CVE-2023-31200

PTC Vuforia Studio does not require a token; this could allow an attacker with local access to perform a cross-site request forgery attack or a replay attack.Read More ...

Continue Reading

June 08, 2023

CVE-2023-29502

Before importing a project into Vuforia, a user could modify the “resourceDirectory” attribute in the appConfig.json file to be a different path.Read More ...

Continue Reading

June 08, 2023

CVE-2023-2904

The External Visitor Manager portal of HID’s SAFE versions 5.8.0 through 5.11.3 are vulnerable to manipulation within web fields in the application programmable interface (API). An attacker coul ...

Continue Reading

June 08, 2023

CVE-2023-27881

A user could use the “Upload Resource” functionality to upload files to any location on the disk.Read More ...

Continue Reading

June 08, 2023

CVE-2023-33595

CPython v3.12.0 alpha 7 was discovered to contain a heap use-after-free via the function ascii_decode at /Objects/unicodeobject.c.Read More ...

Continue Reading

June 07, 2023

CVE-2023-33284

Marval MSM through 14.19.0.12476 and 15.0 has a Remote Code Execution vulnerability. A remote attacker authenticated as any user is able to execute code in context of the web server.Read More ...

Continue Reading

June 07, 2023

CVE-2023-33865

RenderDoc through 1.26 allows local privilege escalation via a symlink attack.Read More ...

Continue Reading

June 07, 2023

CVE-2023-33282

Marval MSM through 14.19.0.12476 and 15.0 has a System account with default credentials. A remote attacker is able to login and create a valid session. This makes it possible to make backend calls to ...

Continue Reading

June 07, 2023

1 652 653 654 655 656 3,551

Back to Main
Subscribe for the latest news: