CVE List - 2023 / April

Showing 901 - 1000 of 2302 CVEs for April 2023 (Page 10 of 24)

Back to List Previous Next

CVE ID	Date	Title
CVE-2023-28267	2023-04-11	Remote Desktop Protocol Client Information Disclosure Vulnerability
CVE-2023-28244	2023-04-11	Windows Kerberos Elevation of Privilege Vulnerability
CVE-2023-28268	2023-04-11	Netlogon RPC Elevation of Privilege Vulnerability
CVE-2023-28269	2023-04-11	Windows Boot Manager Security Feature Bypass Vulnerability
CVE-2023-28246	2023-04-11	Windows Registry Elevation of Privilege Vulnerability
CVE-2023-28270	2023-04-11	Windows Lock Screen Security Feature Bypass Vulnerability
CVE-2023-28247	2023-04-11	Windows Network File System Information Disclosure Vulnerability
CVE-2023-28248	2023-04-11	Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-28271	2023-04-11	Windows Kernel Memory Information Disclosure Vulnerability
CVE-2023-28272	2023-04-11	Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-28249	2023-04-11	Windows Boot Manager Security Feature Bypass Vulnerability
CVE-2023-28250	2023-04-11	Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability
CVE-2023-28273	2023-04-11	Windows Clip Service Elevation of Privilege Vulnerability
CVE-2023-28274	2023-04-11	Windows Win32k Elevation of Privilege Vulnerability
CVE-2023-28252	2023-04-11	Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2023-28275	2023-04-11	Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2023-28253	2023-04-11	Windows Kernel Information Disclosure Vulnerability
CVE-2023-28276	2023-04-11	Windows Group Policy Security Feature Bypass Vulnerability
CVE-2023-28254	2023-04-11	Windows DNS Server Remote Code Execution Vulnerability
CVE-2023-28277	2023-04-11	Windows DNS Server Information Disclosure Vulnerability
CVE-2023-28255	2023-04-11	Windows DNS Server Remote Code Execution Vulnerability
CVE-2023-28278	2023-04-11	Windows DNS Server Remote Code Execution Vulnerability
CVE-2023-28256	2023-04-11	Windows DNS Server Remote Code Execution Vulnerability
CVE-2023-28260	2023-04-11	.NET DLL Hijacking Remote Code Execution Vulnerability
CVE-2023-28262	2023-04-11	Visual Studio Elevation of Privilege Vulnerability
CVE-2023-28263	2023-04-11	Visual Studio Information Disclosure Vulnerability
CVE-2023-28293	2023-04-11	Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-28296	2023-04-11	Visual Studio Remote Code Execution Vulnerability
CVE-2023-28299	2023-04-11	Visual Studio Spoofing Vulnerability
CVE-2023-28302	2023-04-11	Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability
CVE-2023-28304	2023-04-11	Microsoft ODBC and OLE DB Remote Code Execution Vulnerability
CVE-2023-28306	2023-04-11	Windows DNS Server Remote Code Execution Vulnerability
CVE-2023-28307	2023-04-11	Windows DNS Server Remote Code Execution Vulnerability
CVE-2023-28308	2023-04-11	Windows DNS Server Remote Code Execution Vulnerability
CVE-2023-28311	2023-04-11	Microsoft Word Remote Code Execution Vulnerability
CVE-2023-28312	2023-04-11	Azure Machine Learning Information Disclosure Vulnerability
CVE-2023-22235	2023-04-12	Adobe InCopy SVG file Use After Free Arbitrary code execution
CVE-2023-28121	2023-04-12	An issue in WooCommerce Payments plugin for WordPress (versions 5.6.1 and lower) allows an unauthenticated attacker to send requests on behalf of an elevated user, like administrator. This allows a...
CVE-2023-29581	2023-04-12	yasm 1.3.0.55.g101bc has a segmentation violation in the function delete_Token at modules/preprocs/nasm/nasm-pp.c. NOTE: although a libyasm application could become unavailable if this were exploited, the vendor's position is that there...
CVE-2022-24350	2023-04-12	An issue was discovered in IhisiSmm in Insyde InsydeH2O with kernel 5.0 through 5.5. IHISI function 0x17 verifies that the output buffer lies within the command buffer but does not...
CVE-2022-47053	2023-04-12	An arbitrary file upload vulnerability in the Digital Assets Manager module of DNN Corp DotNetNuke v7.0.0 to v9.10.2 allows attackers to execute arbitrary code via a crafted SVG file.
CVE-2022-48437	2023-04-12	An issue was discovered in x509/x509_verify.c in LibreSSL before 3.6.1, and in OpenBSD before 7.2 errata 001. x509_verify_ctx_add_chain does not store errors that occur during leaf certificate verification, and therefore...
CVE-2023-1906	2023-04-12	A heap-based buffer overflow issue was discovered in ImageMagick's ImportMultiSpectralQuantum() function in MagickCore/quantum-import.c. An attacker could pass specially crafted file to convert, triggering an out-of-bounds read error, allowing an application...
CVE-2023-1990	2023-04-12	A use-after-free flaw was found in ndlc_remove in drivers/nfc/st-nci/ndlc.c in the Linux Kernel. This flaw could allow an attacker to crash the system due to a race problem.
CVE-2023-1992	2023-04-12	RPCoRDMA dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file
CVE-2023-1993	2023-04-12	LISP dissector large loop in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file
CVE-2023-1994	2023-04-12	GQUIC dissector crash in Wireshark 4.0.0 to 4.0.4 and 3.6.0 to 3.6.12 allows denial of service via packet injection or crafted capture file
CVE-2023-21582	2023-04-12	ZDI-CAN-18255: Adobe Digital Editions PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
CVE-2023-22616	2023-04-12	An issue was discovered in Insyde InsydeH2O with kernel 5.2 through 5.5. The Save State register is not checked before use. The IhisiSmm driver does not check the value of...
CVE-2023-22620	2023-04-12	An issue was discovered in SecurePoint UTM before 12.2.5.1. The firewall's endpoint at /spcgi.cgi allows sessionid information disclosure via an invalid authentication attempt. This can afterwards be used to bypass...
CVE-2023-22897	2023-04-12	An issue was discovered in SecurePoint UTM before 12.2.5.1. The firewall's endpoint at /spcgi.cgi allows information disclosure of memory contents to be achieved by an authenticated user. Essentially, uninitialized data...
CVE-2023-23591	2023-04-12	The Logback component in Terminalfour before 8.3.14.1 allows OS administrators to obtain sensitive information from application server logs when debug logging is enabled. The fixed versions are 8.2.18.7, 8.2.18.2.2, 8.3.11.1,...
CVE-2023-24511	2023-04-12	On affected platforms running Arista EOS with SNMP configured, a specially crafted packet can cause a memory leak in the snmpd process.
CVE-2023-24513	2023-04-12	On affected platforms running Arista CloudEOS a size check bypass issue in the Software Forwarding Engine (Sfe) may allow buffer over reads in later code. Additionally, depending on configured options this may cause a recomputation of the TCP checksum ...
CVE-2023-24545	2023-04-12	On affected platforms running Arista CloudEOS an issue in the Software Forwarding Engine (Sfe) can lead to a potential denial of service attack by sending malformed packets to the switch.
CVE-2023-26371	2023-04-12	Validate Your Inputs \| Out-of-bounds Read (CWE-125)
CVE-2023-26372	2023-04-12	ZDI-CAN-20284: Adobe Dimension USDZ File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
CVE-2023-26373	2023-04-12	Adobe Dimension has an arbitrary address write vulnerability when parsing USDZ files
CVE-2023-26374	2023-04-12	ZDI-CAN-20045: Adobe Dimension USD File Parsing Out-Of-Bounds Read Memory leak Vulnerability
CVE-2023-26375	2023-04-12	ZDI-CAN-20231: Adobe Dimension USD File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
CVE-2023-26376	2023-04-12	ZDI-CAN-20155: Adobe Dimension USD File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
CVE-2023-26377	2023-04-12	ZDI-CAN-20151: Adobe Dimension USD File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
CVE-2023-26378	2023-04-12	ZDI-CAN-20148: Adobe Dimension USD File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
CVE-2023-26379	2023-04-12	ZDI-CAN-20233: Adobe Dimension USD File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
CVE-2023-26380	2023-04-12	ZDI-CAN-20150: Adobe Dimension USD File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
CVE-2023-26381	2023-04-12	ZDI-CAN-20147: Adobe Dimension USD File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
CVE-2023-26382	2023-04-12	ZDI-CAN-20156: Adobe Dimension USD File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
CVE-2023-26383	2023-04-12	ZDI-CAN-20287: Adobe Substance 3D Stager USDA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
CVE-2023-26384	2023-04-12	ZDI-CAN-20279: Adobe Substance 3D Stager USD File Parsing Use-After-Free Remote Code Execution Vulnerability
CVE-2023-26385	2023-04-12	ZDI-CAN-20267: Adobe Substance 3D Stager USD File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
CVE-2023-26386	2023-04-12	ZDI-CAN-20266: Adobe Substance 3D Stager USDC File Parsing Uninitialized Variable Information Disclosure Vulnerability
CVE-2023-26387	2023-04-12	ZDI-CAN-20265: Adobe Substance 3D Stager USDC File Parsing Uninitialized Variable Information Disclosure Vulnerability
CVE-2023-26388	2023-04-12	ZDI-CAN-20286: Adobe Substance 3D Stager USDZ File Parsing Memory Corruption Remote Code Execution Vulnerability
CVE-2023-26389	2023-04-12	ZDI-CAN-20258: Adobe Substance 3D Stager USDC File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
CVE-2023-26390	2023-04-12	ZDI-CAN-20255: Adobe Substance 3D Stager USDA File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
CVE-2023-26391	2023-04-12	ZDI-CAN-20256: Adobe Substance 3D Stager USD File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
CVE-2023-26392	2023-04-12	ZDI-CAN-20235: Adobe Substance 3D Stager USD File Parsing Use-After-Free Remote Code Execution Vulnerability
CVE-2023-26393	2023-04-12	ZDI-CAN-20234: Adobe Substance 3D Stager USD File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
CVE-2023-26394	2023-04-12	ZDI-CAN-20236: Adobe Substance 3D Stager USD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
CVE-2023-26395	2023-04-12	Adobe Acrobat parsing PDF Out-of-bounds Write Arbitrary code execution
CVE-2023-26396	2023-04-12	Adobe Acrobat Reader DC for macOS installer (AcroRdrDC_2200220191_MUI.pkg) contains a local privilege escalation vulnerability.
CVE-2023-26397	2023-04-12	[ZS-VR-22-112] Adobe Acrobat Out-of-bounds Read Memory leak
CVE-2023-26400	2023-04-12	ZDI-CAN-20232: Adobe Dimension USD File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
CVE-2023-26401	2023-04-12	ZDI-CAN-20278: Adobe Dimension USD File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
CVE-2023-26402	2023-04-12	ZDI-CAN-20237: Adobe Substance 3D Stager USD File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
CVE-2023-26403	2023-04-12	ZDI-CAN-20259: Adobe Substance 3D Stager USD File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
CVE-2023-26404	2023-04-12	ZDI-CAN-20143: Adobe Dimension USD File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
CVE-2023-26405	2023-04-12	ZDI-CAN-20712: Object Prototype pollution which leads to API Restrictions Bypass
CVE-2023-26406	2023-04-12	ZDI-CAN-20712: Net.HTTP.request URL restriction bypass
CVE-2023-26407	2023-04-12	ZDI-CAN-20712: Net.HTTP.request Arbitrary Command Execution
CVE-2023-26408	2023-04-12	ZDI-CAN-20712: AnnotsString Object prototype pollution Restrictions Bypass Vulnerability
CVE-2023-26417	2023-04-12	ZDI-CAN-20583: Adobe Acrobat Reader DC Popup Use-After-Free Remote Code Execution Vulnerability
CVE-2023-26418	2023-04-12	ZDI-CAN-20311: Adobe Acrobat Reader DC AcroForm exportAsFDFStr Use-After-Free Remote Code Execution Vulnerability
CVE-2023-26419	2023-04-12	ZDI-CAN-20274: Adobe Acrobat Reader DC AcroForm removeField Use-After-Free Remote Code Execution Vulnerability
CVE-2023-26420	2023-04-12	ZDI-CAN-20227: Adobe Acrobat Reader DC AcroForm addField Use-After-Free Remote Code Execution Vulnerability
CVE-2023-26421	2023-04-12	ZDI-CAN-19832: Adobe Acrobat Reader DC Doc Object Integer Underflow Remote Code Execution Vulnerability
CVE-2023-26422	2023-04-12	ZDI-CAN-20176: Adobe Acrobat Reader DC AcroForm deleteItemAt Use-After-Free Remote Code Execution Vulnerability
CVE-2023-26423	2023-04-12	ZDI-CAN-20160: Adobe Acrobat Reader DC AcroForm insertItemAt Use-After-Free Remote Code Execution Vulnerability
CVE-2023-26424	2023-04-12	ZDI-CAN-19833: Adobe Acrobat Reader DC PDF Parsing Use-After-Free Remote Code Execution Vulnerability
CVE-2023-26425	2023-04-12	ZDI-CAN-19854: Adobe Acrobat Reader DC Annotation Out-Of-Bounds Read Remote Code Execution Vulnerability