Lucene search
K

6 matches found

NVD
NVD
added yesterday5 views

CVE-2026-15062

SQL injection vulnerabilities in the Snowflake Snowpark Python SDK snowpark-python versions prior to 1.53.0 could allow authenticated low-privilege users to execute SQL beyond their authorization scope. An attacker could exploit these vulnerabilities by embedding SQL payloads in source database...

9.6CVSS
Exploits0References1
CVE
CVE
added yesterday5 views

CVE-2026-15062

Snowflake Snowpark Python SDK (snowpark-python) before 1.53.0 is affected by SQL injection vulnerabilities allowing authenticated low-privilege users to perform SQL beyond their authorization. Exploitation vectors described include embedding SQL payloads in source database column names to escalat...

9.6CVSS6.2AI score
Exploits0References1
Cvelist
Cvelist
added yesterday10 views

CVE-2026-15062 SQL Injection in Snowflake Snowpark Python SDK

SQL injection vulnerabilities in the Snowflake Snowpark Python SDK snowpark-python versions prior to 1.53.0 could allow authenticated low-privilege users to execute SQL beyond their authorization scope. An attacker could exploit these vulnerabilities by embedding SQL payloads in source database...

9.6CVSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2021/09/20 12:0 a.m.9 views

The vulnerability of the copyIntoFrameBuffer function in software for storing OpenEXR images with a wide dynamic range of brightness levels, related to writing beyond the buffer’s boundaries, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the copyIntoFrameBuffer function in software for storing OpenEXR images with a wide dynamic range of brightness is related to writing beyond the buffer’s boundaries. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its...

8.8CVSS7.6AI score0.02291EPSS
Exploits0References7Affected Software3
Positive Technologies
Positive Technologies
added 2020/11/29 12:0 a.m.6 views

PT-2020-6398 · Openexr · Openexr

Name of the Vulnerable Software and Affected Versions: OpenEXR versions prior to 3.0.1 Description: A heap-buffer overflow was found in the copyIntoFrameBuffer function of OpenEXR. This issue allows an attacker to execute arbitrary code with the permissions of the user running the application...

8.8CVSS6.8AI score0.02291EPSS
Exploits0References35
OSV
OSV
added 2020/04/14 11:15 p.m.2 views

UBUNTU-CVE-2020-11764

An issue was discovered in OpenEXR before 2.4.1. There is an out-of-bounds write in copyIntoFrameBuffer in ImfMisc.cpp...

5.5CVSS6.8AI score0.01785EPSS
Exploits1References5
Rows per page
Query Builder