Export limit exceeded: 364911 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Search

Search Results (9647 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2022-35672 3 Adobe, Apple, Microsoft 6 Acrobat, Acrobat Dc, Acrobat Reader and 3 more 2024-11-21 7.8 High
Adobe Acrobat Reader version 22.001.20085 (and earlier), 20.005.30314 (and earlier) and 17.012.30205 (and earlier) are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
CVE-2022-35485 1 Otfcc Project 1 Otfcc 2024-11-21 6.5 Medium
OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x703969.
CVE-2022-35483 1 Otfcc Project 1 Otfcc 2024-11-21 6.5 Medium
OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x5266a8.
CVE-2022-35482 1 Otfcc Project 1 Otfcc 2024-11-21 6.5 Medium
OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x65f724.
CVE-2022-35481 1 Otfcc Project 1 Otfcc 2024-11-21 6.5 Medium
OTFCC v0.10.4 was discovered to contain a segmentation violation via /multiarch/memmove-vec-unaligned-erms.S.
CVE-2022-35479 1 Otfcc Project 1 Otfcc 2024-11-21 6.5 Medium
OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x4fbbb6.
CVE-2022-35478 1 Otfcc Project 1 Otfcc 2024-11-21 6.5 Medium
OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x6babea.
CVE-2022-35477 1 Otfcc Project 1 Otfcc 2024-11-21 6.5 Medium
OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x4fe954.
CVE-2022-35476 1 Otfcc Project 1 Otfcc 2024-11-21 6.5 Medium
OTFCC v0.10.4 was discovered to contain a segmentation violation via /release-x64/otfccdump+0x4fbc0b.
CVE-2022-35260 4 Apple, Haxx, Netapp and 1 more 12 Macos, Curl, Clustered Data Ontap and 9 more 2024-11-21 6.5 Medium
curl can be told to parse a `.netrc` file for credentials. If that file endsin a line with 4095 consecutive non-white space letters and no newline, curlwould first read past the end of the stack-based buffer, and if the readworks, write a zero byte beyond its boundary.This will in most cases cause a segfault or similar, but circumstances might also cause different outcomes.If a malicious user can provide a custom netrc file to an application or otherwise affect its contents, this flaw could be used as denial-of-service.
CVE-2022-35234 2 Microsoft, Trendmicro 2 Windows, Security 2024-11-21 7.1 High
Trend Micro Security 2021 and 2022 (Consumer) is vulnerable to an Out-Of-Bounds Read Information Disclosure Vulnerability that could allow an attacker to read sensitive information from other memory locations and cause a crash on an affected machine.
CVE-2022-35114 1 Swftools 1 Swftools 2024-11-21 5.5 Medium
SWFTools commit 772e55a2 was discovered to contain a segmentation violation via extractFrame at /readers/swf.c.
CVE-2022-35106 1 Swftools 1 Swftools 2024-11-21 5.5 Medium
SWFTools commit 772e55a2 was discovered to contain a segmentation violation via FoFiTrueType::computeTableChecksum(unsigned char*, int) at /xpdf/FoFiTrueType.cc.
CVE-2022-35100 1 Swftools 1 Swftools 2024-11-21 6.5 Medium
SWFTools commit 772e55a2 was discovered to contain a segmentation violation via gfxline_getbbox at /lib/gfxtools.c.
CVE-2022-35020 2 Advancemame, Fedoraproject 2 Advancecomp, Fedora 2024-11-21 5.5 Medium
Advancecomp v2.3 was discovered to contain a heap buffer overflow via the component __interceptor_memcpy at /sanitizer_common/sanitizer_common_interceptors.inc.
CVE-2022-35017 2 Advancemame, Fedoraproject 2 Advancecomp, Fedora 2024-11-21 5.5 Medium
Advancecomp v2.3 was discovered to contain a heap buffer overflow.
CVE-2022-35016 2 Advancemame, Fedoraproject 2 Advancecomp, Fedora 2024-11-21 5.5 Medium
Advancecomp v2.3 was discovered to contain a heap buffer overflow.
CVE-2022-35015 2 Advancemame, Fedoraproject 2 Advancecomp, Fedora 2024-11-21 5.5 Medium
Advancecomp v2.3 was discovered to contain a heap buffer overflow via le_uint32_read at /lib/endianrw.h.
CVE-2022-34889 1 Parallels 1 Parallels Desktop 2024-11-21 8.2 High
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 17.1.1 (51537). An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the ACPI virtual device. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated buffer. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the hypervisor. Was ZDI-CAN-16554.
CVE-2022-34874 2 Foxit, Microsoft 3 Pdf Editor, Pdf Reader, Windows 2024-11-21 3.3 Low
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader 11.2.2.53575. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of Doc objects. By performing actions in JavaScript, an attacker can trigger a read past the end of an allocated object. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-17474.