CVSS: 9.8EPSS: 0%CPEs: -EXPL: 2CVE-2024-38812 – Heap-overflow vulnerability
https://notcve.org/view.php?id=CVE-2024-38812
A malicious actor with network access to vCenter Server may trigger this vulnerability by sending a specially crafted network packet potentially leading to remote code execution. • https://github.com/maybeheisenberg/CVE-2024-38812 https://github.com/groshi/CVE-2024-38812-POC-5-Hands-Private https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/24968 • CWE-122: Heap-based Buffer Overflow •
CVSS: 3.3EPSS: 0%CPEs: -EXPL: 0CVE-2024-8836 – PDF-XChange Editor TIF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-8836
This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. ... An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. •
CVSS: 7.8EPSS: 0%CPEs: -EXPL: 0CVE-2024-8811 – WinZip Mark-of-the-Web Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2024-8811
This vulnerability allows remote attackers to bypass the Mark-of-the-Web protection mechanism on affected installations of WinZip. ... An attacker can leverage this vulnerability to execute arbitrary code in the context of the current user. •
CVSS: 7.8EPSS: 0%CPEs: -EXPL: 0CVE-2024-8814 – PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-8814
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. ... An attacker can leverage this vulnerability to execute code in the context of the current process. •
CVSS: 3.3EPSS: 0%CPEs: -EXPL: 0CVE-2024-8841 – PDF-XChange Editor PDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2024-8841
This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. ... An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. •