |
ZDI-CAN-21595 |
D-Link |
CVE-2023-51618 |
6.8 |
2024-01-11 |
|
D-Link DIR-X3260 prog.cgi SetWLanRadioSecurity Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-037 |
ZDI-CAN-21594 |
D-Link |
CVE-2023-51617 |
6.8 |
2024-01-11 |
|
D-Link DIR-X3260 prog.cgi SetWanSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-036 |
ZDI-CAN-21593 |
D-Link |
CVE-2023-51616 |
6.8 |
2024-01-11 |
|
D-Link DIR-X3260 prog.cgi SetSysEmailSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-035 |
ZDI-CAN-21592 |
D-Link |
CVE-2023-51615 |
6.8 |
2024-01-11 |
|
D-Link DIR-X3260 prog.cgi SetQuickVPNSettings PSK Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-034 |
ZDI-CAN-21591 |
D-Link |
CVE-2023-51614 |
6.8 |
2024-01-11 |
|
D-Link DIR-X3260 prog.cgi SetQuickVPNSettings Password Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-033 |
ZDI-CAN-21590 |
D-Link |
CVE-2023-51613 |
6.8 |
2024-01-11 |
|
D-Link DIR-X3260 prog.cgi SetDynamicDNSSettings Stack-Based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-032 |
ZDI-CAN-22109 |
Foxit |
|
7.8 |
2024-01-10 |
|
Foxit PDF Reader Doc Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-031 |
ZDI-CAN-22126 |
Microsoft |
CVE-2024-21310 |
7.8 |
2024-01-10 |
|
Microsoft Windows cldflt Integer Overflow Local Privilege Escalation Vulnerability |
ZDI-24-030 |
ZDI-CAN-21445 |
Microsoft |
CVE-2024-20677 |
7.8 |
2024-01-10 |
|
Microsoft Office Word FBX File Parsing Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-029 |
ZDI-CAN-21860 |
Trend Micro |
CVE-2023-52093 |
7.8 |
2024-01-10 |
|
Trend Micro Apex One Exposed Dangerous Function Local Privilege Escalation Vulnerability |
ZDI-24-028 |
ZDI-CAN-21896 |
Trend Micro |
CVE-2023-52094 |
7.0 |
2024-01-10 |
|
Trend Micro Apex One Security Agent Updater Link Following Local Privilege Escalation Vulnerability |
ZDI-24-027 |
ZDI-CAN-21522 |
Trend Micro |
CVE-2023-52091 |
7.8 |
2024-01-10 |
|
Trend Micro Apex One Anti-Spyware Engine Link Following Local Privilege Escalation Vulnerability |
ZDI-24-026 |
ZDI-CAN-21425 |
Trend Micro |
CVE-2023-52090 |
7.8 |
2024-01-10 |
|
Trend Micro Apex One Virus Scan Engine Link Following Local Privilege Escalation Vulnerability |
ZDI-24-025 |
ZDI-CAN-21346 |
Trend Micro |
CVE-2023-52092 |
7.8 |
2024-01-10 |
|
Trend Micro Apex One Link Following Local Privilege Escalation Vulnerability |
ZDI-24-024 |
ZDI-CAN-21327 |
Trend Micro |
CVE-2023-52325 |
7.5 |
2024-01-10 |
|
Trend Micro Apex Central widget WFProxy Local File Inclusion Remote Code Execution Vulnerability |
ZDI-24-023 |
ZDI-CAN-18873 |
Trend Micro |
CVE-2023-52326 |
6.1 |
2024-01-10 |
2024-01-16 |
Trend Micro Apex Central Cross-Site Scripting Remote Code Execution Vulnerability |
ZDI-24-022 |
ZDI-CAN-18869 |
Trend Micro |
CVE-2023-52327 |
6.1 |
2024-01-10 |
2024-01-16 |
Trend Micro Apex Central Cross-Site Scripting Remote Code Execution Vulnerability |
ZDI-24-021 |
ZDI-CAN-18870 |
Trend Micro |
CVE-2023-52328 |
6.1 |
2024-01-10 |
2024-01-16 |
Trend Micro Apex Central Cross-Site Scripting Remote Code Execution Vulnerability |
ZDI-24-020 |
ZDI-CAN-20527 |
Linux |
CVE-2023-6546 |
8.8 |
2024-01-09 |
|
Linux Kernel GSM Multiplexing Race Condition Local Privilege Escalation Vulnerability |
ZDI-24-019 |
ZDI-CAN-19067 |
Bentley |
CVE-2023-44430 |
7.8 |
2023-12-21 |
2024-01-08 |
Bentley View SKP File Parsing Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-018 |
ZDI-CAN-22127 |
Inductive Automation |
CVE-2023-50223 |
8.8 |
2024-01-05 |
|
Inductive Automation Ignition ExtendedDocumentCodec Deserialization of Untrusted Data Remote Code Execution Vulnerability |
ZDI-24-017 |
ZDI-CAN-22067 |
Inductive Automation |
CVE-2023-50222 |
8.8 |
2024-01-05 |
|
Inductive Automation Ignition ResponseParser Notification Deserialization of Untrusted Data Remote Code Execution Vulnerability |
ZDI-24-016 |
ZDI-CAN-21926 |
Inductive Automation |
CVE-2023-50221 |
8.8 |
2024-01-05 |
|
Inductive Automation Ignition ResponseParser SerializedResponse Deserialization of Untrusted Data Remote Code Execution Vulnerability |
ZDI-24-015 |
ZDI-CAN-21801 |
Inductive Automation |
CVE-2023-50220 |
7.2 |
2024-01-05 |
|
Inductive Automation Ignition Base64Element Deserialization of Untrusted Data Remote Code Execution Vulnerability |
ZDI-24-014 |
ZDI-CAN-21625 |
Inductive Automation |
CVE-2023-50219 |
8.8 |
2024-01-05 |
|
Inductive Automation Ignition RunQuery Deserialization of Untrusted Data Remote Code Execution Vulnerability |
ZDI-24-013 |
ZDI-CAN-21016 |
oFono |
CVE-2023-4235 |
8.1 |
2024-01-04 |
|
oFono SMS Decoder Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-012 |
ZDI-CAN-22153 |
X.Org |
CVE-2023-5367 |
7.8 |
2024-01-04 |
|
X.Org Server ProcXIChangeProperty Heap-based Buffer Overflow Local Privilege Escalation Vulnerability |
ZDI-24-011 |
ZDI-CAN-22412 |
X.Org |
CVE-2023-6377 |
7.8 |
2024-01-04 |
|
X.Org Server RecalculateMasterButtons Out-Of-Bounds Access Local Privilege Escalation Vulnerability |
ZDI-24-010 |
ZDI-CAN-22413 |
X.Org |
CVE-2023-6377 |
7.8 |
2024-01-04 |
|
X.Org Server DeepCopyPointerClasses Out-Of-Bounds Access Local Privilege Escalation Vulnerability |
ZDI-24-009 |
ZDI-CAN-22561 |
X.Org |
CVE-2023-6478 |
5.5 |
2024-01-04 |
|
X.Org Server RRChangeOutputProperty Integer Overflow Information Disclosure Vulnerability |
ZDI-24-008 |
ZDI-CAN-22753 |
SolarWinds |
CVE-2023-40058 |
8.6 |
2024-01-04 |
|
SolarWinds Access Rights Manager Hardcoded Credentials Authentication Bypass Vulnerability |
ZDI-24-007 |
ZDI-CAN-22016 |
Kofax |
CVE-2023-51569 |
7.8 |
2024-01-04 |
|
Kofax Power PDF BMP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability |
ZDI-24-006 |
ZDI-CAN-21988 |
Kofax |
CVE-2023-51567 |
3.3 |
2024-01-04 |
|
Kofax Power PDF OXPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-005 |
ZDI-CAN-21990 |
Kofax |
CVE-2023-51568 |
3.3 |
2024-01-04 |
|
Kofax Power PDF OXPS File Parsing Use-After-Free Information Disclosure Vulnerability |
ZDI-24-004 |
ZDI-CAN-21980 |
Kofax |
CVE-2023-51566 |
7.8 |
2024-01-04 |
|
Kofax Power PDF OXPS File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability |
ZDI-24-003 |
ZDI-CAN-21975 |
Kofax |
CVE-2023-51565 |
7.8 |
2024-01-04 |
|
Kofax Power PDF XPS File Parsing Use-After-Free Remote Code Execution Vulnerability |
ZDI-24-002 |
ZDI-CAN-21606 |
Kofax |
CVE-2023-51564 |
3.3 |
2024-01-04 |
|
Kofax Power PDF PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability |
ZDI-24-001 |
ZDI-CAN-20573 |
Kofax |
CVE-2023-51563 |
7.8 |
2024-01-04 |
|
Kofax Power PDF XPS File Parsing Use-After-Free Remote Code Execution Vulnerability |