all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

ZDI-23-1598: Ashlar-Vellum Lithium Uncontrolled Search Path Element Remote Code Execution Vulnerability

Add to bookmarks
Nov. 14, 2023, 6 a.m. |

ZDI: Published Advisories www.zerodayinitiative.com

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Lithium. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The ZDI has assigned a CVSS rating of 7.8. The following CVEs are assigned: CVE-2023-44440.

arbitrary code attackers code code execution cves cvss exploit file malicious page path rating remote code remote code execution search target vulnerability zdi

Visit resource

More from www.zerodayinitiative.com / ZDI: Published Advisories

ZDI-23-1728: Fuji Electric Tellus Lite V-Simulator 6 V9 File Parsing Stack-based Buffer Overflow Remote Code … 3 days, 1 hour ago | www.zerodayinitiative.com
arbitrary code attackers buffer buffer overflow +18
ZDI-23-1732: Fuji Electric Tellus Lite V-Simulator 6 V9 File Parsing Stack-based Buffer Overflow Remote Code … 3 days, 1 hour ago | www.zerodayinitiative.com
arbitrary code attackers buffer buffer overflow +18
ZDI-23-1730: Fuji Electric Tellus Lite Incorrect Default Permissions Local Privilege Escalation Vulnerability 3 days, 1 hour ago | www.zerodayinitiative.com
attacker attackers code cvss +20
ZDI-23-1729: Fuji Electric Tellus Lite V-Simulator 6 V9 File Parsing Out-Of-Bounds Write Remote Code Execution … 3 days, 1 hour ago | www.zerodayinitiative.com
arbitrary code attackers code code execution +16
ZDI-23-1734: Fuji Electric Tellus Lite V-Simulator 6 V9 File Parsing Stack-based Buffer Overflow Remote Code … 3 days, 1 hour ago | www.zerodayinitiative.com
arbitrary code attackers buffer buffer overflow +18
ZDI-23-1733: Fuji Electric Tellus Lite V-Simulator 6 V9 File Parsing Stack-based Buffer Overflow Remote Code … 3 days, 1 hour ago | www.zerodayinitiative.com
arbitrary code attackers buffer buffer overflow +18
ZDI-23-1735: Fuji Electric Tellus Lite V-Simulator V9 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability 3 days, 1 hour ago | www.zerodayinitiative.com
arbitrary code attackers code code execution +17
ZDI-23-1731: Fuji Electric Tellus Lite V-Simulator 6 V9 File Parsing Stack-based Buffer Overflow Remote Code … 3 days, 1 hour ago | www.zerodayinitiative.com
arbitrary code attackers buffer buffer overflow +18
ZDI-23-1727: Fuji Electric Tellus Lite V-Simulator 6 V9 File Parsing Stack-based Buffer Overflow Remote Code … 3 days, 1 hour ago | www.zerodayinitiative.com
arbitrary code attackers buffer buffer overflow +18

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Paid internship - Cybersecurity [BGSW]

@ Bosch Group | Warszawa, Poland
View on infosec-jobs.com

Cybersecurity Officer

@ People In Need | Prague 2, Prague, Czechia
View on infosec-jobs.com

University -Cybersecurity Consultant

@ Booz Allen Hamilton | USA, CA, San Diego (1615 Murray Canyon Rd)
View on infosec-jobs.com

Senior Security Engineer, Detection Engineering

@ Lyft | Seattle, WA
View on infosec-jobs.com

Architecte de la sécurité des applications / Application Security Architect

@ Genetec | Montreal, Quebec, Canada
View on infosec-jobs.com

Telecommunications Sector| SIEM Engineer

@ Devoteam | Lisbon, Portugal
View on infosec-jobs.com
View more jobs