Lucene search
K

35 matches found

OSV
OSV
added 2026/06/30 6:46 p.m.4 views

GHSA-6XW4-2G22-26H8 Open Babel has an out-of-bounds read in CIF transform3d::DescribeAsString

Summary A memory-safety vulnerability in Open Babel's CIF file format parser allowed an out-of-bounds read when reading a crafted input file. Details The flaw was in OpenBabel::transform3d::DescribeAsString. A malformed symmetry-operation string caused the parser to read past the end of its...

5.3CVSS5.9AI score0.00759EPSS
Exploits1References14
OPENSUSE Linux
OPENSUSE Linux
added 2026/06/28 12:0 a.m.7 views

Security update for openbabel (moderate)

openSUSE Security Update: Security update for openbabel Announcement ID: openSUSE-SU-2026:0220-1 Rating: moderate References: 1258501 Cross-References: CVE-2026-2704 Affected Products: openSUSE Backports SLE-15-SP7 An update that fixes one vulnerability is now available. Description: This update...

8.1CVSS5.8AI score0.00759EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:11 p.m.9 views

CVE-2026-8135

Concrete CMS 9.5.0 and below is vulnerable to Remote Code Execution due to insecure deserialization occurring in the ExpressEntryList block controller. An rogue administrator with privileges to add blocks to an area can bypass the intended protection mechanism fromCIF === true, which normally...

8.9CVSS5.8AI score0.0047EPSS
Exploits0References1
NVD
NVD
added 2026/05/21 9:16 p.m.19 views

CVE-2026-8135

Concrete CMS 9.5.0 and below is vulnerable to Remote Code Execution due to insecure deserialization occurring in the ExpressEntryList block controller. An rogue administrator with privileges to add blocks to an area can bypass the intended protection mechanism fromCIF === true, which normally...

8.9CVSS0.0047EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2026/02/25 12:0 a.m.130 views

📄 Open Babel 3.1.1 CIF File Memory Corruption

This Metasploit auxiliary module generates a crafted .cif file designed to test for memory corruption conditions in Open Babel version 3.1.1. By providing an excessive number of symmetry operations, it triggers a crash DoS during file parsing. The exact outcome depends on the target's build,...

5.6AI score
Exploits0
SUSE CVE
SUSE CVE
added 2026/02/20 12:25 a.m.5 views

SUSE CVE-2026-2704

A security vulnerability has been detected in Open Babel up to 3.1.1. The affected element is the function OpenBabel::transform3d::DescribeAsString of the file src/math/transform3d.cpp of the component CIF File Handler. The manipulation leads to out-of-bounds read. It is possible to initiate the...

8.1CVSS5.2AI score0.00759EPSS
Exploits1References3
NVD
NVD
added 2026/02/19 7:17 a.m.6 views

CVE-2026-2704

A security vulnerability has been detected in Open Babel up to 3.1.1. The affected element is the function OpenBabel::transform3d::DescribeAsString of the file src/math/transform3d.cpp of the component CIF File Handler. The manipulation leads to out-of-bounds read. It is possible to initiate the...

8.1CVSS0.00759EPSS
Exploits1References9
UbuntuCve
UbuntuCve
added 2026/02/19 7:17 a.m.7 views

CVE-2026-2704

A security vulnerability has been detected in Open Babel up to 3.1.1. The affected element is the function OpenBabel::transform3d::DescribeAsString of the file src/math/transform3d.cpp of the component CIF File Handler. The manipulation leads to out-of-bounds read. It is possible to initiate the...

8.1CVSS5.4AI score0.00759EPSS
Exploits1References6
OSV
OSV
added 2026/02/19 7:17 a.m.5 views

UBUNTU-CVE-2026-2704

A security vulnerability has been detected in Open Babel up to 3.1.1. The affected element is the function OpenBabel::transform3d::DescribeAsString of the file src/math/transform3d.cpp of the component CIF File Handler. The manipulation leads to out-of-bounds read. It is possible to initiate the...

8.1CVSS5.1AI score0.00759EPSS
Exploits1References7
Cvelist
Cvelist
added 2026/02/19 4:32 a.m.35 views

CVE-2026-2704 Open Babel CIF File transform3d.cpp DescribeAsString out-of-bounds

A security vulnerability has been detected in Open Babel up to 3.1.1. The affected element is the function OpenBabel::transform3d::DescribeAsString of the file src/math/transform3d.cpp of the component CIF File Handler. The manipulation leads to out-of-bounds read. It is possible to initiate the...

5.3CVSS0.00759EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2026/02/19 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-2704

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A security vulnerability has been detected in Open Babel up to 3.1.1. The affected element is the function OpenBabel::transform3d::DescribeAsString of the file...

8.1CVSS5.2AI score0.00759EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2006-3780

Malware in sbrugna...

3.6CVSS6.4AI score0.00399EPSS
Exploits0References5
GithubExploit
GithubExploit
added 2025/07/24 6:12 p.m.279 views

Exploit for Command Injection in Materialsvirtuallab Pymatgen

CVE-2024-23346-exploit This is a exploit for the known Remote...

9.3CVSS8AI score0.03816EPSS
Exploits8
Ubuntu
Ubuntu
added 2025/06/25 6:0 p.m.5 views

USN-7595-3: Linux kernel (Raspberry Pi Real-time) vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

7.8CVSS7.1AI score0.00596EPSS
Exploits1
Packet Storm
Packet Storm
added 2025/04/15 12:0 a.m.226 views

📄 Pymatgen 2024.1 Remote Code Execution

Pymatgen version 2024.1 suffers from a remote code execution vulnerability. Exploit Title : Pymatgen 2024.1 - Remote Code Execution RCE Google Dork : not applicable Date : 2024-11-13 Exploit Author : Mohammed Idrees Banyamer Vendor Homepage : https ://pymatgen.org Software Link : https ://pypi.or...

9.3CVSS9.5AI score0.03816EPSS
Exploits8
Exploit DB
Exploit DB
added 2025/04/15 12:0 a.m.238 views

Pymatgen 2024.1 - Remote Code Execution (RCE)

Exploit Title : Pymatgen 2024.1 - Remote Code Execution RCE Google Dork : not applicable Date : 2024-11-13 Exploit Author : Mohammed Idrees Banyamer Vendor Homepage : https ://pymatgen.org Software Link : https ://pypi.org /project /pymatgen/ Version : 2024.1 Tested on : Kali Linux 2024.1 CVE :...

9.3CVSS7AI score0.03816EPSS
Exploits8
OSV
OSV
added 2024/11/06 5:55 p.m.10 views

CLSA-2024-1730915716 Update of nss

update to CKBI 2.69 from NSS 3.103 - updated certificates: - Certificate "OISTE WISeKey Global Root GC CA" - Certificate "Autoridad de Certificacion Firmaprofesional CIF A62634068" - removed certificates: - Certificate "Security Communication Root CA" - Certificate "Camerfirma Chambers of...

5.8AI score
Exploits0References1
OSV
OSV
added 2024/02/21 6:4 p.m.239 views

GHSA-VGV8-5CPJ-QJ2F pymatgen vulnerable to arbitrary code execution when parsing a maliciously crafted JonesFaithfulTransformation transformation_string

Summary A critical security vulnerability exists in the JonesFaithfulTransformation.fromtransformationstr method within the pymatgen library. This method insecurely utilizes eval for processing input, enabling execution of arbitrary code when parsing untrusted input. This can be exploited when...

9.3CVSS8.7AI score0.03816EPSS
Exploits8References7
Github Security Blog
Github Security Blog
added 2024/02/21 6:4 p.m.30 views

pymatgen vulnerable to arbitrary code execution when parsing a maliciously crafted JonesFaithfulTransformation transformation_string

Summary A critical security vulnerability exists in the JonesFaithfulTransformation.fromtransformationstr method within the pymatgen library. This method insecurely utilizes eval for processing input, enabling execution of arbitrary code when parsing untrusted input. This can be exploited when...

9.3CVSS7.9AI score0.03816EPSS
Exploits8References7Affected Software1
CloudLinux
CloudLinux
added 2024/01/22 5:45 p.m.19 views

Update of ca-certificates

update to CKBI 2.64 from NSS 3.95 - updated: - Certificate "Autoridad de Certificacion Firmaprofesional CIF A62634068" - removed old certificates: - Certificate "E-Tugra Certification Authority" - Certificate "Hongkong Post Root CA 1" - Certificate "Symantec Class 1 Public Primary Certification...

7.3AI score
Exploits0
Rows per page
Query Builder