Lucene search
K

560 matches found

OSV
OSV
added 2025/03/14 9:15 p.m.2 views

UBUNTU-CVE-2025-2310

A vulnerability was found in HDF5 1.14.6 and classified as critical. This issue affects the function H5MMstrndup of the component Metadata Attribute Decoder. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and...

7.8CVSS5.6AI score0.00361EPSS
Exploits1References7
Snyk
Snyk
added 2025/02/21 9:42 p.m.2 views

Deserialization of Untrusted Data

Overview qiskit-terra is a Software for developing quantum computing programs Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the deserialization of QPY files containing malformed symengine serialization streams. An attacker can terminate the process by...

8.6CVSS7AI score0.0066EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.3 views

Astra Linux – Vulnerability in hdf5

HDF5 through 1.14.3 contains a heap buffer overflow issue in H5Aattrreleasetable, which leads to the corruption of the instruction pointer and causes denial of service or potential code execution...

8.8CVSS7.8AI score0.0086EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2025/01/09 6:26 a.m.9 views

firefox: Compartment mismatch when parsing JavaScript JSON module

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Parsing a JavaScript module as JSON could, under some circumstances, cause cross-compartment access, which may result in a use-after-free...

4CVSS7.3AI score0.00664EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2025/01/07 4:15 p.m.2 views

CVE-2025-0240

Parsing a JavaScript module as JSON could, under some circumstances, cause cross-compartment access, which may result in a use-after-free. This vulnerability was fixed in Firefox 134, Firefox ESR 128.6, Thunderbird 134, and Thunderbird 128.6...

4CVSS6.7AI score0.00664EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.5 views

PT-2025-34624 · Libbiosig +1 · Libbiosig +1

Name of the Vulnerable Software and Affected Versions: libbiosig versions 3.9.0 and Master Branch 35a819fa Description: An integer overflow vulnerability exists in the GDF parsing functionality. A specially crafted GDF file can lead to arbitrary code execution. An attacker can provide a malicious...

9.8CVSS7AI score0.00634EPSS
Exploits1References11
OSV
OSV
added 2024/11/15 12:20 p.m.3 views

OESA-2024-2410 hdf5 security update

HDF5 is a data model, library, and file format for storing and managing data. It supports an unlimited variety of datatypes, and is designed for flexible and efficient I/O and for high volume and complex data. HDF5 is portable and is extensible, allowing applications to evolve in their use of HDF...

5.7CVSS7.6AI score0.00227EPSS
Exploits0References3
OSV
OSV
added 2024/11/15 12:20 p.m.4 views

OESA-2024-2409 hdf5 security update

HDF5 is a data model, library, and file format for storing and managing data. It supports an unlimited variety of datatypes, and is designed for flexible and efficient I/O and for high volume and complex data. HDF5 is portable and is extensible, allowing applications to evolve in their use of HDF...

5.7CVSS7.6AI score0.00227EPSS
Exploits0References3
OSV
OSV
added 2024/11/15 12:20 p.m.4 views

OESA-2024-2407 hdf5 security update

HDF5 is a data model, library, and file format for storing and managing data. It supports an unlimited variety of datatypes, and is designed for flexible and efficient I/O and for high volume and complex data. HDF5 is portable and is extensible, allowing applications to evolve in their use of HDF...

5.7CVSS7.6AI score0.00227EPSS
Exploits0References3
OSV
OSV
added 2024/11/08 3:6 p.m.4 views

OESA-2024-2339 hdf5 security update

HDF5 is a data model, library, and file format for storing and managing data. It supports an unlimited variety of datatypes, and is designed for flexible and efficient I/O and for high volume and complex data. HDF5 is portable and is extensible, allowing applications to evolve in their use of HDF...

9.8CVSS8AI score0.01853EPSS
Exploits2References37
OSV
OSV
added 2024/09/26 9:18 p.m.26 views

CVE-2024-47076 libcupsfilters's cfGetPrinterAttributes5 does not validate IPP attributes returned from an IPP server

CUPS is a standards-based, open-source printing system, and libcupsfilters contains the code of the filters of the former cups-filters package as library functions to be used for the data format conversion tasks needed in Printer Applications. The cfGetPrinterAttributes5 function in libcupsfilter...

8.6CVSS7.3AI score0.8344EPSS
Exploits5References11
Debian CVE
Debian CVE
added 2024/09/26 9:18 p.m.20 views

CVE-2024-47076

CUPS is a standards-based, open-source printing system, and libcupsfilters contains the code of the filters of the former cups-filters package as library functions to be used for the data format conversion tasks needed in Printer Applications. The cfGetPrinterAttributes5 function in libcupsfilter...

8.6CVSS8.2AI score0.8344EPSS
Exploits5
BDU FSTEC
BDU FSTEC
added 2024/09/17 12:0 a.m.5 views

The vulnerability of the H5FL_arr_malloc() function in the H5FL.c file of the HDF5 library allows a attacker to compromise the confidentiality and accessibility of the protected information.

The vulnerability of the H5FLarrmalloc function in the H5FL.c file of the HDF5 library is related to buffer overflow in the queue. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and accessibility of the protected information...

9.4CVSS7.8AI score0.00987EPSS
Exploits0References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/09/17 12:0 a.m.5 views

The vulnerability of the H5T__get_native_type() function in the H5Tnative.c file of the HDF5 library allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the H5Tgetnativetype function in the H5Tnative.c file of the HDF5 library is related to buffer overflow in the queue. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.4CVSS7.8AI score0.00239EPSS
Exploits0References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/09/17 12:0 a.m.4 views

Vulnerability in file H5Eint.c of the HDF5 library, which allows a hacker to cause a service failure

The vulnerability in the H5Eint.c file of the HDF5 library is related to an uncontrolled recursion. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.2AI score0.00666EPSS
Exploits1References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/09/17 12:0 a.m.4 views

Vulnerability of the H5O__layout_decode() function in the H5Olayout.c file of the HDF5 library, which allows a hacker to cause a service failure.

The vulnerability of the H5Olayoutdecode function in the H5Olayout.c file, a HDF5 library, involves reading data beyond the memory bounds. Exploiting this vulnerability could allow an attacker to cause a service failure...

7.1CVSS6.8AI score0.0144EPSS
Exploits1References6Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/09/17 12:0 a.m.6 views

Vulnerability of the Decompress() function in the decompress.c file of the HDF5 library, which allows a hacker to cause a service failure.

The vulnerability of the Decompress function in the decompress.c file is related to writing beyond the memory boundaries. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.8AI score0.0151EPSS
Exploits1References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/09/17 12:0 a.m.6 views

The vulnerability of the H5T__ref_mem_setnull() function in the H5Tref.c file of the HDF5 library allows a attacker to compromise the confidentiality and integrity of the protected information.

The vulnerability of the H5Trefmemsetnull function in the H5Tref.c file of the HDF5 library is related to buffer overflow in the queue. Exploitation of this vulnerability could allow an attacker to compromise the confidentiality and integrity of the protected information...

7.4CVSS7.8AI score0.00638EPSS
Exploits0References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/09/17 12:0 a.m.3 views

The vulnerability of the H5A__close() function in the HDF5 library allows a hacker to trigger a service failure.

The vulnerability of the H5Aclose function in the HDF5 library is related to buffer overflows in the queue, which can lead to corruption of instruction pointers. Exploiting this vulnerability may allow an attacker to cause a service failure from a remote location...

4.8CVSS7AI score0.00673EPSS
Exploits0References5Affected Software4
BDU FSTEC
BDU FSTEC
added 2024/09/17 12:0 a.m.5 views

The vulnerability of the H5F_addr_decode_len() function in the H5Fint.c file of the HDF5 library allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the H5Faddrdecodelen function in the H5Fint.c file of the HDF5 library is related to buffer overflow in the queue. Exploitation of this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.4CVSS7.7AI score0.00245EPSS
Exploits0References5Affected Software4
Rows per page
Query Builder