ZDI-22-758: (Pwn2Own) NETGEAR R6700v3 Vulnerable Third-Party Component Remote Code Execution Vulnerability

May 10, 2022

Read Time:8 Second

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700v3 routers. Authentication is not required to exploit this vulnerability.

Advisories

ZDI-22-747: Adobe InCopy Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

May 10, 2022

Read Time:11 Second

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe InCopy. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

Advisories

ZDI-22-748: Adobe InCopy Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

May 10, 2022

Read Time:11 Second

Advisories

ZDI-22-749: Adobe InDesign Font Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

May 10, 2022

Read Time:11 Second

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe InDesign. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

Advisories

ZDI-22-750: Adobe InDesign Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

May 10, 2022

Read Time:11 Second

Advisories

ZDI-22-751: Adobe InDesign Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

May 10, 2022

Read Time:11 Second

Advisories

ZDI-22-752: Adobe Character Animator SVG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

May 10, 2022

Read Time:12 Second

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Character Animator. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

Advisories

ZDI-22-753: Adobe Acrobat Pro DC Doc flattenPages Use-After-Free Remote Code Execution Vulnerability

May 10, 2022

Read Time:12 Second

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

Advisories

ZDI-22-754: Adobe Acrobat Pro DC Doc buttonSetIcon Use-After-Free Information Disclosure Vulnerability

May 10, 2022

Read Time:12 Second

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

Advisories

ZDI-22-755: Adobe FrameMaker Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

May 10, 2022

Read Time:11 Second

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe FrameMaker. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

Cyber Security News

Daily Archives: May 10, 2022

ZDI-22-758: (Pwn2Own) NETGEAR R6700v3 Vulnerable Third-Party Component Remote Code Execution Vulnerability

ZDI-22-747: Adobe InCopy Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

ZDI-22-748: Adobe InCopy Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

ZDI-22-749: Adobe InDesign Font Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

ZDI-22-750: Adobe InDesign Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

ZDI-22-751: Adobe InDesign Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

ZDI-22-752: Adobe Character Animator SVG File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

ZDI-22-753: Adobe Acrobat Pro DC Doc flattenPages Use-After-Free Remote Code Execution Vulnerability

ZDI-22-754: Adobe Acrobat Pro DC Doc buttonSetIcon Use-After-Free Information Disclosure Vulnerability

ZDI-22-755: Adobe FrameMaker Font Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

News, Advisories and much more