Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file file 4.4 vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2021-43753
Adobe Lightroom versions 4.4 (and previous versions) are affected by a use-after-free vulnerability in the processing of parsing TIF files that could result in privilege escalation. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
Adobe Lightroom
7.8
CVSSv3
CVE-2023-22809
In Sudo prior to 1.9.12p2, the sudoedit (aka -e) feature mishandles extra arguments passed in the user-provided environment variables (SUDO_EDITOR, VISUAL, and EDITOR), allowing a local malicious user to append arbitrary entries to the list of files to process. This can lead to p...
Sudo Project Sudo 1.9.12
Sudo Project Sudo
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 36
Fedoraproject Fedora 37
Apple Macos
11 Github repositories
7.8
CVSSv3
CVE-2022-4378
A stack overflow flaw was found in the Linux kernel's SYSCTL subsystem in how a user changes certain kernel parameters and variables. This flaw allows a local user to crash or potentially escalate their privileges on the system.
Linux Linux Kernel
7.8
CVSSv3
CVE-2021-40764
Adobe Character Animator version 4.4 (and previous versions) is affected by a memory corruption vulnerability when parsing a M4A file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.
Adobe Character Animator
7.8
CVSSv3
CVE-2021-40763
Adobe Character Animator version 4.4 (and previous versions) is affected by a memory corruption vulnerability when parsing a WAF file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.
Adobe Character Animator
7.8
CVSSv3
CVE-2021-40765
Adobe Character Animator version 4.4 (and previous versions) is affected by a memory corruption vulnerability when parsing a M4A file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability.
Adobe Character Animator
7.8
CVSSv3
CVE-2021-44652
Zoho ManageEngine O365 Manager Plus before Build 4416 allows remote code execution via BCP file overwrite through the ChangeDBAPI component.
Zohocorp Manageengine O365 Manager Plus
Zohocorp Manageengine O365 Manager Plus 4.4
7.8
CVSSv3
CVE-2020-24175
Buffer overflow in Yz1 0.30 and 0.32, as used in IZArc 4.4, ZipGenius 6.3.2.3116, and Explzh (extension) 8.14, allows malicious users to execute arbitrary code via a crafted archive file, related to filename handling.
Yz1 Yz1 0.30
Yz1 Yz1 0.32
7.8
CVSSv3
CVE-2017-0588
A remote code execution vulnerability in id3/ID3.cpp in libstagefright in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote code ex...
Google Android 4.0.1
Google Android 4.0.2
Google Android 4.0.3
Google Android 4.0.4
Google Android 6.0
Google Android 6.0.1
Google Android 5.0
Google Android 5.0.1
Google Android 4.2.2
Google Android 4.3
Google Android 4.3.1
Google Android 4.4
Google Android 7.0
Google Android 7.1.1
Google Android 5.0.2
Google Android 5.1.0
Google Android 4.0
Google Android 4.1
Google Android 4.2
Google Android 4.4.2
Google Android 4.4.4
Google Android 7.1.2
7.8
CVSSv3
CVE-2017-0592
A remote code execution vulnerability in FLACExtractor.cpp in libstagefright in Mediaserver could enable an attacker using a specially crafted file to cause memory corruption during media file and data processing. This issue is rated as Critical due to the possibility of remote c...
Google Android 7.1.2
Google Android 7.0
Google Android 7.1.0
Google Android 4.0.4
Google Android 4.1
Google Android 4.1.2
Google Android 4.2
Google Android 5.0.2
Google Android 5.1
Google Android 5.1.0
Google Android 5.1.1
Google Android 4.4
Google Android 4.4.1
Google Android 4.4.2
Google Android 4.4.3
Google Android 4.4.4
Google Android 7.1.1
Google Android 6.0.1
Google Android 5.0.1
Google Android 4.0
Google Android 4.0.2
Google Android 4.2.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »