<![CDATA[ZDI: Published Advisories]]>

<![CDATA[ZDI: Published Advisories]]> http://www.zerodayinitiative.com/advisories/published/ Sun, 03 May 2026 06:17:43 -0500 Trend Micro, all rights reserved en <![CDATA[ZDI-20-1453: Qognify Ocularis EventCoordinator ConnectedChannel_GotMessage Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11257 http://www.zerodayinitiative.com/advisories/ZDI-20-1453/ Tue, 29 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1452: (0Day) Microsoft 3D Builder GLB File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11486 http://www.zerodayinitiative.com/advisories/ZDI-20-1452/ Mon, 21 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1451: NETGEAR Multiple Routers mini_httpd Authentication Bypass Vulnerability]]> ZDI-CAN-11355 http://www.zerodayinitiative.com/advisories/ZDI-20-1451/ Fri, 18 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1450: VMware Workstation SetGuestInfo Null Pointer Dereference Denial-of-Service Vulnerability]]> ZDI-CAN-11695 http://www.zerodayinitiative.com/advisories/ZDI-20-1450/ Fri, 18 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1449: Hewlett Packard Enterprise Systems Insight Manager AMF Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11847 http://www.zerodayinitiative.com/advisories/ZDI-20-1449/ Fri, 18 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1448: (Pwn2Own) Western Digital MyCloud PR4100 nasAdmin Incorrect Authorization Authentication Bypass Vulnerability]]> ZDI-CAN-12385 http://www.zerodayinitiative.com/advisories/ZDI-20-1448/ Wed, 16 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1447: (Pwn2Own) Western Digital MyCloud PR4100 nasAdmin Authentication Bypass Vulnerability]]> ZDI-CAN-12327 http://www.zerodayinitiative.com/advisories/ZDI-20-1447/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1446: (Pwn2Own) Western Digital MyCloud PR4100 nasAdmin Incorrect Authorization Authentication Bypass Vulnerability]]> ZDI-CAN-12465 http://www.zerodayinitiative.com/advisories/ZDI-20-1446/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1445: (Pwn2Own) Western Digital MyCloud PR4100 nasAdmin Authentication Bypass Vulnerability]]> ZDI-CAN-12214 http://www.zerodayinitiative.com/advisories/ZDI-20-1445/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1444: (0Day) Eaton EASYsoft E70 File Parsing Type Confusion Remote Code Execution Vulnerability]]> ZDI-CAN-11083 http://www.zerodayinitiative.com/advisories/ZDI-20-1444/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1443: (0Day) Eaton EASYsoft E70 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability]]> ZDI-CAN-11082 http://www.zerodayinitiative.com/advisories/ZDI-20-1443/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1442: (0Day) Eaton EASYsoft E70 File Parsing Type Confusion Remote Code Execution Vulnerability]]> ZDI-CAN-11080 http://www.zerodayinitiative.com/advisories/ZDI-20-1442/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1441: (0Day) Eaton EASYsoft E70 File Parsing Type Confusion Remote Code Execution Vulnerability]]> ZDI-CAN-11078 http://www.zerodayinitiative.com/advisories/ZDI-20-1441/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1440: (0Day) Linux Kernel eBPF Improper Input Validation Privilege Escalation Vulnerability]]> ZDI-CAN-10905 http://www.zerodayinitiative.com/advisories/ZDI-20-1440/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1439: (0Day) LibTIFF tiff2pdf Converter Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11115 http://www.zerodayinitiative.com/advisories/ZDI-20-1439/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1438: (0Day) D-Link DCS-960L HTTP Authorization Header Stack-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-11359 http://www.zerodayinitiative.com/advisories/ZDI-20-1438/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1437: (0Day) D-Link DCS-960L HNAP LoginPassword Incorrect Implementation of Authentication Algorithm Authentication Bypass Vulnerability]]> ZDI-CAN-11352 http://www.zerodayinitiative.com/advisories/ZDI-20-1437/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1436: (0Day) D-Link DCS-960L HNAP Login Cookie Format String Remote Code Execution Vulnerability]]> ZDI-CAN-11366 http://www.zerodayinitiative.com/advisories/ZDI-20-1436/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1435: (0Day) D-Link DCS-960L HNAP Cookie Format String Remote Code Execution Vulnerability]]> ZDI-CAN-11360 http://www.zerodayinitiative.com/advisories/ZDI-20-1435/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1434: (0Day) Microsoft Windows splwow64 Untrusted Pointer Dereference Information Disclosure Vulnerability]]> ZDI-CAN-11350 http://www.zerodayinitiative.com/advisories/ZDI-20-1434/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1433: (0Day) Microsoft Windows splwow64 Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11349 http://www.zerodayinitiative.com/advisories/ZDI-20-1433/ Fri, 08 Jan 2021 00:00:00 -0600 <![CDATA[ZDI-20-1432: (0Day) Microsoft Windows splwow64 Out-Of-Bounds Write Privilege Escalation Vulnerability]]> ZDI-CAN-11351 http://www.zerodayinitiative.com/advisories/ZDI-20-1432/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1431: FreeBSD FTPD Improper Handling of Exceptional Conditions Privilege Escalation Vulnerability]]> ZDI-CAN-11632 http://www.zerodayinitiative.com/advisories/ZDI-20-1431/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1430: NETGEAR Orbi UA_Parser Host Name Command Injection Remote Code Execution Vulnerability]]> ZDI-CAN-11076 http://www.zerodayinitiative.com/advisories/ZDI-20-1430/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1429: D-Link DAP-1860 uhttpd Authentication Bypass Remote Code Execution Vulnerability]]> ZDI-CAN-10894 http://www.zerodayinitiative.com/advisories/ZDI-20-1429/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1428: D-Link DAP-1860 HNAP Authorization Command Injection Remote Code Execution Vulnerability]]> ZDI-CAN-10880 http://www.zerodayinitiative.com/advisories/ZDI-20-1428/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1427: D-Link Multiple Routers dhttpd Authentication Bypass Vulnerability]]> ZDI-CAN-10912 http://www.zerodayinitiative.com/advisories/ZDI-20-1427/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1426: D-Link Multiple Routers dhttpd Command Injection Remote Code Execution Vulnerability]]> ZDI-CAN-10911 http://www.zerodayinitiative.com/advisories/ZDI-20-1426/ Tue, 15 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1425: Microsoft Excel XLS File Parsing Integer Signedness Remote Code Execution Vulnerability]]> ZDI-CAN-11752 http://www.zerodayinitiative.com/advisories/ZDI-20-1425/ Fri, 11 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1424: Microsoft Excel XLS File Parsing Use-After-Free Remote Code Execution Vulnerability]]> ZDI-CAN-11888 http://www.zerodayinitiative.com/advisories/ZDI-20-1424/ Fri, 11 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1423: NETGEAR Multiple Routers mini_httpd Command Injection Remote Code Execution Vulnerability]]> ZDI-CAN-11653 http://www.zerodayinitiative.com/advisories/ZDI-20-1423/ Mon, 21 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1422: Microsoft Outlook MSG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11887 http://www.zerodayinitiative.com/advisories/ZDI-20-1422/ Fri, 11 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1421: X.Org Server XkbSetDeviceInfo Heap-based Buffer Overflow Privilege Escalation Vulnerability]]> ZDI-CAN-11839 http://www.zerodayinitiative.com/advisories/ZDI-20-1421/ Wed, 09 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1420: X.Org Server XkbSetMap Out-Of-Bounds Access Privilege Escalation Vulnerability]]> ZDI-CAN-11572 http://www.zerodayinitiative.com/advisories/ZDI-20-1420/ Wed, 09 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1419: X.Org Server XRecordRegisterClients Integer Underflow Privilege Escalation Vulnerability]]> ZDI-CAN-11574 http://www.zerodayinitiative.com/advisories/ZDI-20-1419/ Wed, 09 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1418: X.Org Server XkbSelectEvents Integer Underflow Privilege Escalation Vulnerability]]> ZDI-CAN-11573 http://www.zerodayinitiative.com/advisories/ZDI-20-1418/ Wed, 09 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1417: X.Org Server XIChangeHierarchy Integer Underflow Privilege Escalation Vulnerability]]> ZDI-CAN-11429 http://www.zerodayinitiative.com/advisories/ZDI-20-1417/ Wed, 09 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1416: X.Org Server XkbSetNames Out-Of-Bounds Access Privilege Escalation Vulnerability]]> ZDI-CAN-11428 http://www.zerodayinitiative.com/advisories/ZDI-20-1416/ Wed, 09 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1415: Foxit Reader XFA Template Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11727 http://www.zerodayinitiative.com/advisories/ZDI-20-1415/ Wed, 09 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1414: Microsoft PowerPoint PPTX File Use-After-Free Remote Code Execution Vulnerability]]> ZDI-CAN-11894 http://www.zerodayinitiative.com/advisories/ZDI-20-1414/ Wed, 09 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1413: Microsoft Chakra LinearScan Memory Corruption Remote Code Execution Vulnerability]]> ZDI-CAN-11906 http://www.zerodayinitiative.com/advisories/ZDI-20-1413/ Wed, 09 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1412: Microsoft SharePoint Site Import Directory Traversal Remote Code Execution Vulnerability]]> ZDI-CAN-11873 http://www.zerodayinitiative.com/advisories/ZDI-20-1412/ Wed, 09 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1411: Apple macOS libFontParser TTF Font Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11588 http://www.zerodayinitiative.com/advisories/ZDI-20-1411/ Wed, 09 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1410: Apple macOS KTX Image DecodeRow Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11307 http://www.zerodayinitiative.com/advisories/ZDI-20-1410/ Wed, 09 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1409: Apple macOS process_token_BlitLibSetup3D Out-Of-Bounds Access Privilege Escalation Vulnerability]]> ZDI-CAN-11122 http://www.zerodayinitiative.com/advisories/ZDI-20-1409/ Wed, 09 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1408: Apple macOS process_token_BlitLibSetup2D Out-Of-Bounds Access Privilege Escalation Vulnerability]]> ZDI-CAN-11123 http://www.zerodayinitiative.com/advisories/ZDI-20-1408/ Wed, 09 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1407: Apple macOS process_token_GenerateMipmaps Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability]]> ZDI-CAN-11124 http://www.zerodayinitiative.com/advisories/ZDI-20-1407/ Wed, 09 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1406: Apple macOS CoreText MorxLigatureSubtableBuilder TTF Parsing Out-of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11828 http://www.zerodayinitiative.com/advisories/ZDI-20-1406/ Tue, 08 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1405: Apple macOS libFontParser TwOFFStream TTF Parsing Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11801 http://www.zerodayinitiative.com/advisories/ZDI-20-1405/ Tue, 08 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1404: Apple macOS libFontParser TTF Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11598 http://www.zerodayinitiative.com/advisories/ZDI-20-1404/ Tue, 08 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1403: Apple macOS Kernel Command 0x10007 Out-Of-Bounds Write Privilege Escalation Vulnerability]]> ZDI-CAN-11209 http://www.zerodayinitiative.com/advisories/ZDI-20-1403/ Tue, 08 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1402: Apple macOS Kernel Command 0x10006 Out-Of-Bounds Write Privilege Escalation Vulnerability]]> ZDI-CAN-11208 http://www.zerodayinitiative.com/advisories/ZDI-20-1402/ Tue, 08 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1401: Apple macOS Kernel Command 0x10005 Out-Of-Bounds Write Privilege Escalation Vulnerability]]> ZDI-CAN-11207 http://www.zerodayinitiative.com/advisories/ZDI-20-1401/ Tue, 08 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1400: (0Day) Realtek RTL8811AU Wi-Fi Driver rtwlane Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-10758 http://www.zerodayinitiative.com/advisories/ZDI-20-1400/ Mon, 07 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1399: (0Day) Realtek RTL8811AU Wi-Fi Driver rtwlanu Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-10715 http://www.zerodayinitiative.com/advisories/ZDI-20-1399/ Mon, 07 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1398: Microsoft SharePoint DataFormWebPart Server-Side Include Information Disclosure Vulnerability]]> ZDI-CAN-11267 http://www.zerodayinitiative.com/advisories/ZDI-20-1398/ Fri, 04 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1397: Arcserve D2D getNews XML External Entity Processing Information Disclosure Vulnerability]]> ZDI-CAN-11103 http://www.zerodayinitiative.com/advisories/ZDI-20-1397/ Fri, 04 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1396: Apple macOS AudioCodecs AAC Decoding Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11507 http://www.zerodayinitiative.com/advisories/ZDI-20-1396/ Fri, 04 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1395: Apple macOS powerd Uninitialized Memory Information Disclosure Vulnerability]]> ZDI-CAN-11183 http://www.zerodayinitiative.com/advisories/ZDI-20-1395/ Fri, 04 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1394: Apple Safari TextNode Use-After-Free Information Disclosure Vulnerability]]> ZDI-CAN-11498 http://www.zerodayinitiative.com/advisories/ZDI-20-1394/ Thu, 03 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1393: Apple macOS libnetworkextension ne_filter_protocol_remove_input_handler Use-After-Free Remote Code Execution Vulnerability]]> ZDI-CAN-11457 http://www.zerodayinitiative.com/advisories/ZDI-20-1393/ Thu, 03 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1392: Apple macOS AudioCodecs Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11235 http://www.zerodayinitiative.com/advisories/ZDI-20-1392/ Thu, 03 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1391: Apple macOS AudioToolboxCore Wave Header Parsing Sign Extension Remote Code Execution Vulnerability]]> ZDI-CAN-11189 http://www.zerodayinitiative.com/advisories/ZDI-20-1391/ Thu, 03 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1390: Apple Safari RenderObject Use-After-Free Remote Code Execution Vulnerability]]> ZDI-CAN-11125 http://www.zerodayinitiative.com/advisories/ZDI-20-1390/ Thu, 03 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1389: Apple macOS CoreGraphics JBIG2Stream Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11210 http://www.zerodayinitiative.com/advisories/ZDI-20-1389/ Thu, 03 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1388: McAfee Total Protection Junction Privilege Escalation Vulnerability]]> ZDI-CAN-11575 http://www.zerodayinitiative.com/advisories/ZDI-20-1388/ Tue, 01 Dec 2020 00:00:00 -0600 <![CDATA[ZDI-20-1387: Trend Micro OfficeScan Improper Access Control Information Disclosure Vulnerability]]> ZDI-CAN-11583 http://www.zerodayinitiative.com/advisories/ZDI-20-1387/ Fri, 27 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1386: Trend Micro OfficeScan Improper Access Control Information Disclosure Vulnerability]]> ZDI-CAN-11582 http://www.zerodayinitiative.com/advisories/ZDI-20-1386/ Fri, 27 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1385: VMware ESXi SLP Use-After-Free Privilege Escalation Vulnerability]]> ZDI-CAN-12409 http://www.zerodayinitiative.com/advisories/ZDI-20-1385/ Wed, 25 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1384: Fuji Electric V-Server Lite VPR File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11353 http://www.zerodayinitiative.com/advisories/ZDI-20-1384/ Wed, 25 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1383: SaltStack Salt rest_cherrypy ssh_remote_port_forwards Command Injection Remote Code Execution Vulnerability]]> ZDI-CAN-11173 http://www.zerodayinitiative.com/advisories/ZDI-20-1383/ Tue, 24 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1382: SaltStack Salt rest_cherrypy ssh_port Command Injection Remote Code Execution Vulnerability]]> ZDI-CAN-11172 http://www.zerodayinitiative.com/advisories/ZDI-20-1382/ Tue, 24 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1381: SaltStack Salt rest_cherrypy ssh_options Command Injection Remote Code Execution Vulnerability]]> ZDI-CAN-11169 http://www.zerodayinitiative.com/advisories/ZDI-20-1381/ Tue, 24 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1380: SaltStack Salt rest_cherrypy tgt Command Injection Remote Code Execution Vulnerability]]> ZDI-CAN-11167 http://www.zerodayinitiative.com/advisories/ZDI-20-1380/ Tue, 24 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1379: SaltStack Salt rest_cherrypy ssh_priv Command Injection Remote Code Execution Vulnerability]]> ZDI-CAN-11143 http://www.zerodayinitiative.com/advisories/ZDI-20-1379/ Tue, 24 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1378: Trend Micro ServerProtect ioctlMod Heap-based Buffer Overflow Privilege Escalation Vulnerability]]> ZDI-CAN-11064 http://www.zerodayinitiative.com/advisories/ZDI-20-1378/ Tue, 24 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1377: VMware ESXi SLP Use-After-Free Remote Code Execution Vulnerability]]> ZDI-CAN-12190 http://www.zerodayinitiative.com/advisories/ZDI-20-1377/ Mon, 23 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1376: Trend Micro Apex One Improper Access Control Information Disclosure Vulnerability]]> ZDI-CAN-11571 http://www.zerodayinitiative.com/advisories/ZDI-20-1376/ Sun, 22 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1375: Trend Micro Apex One Improper Access Control Information Disclosure Vulnerability]]> ZDI-CAN-11237 http://www.zerodayinitiative.com/advisories/ZDI-20-1375/ Sun, 22 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1374: Trend Micro Apex One Improper Access Control Information Disclosure Vulnerability]]> ZDI-CAN-11236 http://www.zerodayinitiative.com/advisories/ZDI-20-1374/ Sun, 22 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1373: Microsoft Windows WebM Video Parsing Uninitialized Pointer Remote Code Execution Vulnerability]]> ZDI-CAN-12020 http://www.zerodayinitiative.com/advisories/ZDI-20-1373/ Sun, 22 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1372: Linux Kernel Performance Counters Race Condition Privilege Escalation Vulnerability]]> ZDI-CAN-11510 http://www.zerodayinitiative.com/advisories/ZDI-20-1372/ Sun, 22 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1371: Microsoft Windows DirectComposition Uninitialized Pointer Privilege Escalation Vulnerability]]> ZDI-CAN-11867 http://www.zerodayinitiative.com/advisories/ZDI-20-1371/ Wed, 11 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1370: Microsoft Chakra Array Iterator Type Confusion Remote Code Execution Vulnerability]]> ZDI-CAN-11871 http://www.zerodayinitiative.com/advisories/ZDI-20-1370/ Wed, 11 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1369: Microsoft Internet Explorer array Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11875 http://www.zerodayinitiative.com/advisories/ZDI-20-1369/ Wed, 11 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1368: Microsoft Internet Explorer array Use-After-Free Remote Code Execution Vulnerability]]> ZDI-CAN-11874 http://www.zerodayinitiative.com/advisories/ZDI-20-1368/ Wed, 11 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1367: Microsoft Excel XLS File Parsing Double Free Remote Code Execution Vulnerability]]> ZDI-CAN-11518 http://www.zerodayinitiative.com/advisories/ZDI-20-1367/ Wed, 11 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1366: Microsoft Windows Print Spooler Directory Junction Denial-of-Service Vulnerability]]> ZDI-CAN-11796 http://www.zerodayinitiative.com/advisories/ZDI-20-1366/ Wed, 11 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1365: Microsoft Windows bindflt Driver Missing Authentication Privilege Escalation Vulnerability]]> ZDI-CAN-11361 http://www.zerodayinitiative.com/advisories/ZDI-20-1365/ Wed, 11 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1364: SAP 3D Visual Enterprise Viewer HPGL File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11866 http://www.zerodayinitiative.com/advisories/ZDI-20-1364/ Wed, 11 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1363: Cisco WebEx Network Recording Player ARF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-11175 http://www.zerodayinitiative.com/advisories/ZDI-20-1363/ Tue, 10 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1362: Cisco WebEx Network Recording Player ARF File Parsing Uninitialized Pointer Remote Code Execution Vulnerability]]> ZDI-CAN-11176 http://www.zerodayinitiative.com/advisories/ZDI-20-1362/ Tue, 10 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1361: Cisco WebEx Network Recording Player ARF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11133 http://www.zerodayinitiative.com/advisories/ZDI-20-1361/ Tue, 10 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1360: WECON PLC Editor WCP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-11187 http://www.zerodayinitiative.com/advisories/ZDI-20-1360/ Tue, 10 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1359: WECON PLC Editor WCP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-11186 http://www.zerodayinitiative.com/advisories/ZDI-20-1359/ Tue, 10 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1358: WECON PLC Editor WCP File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-11185 http://www.zerodayinitiative.com/advisories/ZDI-20-1358/ Tue, 10 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1357: Adobe Acrobat Reader DC AVDocumentLocal Use-After-Free Information Disclosure Vulnerability]]> ZDI-CAN-12015 http://www.zerodayinitiative.com/advisories/ZDI-20-1357/ Tue, 10 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1356: Adobe Acrobat Pro DC PDF Export Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11958 http://www.zerodayinitiative.com/advisories/ZDI-20-1356/ Tue, 10 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1355: Adobe Acrobat Pro DC PDF Export Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11957 http://www.zerodayinitiative.com/advisories/ZDI-20-1355/ Tue, 10 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1354: Adobe Acrobat Reader DC ID Parameter Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11540 http://www.zerodayinitiative.com/advisories/ZDI-20-1354/ Tue, 10 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1353: WECON LeviStudioU HSC File Parsing CharSize Attribute Stack-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-11100 http://www.zerodayinitiative.com/advisories/ZDI-20-1353/ Tue, 10 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1352: WECON LeviStudioU HFT File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-11098 http://www.zerodayinitiative.com/advisories/ZDI-20-1352/ Tue, 10 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1351: WECON LeviStudioU HFT File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-11097 http://www.zerodayinitiative.com/advisories/ZDI-20-1351/ Tue, 10 Nov 2020 00:00:00 -0600 <![CDATA[ZDI-20-1350: Foxit Studio Photo NEF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11488 http://www.zerodayinitiative.com/advisories/ZDI-20-1350/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1349: Foxit Studio Photo CR2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11434 http://www.zerodayinitiative.com/advisories/ZDI-20-1349/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1348: Foxit Studio Photo SR2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11433 http://www.zerodayinitiative.com/advisories/ZDI-20-1348/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1347: Foxit Studio Photo CMP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11432 http://www.zerodayinitiative.com/advisories/ZDI-20-1347/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1346: Foxit Studio Photo CR2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11358 http://www.zerodayinitiative.com/advisories/ZDI-20-1346/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1345: Foxit Studio Photo ARW File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11357 http://www.zerodayinitiative.com/advisories/ZDI-20-1345/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1344: Foxit Studio Photo CMP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11356 http://www.zerodayinitiative.com/advisories/ZDI-20-1344/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1343: Foxit Studio Photo CR2 File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11335 http://www.zerodayinitiative.com/advisories/ZDI-20-1343/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1342: Foxit Studio Photo CR2 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11333 http://www.zerodayinitiative.com/advisories/ZDI-20-1342/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1341: Foxit Studio Photo CR2 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11332 http://www.zerodayinitiative.com/advisories/ZDI-20-1341/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1340: Foxit Studio Photo CMP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11337 http://www.zerodayinitiative.com/advisories/ZDI-20-1340/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1339: Foxit Studio Photo CMP File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11336 http://www.zerodayinitiative.com/advisories/ZDI-20-1339/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1338: Foxit Studio Photo NEF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability]]> ZDI-CAN-11334 http://www.zerodayinitiative.com/advisories/ZDI-20-1338/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1337: Foxit Studio Photo CR2 File Parsing Memory Corruption Remote Code Execution Vulnerability]]> ZDI-CAN-11230 http://www.zerodayinitiative.com/advisories/ZDI-20-1337/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1336: Foxit Studio Photo EPS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11259 http://www.zerodayinitiative.com/advisories/ZDI-20-1336/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1335: Foxit Studio Photo EZI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11247 http://www.zerodayinitiative.com/advisories/ZDI-20-1335/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1334: Foxit Studio Photo ARW File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability]]> ZDI-CAN-11196 http://www.zerodayinitiative.com/advisories/ZDI-20-1334/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1333: Foxit Studio Photo EPS File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11195 http://www.zerodayinitiative.com/advisories/ZDI-20-1333/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1332: Foxit Studio Photo NEF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11194 http://www.zerodayinitiative.com/advisories/ZDI-20-1332/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1331: Foxit Studio Photo NEF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11193 http://www.zerodayinitiative.com/advisories/ZDI-20-1331/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1330: Foxit Studio Photo NEF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11192 http://www.zerodayinitiative.com/advisories/ZDI-20-1330/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1329: Foxit Studio Photo EZIX channel id Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11197 http://www.zerodayinitiative.com/advisories/ZDI-20-1329/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1328: Micro Focus Operations Bridge Manager SAMDownloadServlet Deserialization Of Untrusted Data Privilege Escalation Vulnerability]]> ZDI-CAN-11198 http://www.zerodayinitiative.com/advisories/ZDI-20-1328/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1327: Micro Focus Operations Bridge Manager RegistrationServlet Deserialization Of Untrusted Data Privilege Escalation Vulnerability]]> ZDI-CAN-11203 http://www.zerodayinitiative.com/advisories/ZDI-20-1327/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1326: Micro Focus Operations Bridge Manager Service Incorrect Permission Assignment Privilege Escalation Vulnerability]]> ZDI-CAN-11204 http://www.zerodayinitiative.com/advisories/ZDI-20-1326/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1325: Micro Focus Operations Bridge Manager GenericAdapterService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11417 http://www.zerodayinitiative.com/advisories/ZDI-20-1325/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1324: Micro Focus Operations Bridge Manager LicensingService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11416 http://www.zerodayinitiative.com/advisories/ZDI-20-1324/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1323: Micro Focus Operations Bridge Manager AutomationMappingService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11415 http://www.zerodayinitiative.com/advisories/ZDI-20-1323/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1322: Micro Focus Operations Bridge Manager ResourceManagementService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11414 http://www.zerodayinitiative.com/advisories/ZDI-20-1322/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1321: Micro Focus Operations Bridge Manager MultiTenancyService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11413 http://www.zerodayinitiative.com/advisories/ZDI-20-1321/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1320: Micro Focus Operations Bridge Manager CITService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11412 http://www.zerodayinitiative.com/advisories/ZDI-20-1320/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1319: Micro Focus Operations Bridge Manager LDAPService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11411 http://www.zerodayinitiative.com/advisories/ZDI-20-1319/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1318: Micro Focus Operations Bridge Manager SnapshotService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11410 http://www.zerodayinitiative.com/advisories/ZDI-20-1318/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1317: Micro Focus Operations Bridge Manager ClassModelService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11409 http://www.zerodayinitiative.com/advisories/ZDI-20-1317/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1316: Micro Focus Operations Bridge Manager PermissionsService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11408 http://www.zerodayinitiative.com/advisories/ZDI-20-1316/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1315: Micro Focus Operations Bridge Manager CommonService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11407 http://www.zerodayinitiative.com/advisories/ZDI-20-1315/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1314: Micro Focus Operations Bridge Manager ImpactService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11406 http://www.zerodayinitiative.com/advisories/ZDI-20-1314/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1313: Micro Focus Operations Bridge Manager SchedulerService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11405 http://www.zerodayinitiative.com/advisories/ZDI-20-1313/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1312: Micro Focus Operations Bridge Manager LocationService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11404 http://www.zerodayinitiative.com/advisories/ZDI-20-1312/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1311: Micro Focus Operations Bridge Manager BundleService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11403 http://www.zerodayinitiative.com/advisories/ZDI-20-1311/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1310: Micro Focus Operations Bridge Manager HistoryService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11402 http://www.zerodayinitiative.com/advisories/ZDI-20-1310/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1309: Micro Focus Operations Bridge Manager CIService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11401 http://www.zerodayinitiative.com/advisories/ZDI-20-1309/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1308: Micro Focus Operations Bridge Manager DataAcquisitionService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11400 http://www.zerodayinitiative.com/advisories/ZDI-20-1308/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1307: Micro Focus Operations Bridge Manager SoftwareLibraryService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11399 http://www.zerodayinitiative.com/advisories/ZDI-20-1307/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1306: Micro Focus Operations Bridge Manager ServiceDiscoveryService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11398 http://www.zerodayinitiative.com/advisories/ZDI-20-1306/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1305: Micro Focus Operations Bridge Manager DiscoveryService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11397 http://www.zerodayinitiative.com/advisories/ZDI-20-1305/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1304: Micro Focus Operations Bridge Manager MailService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11396 http://www.zerodayinitiative.com/advisories/ZDI-20-1304/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1303: Micro Focus Operations Bridge Manager RelatedCIsService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11395 http://www.zerodayinitiative.com/advisories/ZDI-20-1303/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1302: Micro Focus Operations Bridge Manager FolderService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11394 http://www.zerodayinitiative.com/advisories/ZDI-20-1302/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1301: Micro Focus Operations Bridge Manager PatternService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11393 http://www.zerodayinitiative.com/advisories/ZDI-20-1301/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1300: Micro Focus Operations Bridge Manager CMSImagesService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11392 http://www.zerodayinitiative.com/advisories/ZDI-20-1300/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1299: Micro Focus Operations Bridge Manager ReportService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11391 http://www.zerodayinitiative.com/advisories/ZDI-20-1299/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1298: Micro Focus Operations Bridge Manager TopologyService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11390 http://www.zerodayinitiative.com/advisories/ZDI-20-1298/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1297: Micro Focus Operations Bridge Manager WatchServerAPI Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11389 http://www.zerodayinitiative.com/advisories/ZDI-20-1297/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1296: Micro Focus Operations Bridge Manager BusinessModelFacadeForGui Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11388 http://www.zerodayinitiative.com/advisories/ZDI-20-1296/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1295: Micro Focus Operations Bridge Manager FoldersFacade Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11387 http://www.zerodayinitiative.com/advisories/ZDI-20-1295/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1294: Micro Focus Operations Bridge Manager SchedulerFacadeForGui Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11386 http://www.zerodayinitiative.com/advisories/ZDI-20-1294/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1293: Micro Focus Operations Bridge Manager PackageFacadeForGui Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11385 http://www.zerodayinitiative.com/advisories/ZDI-20-1293/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1292: Micro Focus Operations Bridge Manager CorrelationRunnerFacade Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11384 http://www.zerodayinitiative.com/advisories/ZDI-20-1292/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1291: Micro Focus Operations Bridge Manager CorrelationFacadeForGui Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11383 http://www.zerodayinitiative.com/advisories/ZDI-20-1291/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1290: Micro Focus Operations Bridge Manager CategoryFacadeForGui Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11382 http://www.zerodayinitiative.com/advisories/ZDI-20-1290/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1289: Micro Focus Operations Bridge Manager CmdbOperationExecuterService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11381 http://www.zerodayinitiative.com/advisories/ZDI-20-1289/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1288: Micro Focus Operations Bridge Manager SecurityService Deserialization Of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11200 http://www.zerodayinitiative.com/advisories/ZDI-20-1288/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1287: Micro Focus Operations Bridge Manager diagnostics Use of Hard-coded Credentials Remote Code Execution Vulnerability]]> ZDI-CAN-11201 http://www.zerodayinitiative.com/advisories/ZDI-20-1287/ Wed, 28 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1286: Trend Micro Antivirus for Mac Error Message Information Disclosure Vulnerability]]> ZDI-CAN-11047 http://www.zerodayinitiative.com/advisories/ZDI-20-1286/ Mon, 26 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1285: Trend Micro Antivirus for Mac Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability]]> ZDI-CAN-11045 http://www.zerodayinitiative.com/advisories/ZDI-20-1285/ Mon, 26 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1284: WECON LeviStudioU XML External Entity Processing Information Disclosure Vulnerability]]> ZDI-CAN-10607 http://www.zerodayinitiative.com/advisories/ZDI-20-1284/ Thu, 22 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1283: Oracle E-Business Suite ozfVendorLov SQL Injection Information Disclosure Vulnerability]]> ZDI-CAN-11687 http://www.zerodayinitiative.com/advisories/ZDI-20-1283/ Thu, 22 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1282: Oracle WebLogic Server T3 Protocol Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11829 http://www.zerodayinitiative.com/advisories/ZDI-20-1282/ Thu, 22 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1281: Oracle VirtualBox Shader Bytecode Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11679 http://www.zerodayinitiative.com/advisories/ZDI-20-1281/ Thu, 22 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1280: Oracle VirtualBox Shader Bytecode Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11677 http://www.zerodayinitiative.com/advisories/ZDI-20-1280/ Thu, 22 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1279: Oracle VirtualBox Shader Bytecode Type Confusion Information Disclosure Vulnerability]]> ZDI-CAN-11676 http://www.zerodayinitiative.com/advisories/ZDI-20-1279/ Thu, 22 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1278: Oracle VirtualBox Shader Bytecode Out-Of-Bounds Read Information Disclosure Vulnerability]]> ZDI-CAN-11678 http://www.zerodayinitiative.com/advisories/ZDI-20-1278/ Thu, 22 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1277: Oracle WebLogic Server T3 Protocol Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11591 http://www.zerodayinitiative.com/advisories/ZDI-20-1277/ Thu, 22 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1276: Oracle WebLogic Server IIOP Protocol Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11453 http://www.zerodayinitiative.com/advisories/ZDI-20-1276/ Thu, 22 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1275: Oracle WebLogic Server T3 Protocol Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-11305 http://www.zerodayinitiative.com/advisories/ZDI-20-1275/ Thu, 22 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1274: Oracle WebLogic Server IIOP Protocol Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-10818 http://www.zerodayinitiative.com/advisories/ZDI-20-1274/ Thu, 22 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1273: Oracle WebLogic Server T3 Protocol Deserialization of Untrusted Data Remote Code Execution Vulnerability]]> ZDI-CAN-10968 http://www.zerodayinitiative.com/advisories/ZDI-20-1273/ Thu, 22 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1272: Adobe Illustrator PDF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability]]> ZDI-CAN-11477 http://www.zerodayinitiative.com/advisories/ZDI-20-1272/ Thu, 22 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1271: Adobe Illustrator PDF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability]]> ZDI-CAN-11474 http://www.zerodayinitiative.com/advisories/ZDI-20-1271/ Thu, 22 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1270: Adobe Illustrator PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11346 http://www.zerodayinitiative.com/advisories/ZDI-20-1270/ Thu, 22 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1269: VMware ESXi SLP Use-After-Free Remote Code Execution Vulnerability]]> ZDI-CAN-11563 http://www.zerodayinitiative.com/advisories/ZDI-20-1269/ Tue, 20 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1268: VMware Workstation BDOOR_CMD_PATCH_ACPI_TABLES Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability]]> ZDI-CAN-11228 http://www.zerodayinitiative.com/advisories/ZDI-20-1268/ Tue, 20 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1267: VMware Workstation BDOOR_CMD_PATCH_ACPI_TABLES Time-Of-Check Time-Of-Use Information Disclosure Vulnerability]]> ZDI-CAN-11227 http://www.zerodayinitiative.com/advisories/ZDI-20-1267/ Tue, 20 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1266: SAP 3D Visual Enterprise Viewer JT File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability]]> ZDI-CAN-11705 http://www.zerodayinitiative.com/advisories/ZDI-20-1266/ Mon, 19 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1265: SAP 3D Visual Enterprise Viewer SVG File XML External Entity Processing Information Disclosure Vulnerability]]> ZDI-CAN-11243 http://www.zerodayinitiative.com/advisories/ZDI-20-1265/ Mon, 19 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1264: SAP 3D Visual Enterprise Viewer PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11467 http://www.zerodayinitiative.com/advisories/ZDI-20-1264/ Mon, 19 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1263: SAP 3D Visual Enterprise Viewer PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11462 http://www.zerodayinitiative.com/advisories/ZDI-20-1263/ Mon, 19 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1262: Advantech R-SeeNet device_position device_id SQL Injection Information Disclosure Vulnerability]]> ZDI-CAN-11373 http://www.zerodayinitiative.com/advisories/ZDI-20-1262/ Mon, 19 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1261: Advantech WebAccess/SCADA WADashboard External Control of File Path Remote Code Execution Vulnerability]]> ZDI-CAN-11262 http://www.zerodayinitiative.com/advisories/ZDI-20-1261/ Mon, 19 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1260: Apple macOS process_token_SetFence Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability]]> ZDI-CAN-10924 http://www.zerodayinitiative.com/advisories/ZDI-20-1260/ Mon, 19 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1259: Apple macOS process_token_SetFence Time-Of-Check Time-Of-Use Privilege Escalation Vulnerability]]> ZDI-CAN-10823 http://www.zerodayinitiative.com/advisories/ZDI-20-1259/ Mon, 19 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1258: Microsoft Windows Camera Codec Pack Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11981 http://www.zerodayinitiative.com/advisories/ZDI-20-1258/ Mon, 19 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1257: Microsoft Windows Media Player HEVC Stream Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11980 http://www.zerodayinitiative.com/advisories/ZDI-20-1257/ Mon, 19 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1256: Microsoft Excel XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability]]> ZDI-CAN-11602 http://www.zerodayinitiative.com/advisories/ZDI-20-1256/ Mon, 19 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1255: Microsoft Excel XLS File Parsing Uninitialized Variable Remote Code Execution Vulnerability]]> ZDI-CAN-11613 http://www.zerodayinitiative.com/advisories/ZDI-20-1255/ Mon, 19 Oct 2020 00:00:00 -0500 <![CDATA[ZDI-20-1254: Microsoft Windows Group Policy Client Service Link Resolution Privilege Escalation Vulnerability]]> ZDI-CAN-11622 http://www.zerodayinitiative.com/advisories/ZDI-20-1254/ Mon, 19 Oct 2020 00:00:00 -0500