CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-23532
https://notcve.org/view.php?id=CVE-2023-23532
This issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, iOS 15.7.6 and iPadOS 15.7.6. An app may be able to break out of its sandbox. • https://support.apple.com/en-us/HT213670 https://support.apple.com/en-us/HT213676 https://support.apple.com/en-us/HT213765 •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-25903 – Adobe Dimension USDZ files Integer Overflow or Wraparound Arbitrary code execution
https://notcve.org/view.php?id=CVE-2023-25903
Adobe Dimension versions 3.4.7 (and earlier) is affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. • https://helpx.adobe.com/security/products/dimension/apsb23-20.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-25904 – Adobe Dimension Out-of-bounds Read USDZ file Arbitrary code execution
https://notcve.org/view.php?id=CVE-2023-25904
Adobe Dimension versions 3.4.7 (and earlier) is affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. • https://helpx.adobe.com/security/products/dimension/apsb23-20.html • CWE-125: Out-of-bounds Read •
CVSS: 9.8EPSS: 0%CPEs: 4EXPL: 0CVE-2022-4126 – Use of Default Password
https://notcve.org/view.php?id=CVE-2022-4126
Use of Default Password vulnerability in ABB RCCMD on Windows, Linux, MacOS allows Try Common or Default Usernames and Passwords.This issue affects RCCMD: before 4.40 230207. • https://search.abb.com/library/Download.aspx?DocumentID=2CMT006099_EN&LanguageCode=en&DocumentPartId=&Action=Launch • CWE-287: Improper Authentication CWE-1393: Use of Default Password •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2023-25908 – Adobe Photoshop SVG file Use After Free Arbitrary code execution
https://notcve.org/view.php?id=CVE-2023-25908
Adobe Photoshop versions 23.5.3 (and earlier) and 24.1.1 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. • https://helpx.adobe.com/security/products/photoshop/apsb23-23.html • CWE-416: Use After Free •