Category Archives: Advisories

ZDI-22-722: Autodesk Navisworks Manage SKP File Parsing Use-After-Free Remote Code Execution Vulnerability

May 9, 2022

Read Time:12 Second

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk Navisworks Manage. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

Advisories

ZDI-22-721: Autodesk 3DS Max TIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

May 9, 2022

Read Time:12 Second

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk 3DS Max. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

Advisories

ZDI-22-720: Autodesk 3DS Max TIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

May 9, 2022

Read Time:12 Second

Advisories

ZDI-22-719: Autodesk 3DS Max TIF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

May 9, 2022

Read Time:12 Second

Advisories

ZDI-22-718: Rockwell Automation ISaGRAF isasln File Parsing XML External Entity Processing Information Disclosure Vulnerability

May 9, 2022

Read Time:12 Second

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Rockwell Automation ISaGRAF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.

Advisories

ZDI-22-717: Zoom Client Link Following Local Privilege Escalation Vulnerability

May 9, 2022

Read Time:11 Second

This vulnerability allows local attackers to escalate privileges on affected installations of Zoom Client. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

Advisories

ZDI-22-716: Zoom Client Link Following Local Privilege Escalation Vulnerability

May 9, 2022

Read Time:11 Second

Advisories

DSA-5133 qemu – security update

May 9, 2022

Read Time:7 Second

Multiple security issues were discovered in QEMU, a fast processor
emulator, which could result in denial of service or the execution of
arbitrary code.

Advisories

CImg-3.1.0-1.fc35 gmic-3.1.0-1.fc35

May 8, 2022

Read Time:7 Second

FEDORA-2022-eca0926460

Packages in this update:

CImg-3.1.0-1.fc35
gmic-3.1.0-1.fc35

Update description:

bump version

Advisories

CVE-2018-25033

May 8, 2022

Read Time:9 Second

ADMesh through 0.98.4 has a heap-based buffer over-read in stl_update_connects_remove_1 (called from stl_remove_degenerate) in connect.c in libadmesh.a.

News, Advisories and much more

Exit mobile version