Tag

Code_execution

9 briefs RSS

Red Hat Enterprise Linux Flatpak Multiple Vulnerabilities Allow Code Execution and File Deletion

An authenticated attacker can exploit multiple vulnerabilities in the Flatpak package of Red Hat Enterprise Linux to execute arbitrary program code and delete files.

Flatpak rhel vulnerability code_execution file_deletion

2r 1t 3w ago

high advisory

Microsoft SharePoint Server RCE Vulnerability

2 rules 1 TTP

An authenticated remote attacker can exploit a vulnerability in Microsoft SharePoint Server 2016, Microsoft SharePoint Server 2019, and Microsoft SharePoint to execute arbitrary code.

SharePoint Server 2016 +2 sharepoint rce code_execution

2r 1t 3w ago

high threat

Microsoft 365 Copilot Multiple Vulnerabilities

2 rules 2 TTPs

A remote, anonymous attacker can exploit multiple vulnerabilities in Microsoft 365 Copilot to execute arbitrary program code and disclose confidential information.

Microsoft 365 Copilot microsoft365 copilot vulnerability code_execution information_disclosure

2r 2t 3w ago

high advisory

Allok AVI DivX MPEG to DVD Converter 2.6.1217 SEH Buffer Overflow Vulnerability (CVE-2018-25323)

2 rules 1 TTP 1 CVE

Allok AVI DivX MPEG to DVD Converter 2.6.1217 contains a structured exception handler buffer overflow vulnerability (CVE-2018-25323) that allows local attackers to execute arbitrary code by supplying a malicious payload via the License Name field.

Allok AVI DivX MPEG to DVD Converter 2.6.1217 cve buffer_overflow seh code_execution

2r 1t 1c May 17, 2026

high advisory

Adobe Media Encoder Integer Overflow Vulnerability (CVE-2026-34640)

2 rules 1 TTP 1 CVE

Adobe Media Encoder versions 26.0.2, 25.6.4 and earlier are susceptible to an integer overflow or wraparound vulnerability (CVE-2026-34640) that could lead to arbitrary code execution when a user opens a malicious file.

Media Encoder cve-2026-34640 integer_overflow code_execution

2r 1t 1c May 12, 2026

high advisory

IBM WebSphere Application Server Liberty Vulnerability Allows Code Execution

2 rules 1 TTP

An authenticated remote attacker can exploit a vulnerability in IBM WebSphere Application Server Liberty to execute arbitrary program code on the target system.

WebSphere Application Server Liberty websphere rce code_execution vulnerability

2r 1t May 8, 2026

high advisory

OpenClaw Improper Environment Variable Handling Vulnerability

2 rules 1 TTP 1 CVE

OpenClaw before 2026.4.20 is vulnerable to improper environment variable namespace reservation, allowing attackers to override critical runtime variables via workspace dotenv files.

OpenClaw cve environment_variable_override code_execution

2r 1t 1c May 6, 2026

critical advisory

ImageMagick Multiple Vulnerabilities Leading to DoS, Code Execution, or Data Manipulation

2 rules 1 TTP

Multiple vulnerabilities in ImageMagick could allow an attacker to perform a denial of service attack, execute arbitrary code, or manipulate data.

imagemagick vulnerability dos code_execution data_manipulation

2r 1t Mar 31, 2026

high advisory

CVE-2026-3229 Integer Overflow in Certificate Chain Allocation

2 rules 1 CVE

CVE-2026-3229 is an integer overflow vulnerability in certificate chain allocation affecting a Microsoft product, potentially leading to denial of service or arbitrary code execution.

integer_overflow certificate_chain denial_of_service code_execution cve

2r 1c Jan 25, 2024