Lucene search
+L

2492 matches found

Snyk
Snyk
added 2026/04/16 3:34 a.m.10 views

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound in the cencschemedecrypt, cbc1schemedecrypt, censschemedecrypt, and cbcsschemedecrypt paths in libavformat/mov.c. An attacker can trigger out-of-bounds subsample size validation by supplying a crafted...

9.8CVSS5.7AI score0.00134EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/16 12:0 a.m.9 views

MiracleLinux 9 : nginx-1.20.1-24.el9_7.2.ML.1 (AXSA:2026-435:02)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-435:02 advisory. nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files CVE-2026-32647 NGINX: NGINX: Denial of Service or file modification...

8.8CVSS7.6AI score0.21621EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/15 7:4 p.m.4 views

CVE-2026-6364

Out of bounds read in Skia in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted file. Chromium security severity: Medium...

5.8AI score0.00234EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/04/15 6:59 p.m.22 views

CVE-2026-40919

A flaw was found in GIMP. This vulnerability, a buffer overflow in the file-seattle-filmworks plugin, can be exploited when a user opens a specially crafted Seattle Filmworks file. A remote attacker could leverage this to cause a denial of service DoS, leading to the plugin crashing and potential...

6.1CVSS5.8AI score0.00331EPSS
Exploits0
CVE
CVE
added 2026/04/15 6:59 p.m.28 views

CVE-2026-40917

CVE-2026-40917 is reported in GIMP as a heap over-read in the ICNS image loader via icns_slurp() when processing crafted ICNS files. Affected software is GIMP; the vulnerability may cause application crashes or information disclosure. The connected documents corroborate the issue across multiple ...

7.1CVSS5.9AI score0.00167EPSS
Exploits0References2Affected Software2
NVD
NVD
added 2026/04/14 11:16 p.m.5 views

CVE-2026-27294

Adobe Framemaker versions 2022.8 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current use...

7.8CVSS0.00173EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/14 10:58 p.m.19 views

CVE-2026-27294 Adobe Framemaker | Out-of-bounds Read (CWE-125)

Adobe Framemaker versions 2022.8 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current use...

7.8CVSS0.00173EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/14 10:58 p.m.9 views

CVE-2026-27294 Adobe Framemaker | Out-of-bounds Read (CWE-125)

Adobe Framemaker versions 2022.8 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current use...

7.8CVSS5.9AI score0.00173EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/14 9:31 p.m.5 views

EUVD-2026-22687

Photoshop Desktop versions 27.4 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user...

7.8CVSS5.9AI score0.00211EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/14 8:54 p.m.6 views

CVE-2026-27287

InCopy versions 20.5.2, 21.2 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user...

7.8CVSS5.9AI score0.00205EPSS
Exploits0References2
NVD
NVD
added 2026/04/14 8:16 p.m.7 views

CVE-2026-27289

Photoshop Desktop versions 27.4 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user...

7.8CVSS0.00211EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/14 7:36 p.m.28 views

CVE-2026-27289 Photoshop Desktop | Out-of-bounds Read (CWE-125)

Photoshop Desktop versions 27.4 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user...

7.8CVSS0.00211EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/14 7:36 p.m.4 views

CVE-2026-27289

Photoshop Desktop versions 27.4 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user...

7.8CVSS5.9AI score0.00211EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/14 6:30 p.m.6 views

EUVD-2026-22438

InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the curre...

7.8CVSS5.9AI score0.00161EPSS
Exploits0References2
NVD
NVD
added 2026/04/14 5:16 p.m.5 views

CVE-2026-27284

InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the curre...

7.8CVSS0.00161EPSS
Exploits0References1
CVE
CVE
added 2026/04/14 4:45 p.m.11 views

CVE-2026-27284

CVE-2026-27284 affects InDesign Desktop versions 20.5.2, 21.2 and earlier. It is an out-of-bounds read vulnerability (CWE-125) that occurs when parsing a crafted file, potentially causing code execution in the context of the current user. Exploitation requires user interaction (the victim must op...

7.8CVSS5.9AI score0.00161EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.5 views

PT-2026-32943

Name of the Vulnerable Software and Affected Versions Adobe Framemaker versions prior to 2022.9 Description An out-of-bounds read occurs when parsing a crafted file, which can lead to a read past the end of an allocated memory structure. This issue allows an attacker to execute code within the...

7.8CVSS5.9AI score0.00173EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/04/14 12:0 a.m.10 views

Adobe InCopy 缓冲区错误漏洞

Adobe InCopy is a text editing software for creative purposes developed by Adobe, Inc. Versions of Adobe InCopy such as 20.5.2 and 21.2 and earlier have a buffer error vulnerability. This vulnerability stems from an out-of-bounds read during the parsing of specially crafted files, which may allow...

7.8CVSS6AI score0.00205EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.5 views

PT-2026-32700

Name of the Vulnerable Software and Affected Versions InDesign Desktop versions 20.5.2 and 21.2 and earlier Description An out-of-bounds read occurs when parsing a crafted file, which can lead to a read past the end of an allocated memory structure. This issue allows an attacker to execute code i...

7.8CVSS5.9AI score0.00161EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2026/04/14 12:0 a.m.8 views

Ubuntu: Security Advisory (USN-8166-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS5.8AI score0.00395EPSS
Exploits0References2
Rows per page
Query Builder