Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

110 matches found

SUSE CVE
SUSE CVEadded 2026/05/08 2:21 a.m.5 views

SUSE CVE-2026-42216

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From versions 3.0.0 to before 3.2.9, 3.3.0 to before 3.3.11, and 3.4.0 to before 3.4.11, IDManifest::init reconstructs strings from a prefix-compressed...

8.2CVSS5.8AI score0.00059EPSS
Exploits1References3
NVD
NVDadded 2026/05/07 4:16 a.m.6 views

CVE-2026-42217

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From versions 3.0.0 to before 3.2.9, 3.3.0 to before 3.3.11, and 3.4.0 to before 3.4.11, readVariableLengthInteger decodes a variable-length integer fro...

9.8CVSS0.00052EPSS
Exploits1References3
ATTACKERKB
ATTACKERKBadded 2026/05/07 4:4 a.m.2 views

CVE-2026-42217

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From versions 3.0.0 to before 3.2.9, 3.3.0 to before 3.3.11, and 3.4.0 to before 3.4.11, readVariableLengthInteger decodes a variable-length integer fro...

6.3CVSS5.8AI score0.00052EPSS
Exploits1References4Affected Software1
AlpineLinux
AlpineLinuxadded 2026/05/07 4:4 a.m.3 views

CVE-2026-42217

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From versions 3.0.0 to before 3.2.9, 3.3.0 to before 3.3.11, and 3.4.0 to before 3.4.11, readVariableLengthInteger decodes a variable-length integer fro...

9.8CVSS5.8AI score0.00052EPSS
Exploits1
EUVD
EUVDadded 2026/05/07 4:4 a.m.3 views

EUVD-2026-28300

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From versions 3.0.0 to before 3.2.9, 3.3.0 to before 3.3.11, and 3.4.0 to before 3.4.11, readVariableLengthInteger decodes a variable-length integer fro...

6.3CVSS5.8AI score0.00052EPSS
Exploits1References3
AlpineLinux
AlpineLinuxadded 2026/05/07 3:58 a.m.6 views

CVE-2026-41142

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From versions 3.0.0 to before 3.2.9, 3.3.0 to before 3.3.11, and 3.4.0 to before 3.4.11, there is an integer overflow in ImageChannel::resize that leads...

8.8CVSS5.8AI score0.00037EPSS
Exploits1
ATTACKERKB
ATTACKERKBadded 2026/05/07 3:58 a.m.3 views

CVE-2026-41142

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From versions 3.0.0 to before 3.2.9, 3.3.0 to before 3.3.11, and 3.4.0 to before 3.4.11, there is an integer overflow in ImageChannel::resize that leads...

8.8CVSS5.8AI score0.00037EPSS
Exploits1References4Affected Software1
UbuntuCve
UbuntuCveadded 2026/05/07 12:0 a.m.2 views

CVE-2026-42217

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From versions 3.0.0 to before 3.2.9, 3.3.0 to before 3.3.11, and 3.4.0 to before 3.4.11, readVariableLengthInteger decodes a variable-length integer fro...

9.8CVSS5.8AI score0.00052EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2026/05/07 12:0 a.m.4 views

PT-2026-38334

Name of the Vulnerable Software and Affected Versions OpenEXR versions 3.0.0 through 3.2.8 OpenEXR versions 3.3.0 through 3.3.10 OpenEXR versions 3.4.0 through 3.4.10 Description The IDManifest::init function reconstructs strings from a prefix-compressed representation. When a previous string...

9.1CVSS6AI score0.00059EPSS
Exploits1References11
Positive Technologies
Positive Technologiesadded 2026/05/07 12:0 a.m.5 views

PT-2026-38335

Name of the Vulnerable Software and Affected Versions OpenEXR versions 3.0.0 through 3.2.8 OpenEXR versions 3.3.0 through 3.3.10 OpenEXR versions 3.4.0 through 3.4.10 Description The readVariableLengthInteger function decodes a variable-length integer from untrusted EXR input without bounding the...

9.8CVSS5.9AI score0.00052EPSS
Exploits1References12
EUVD
EUVDadded 2026/05/05 3:31 p.m.5 views

EUVD-2026-27329

The WeePie Cookie Allow plugin for WordPress is vulnerable to SQL Injection via the 'consent' parameter in all versions up to, and including, 3.4.11 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

7.5CVSS5.9AI score0.00089EPSS
Exploits0References4
CVE
CVEadded 2026/05/05 1:27 p.m.7 views

CVE-2026-4304

The CVE-2026-4304 entry concerns the WeePie Cookie Allow plugin for WordPress. Affected component: the plugin, throughout all versions up to and including 3.4.11. Root cause: insufficient escaping of the user-supplied consent parameter and lack of proper preparation in the SQL query, enabling SQL...

7.5CVSS5.9AI score0.00089EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2026/05/05 1:27 p.m.4 views

CVE-2026-4304

The WeePie Cookie Allow plugin for WordPress is vulnerable to SQL Injection via the 'consent' parameter in all versions up to, and including, 3.4.11 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

7.5CVSS5.9AI score0.00089EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2026/05/05 12:0 a.m.5 views

PT-2026-37045

The WeePie Cookie Allow plugin for WordPress is vulnerable to SQL Injection via the 'consent' parameter in all versions up to, and including, 3.4.11 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...

7.5CVSS5.9AI score0.00089EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/05/02 12:0 a.m.2 views

FreeBSD : openexr -- multiple vulnerabilities (787cde46-4424-11f1-943f-05b19d100dca)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 787cde46-4424-11f1-943f-05b19d100dca advisory. Cary Phillips reports: OpenEXR v3.4.11 is a patch release that addresses the following securit...

9.8CVSS5.8AI score0.00059EPSS
Exploits3References5
vulnersOsv
vulnersOsvadded 2026/04/06 5:51 p.m.2 views

angorapy (>=0.9.1 <=0.10.8), apple-hdr-heic (=0.1.0) +64 more potentially affected by CVE-2025-64183 via openexr (=3.4.11)

openexr PYPI version =3.4.11 is affected by a known vulnerability. The following packages have a transitive dependency on openexr and may be impacted: - angorapy =0.9.1, =0.5.0, =0.2.5, =0.1.0rc1, =0.0.1, =0.1.0, =0.2.1, =0.0.4, =0.1.7, =0.0.1, =0.1.1, =0.0.0, =0.0.4 and more Source cves:...

7.5CVSS7.1AI score0.00067EPSS
Exploits1
vulnersOsv
vulnersOsvadded 2026/04/06 5:51 p.m.2 views

angorapy (>=0.9.1 <=0.10.8), apple-hdr-heic (=0.1.0) +64 more potentially affected by CVE-2025-64182 via openexr (=3.4.11)

openexr PYPI version =3.4.11 is affected by a known vulnerability. The following packages have a transitive dependency on openexr and may be impacted: - angorapy =0.9.1, =0.5.0, =0.2.5, =0.1.0rc1, =0.0.1, =0.1.0, =0.2.1, =0.0.4, =0.1.7, =0.0.1, =0.1.1, =0.0.0, =0.0.4 and more Source cves:...

7.8CVSS7.1AI score0.0002EPSS
Exploits1
RedhatCVE
RedhatCVEadded 2026/01/09 8:59 a.m.1 views

CVE-2023-50330

A stack-based buffer overflow vulnerability exists in the boa getInfo functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send a series of HTTP requests to trigger this vulnerability...

7.2CVSS8.3AI score0.0731EPSS
Exploits0References1
vulnersOsv
vulnersOsvadded 2025/11/10 9:42 p.m.2 views

angorapy (>=0.9.1 <=0.10.8), apple-hdr-heic (=0.1.0) +64 more potentially affected by CVE-2025-64182 via openexr (=3.4.11)

openexr PYPI version =3.4.11 is affected by a known vulnerability. The following packages have a transitive dependency on openexr and may be impacted: - angorapy =0.9.1, =0.5.0, =0.2.5, =0.1.0rc1, =0.0.1, =0.1.0, =0.2.1, =0.0.4, =0.1.7, =0.0.1, =0.1.1, =0.0.0, =0.0.4 and more Source cves:...

7.8CVSS7.1AI score0.0002EPSS
Exploits1
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2019-7819

Malware in sbrugna...

6.1CVSS6.1AI score0.01826EPSS
Exploits1References7
Rows per page
Query Builder