Lucene search
+L

132 matches found

cnnvd
cnnvd
added 2025/12/31 12:0 a.m.4 views

FontForge 安全漏洞

FontForge is an open source font editing tool from fontforge open source that supports multiple languages. A security vulnerability exists in FontForge that stems from improper validation of data length when parsing SFD files, which could lead to a heap buffer overflow and remote code execution...

8.8CVSS9.1AI score0.00579EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/12/31 12:0 a.m.5 views

FontForge 安全漏洞

FontForge is an open source font editing tool from fontforge that supports multiple languages. A security vulnerability exists in FontForge that stems from improper validation of data length when parsing PFB files, which could lead to a stack buffer overflow and remote code execution...

8.8CVSS9.1AI score0.0058EPSS
Exploits0References1
ubuntucve
ubuntucve
added 2025/12/23 10:15 p.m.5 views

CVE-2025-14423

GIMP LBM File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page ...

7.8CVSS7.5AI score0.00544EPSS
Exploits0References3
osv
osv
added 2025/12/23 10:15 p.m.5 views

UBUNTU-CVE-2025-14425

GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

7.8CVSS6.2AI score0.00539EPSS
Exploits0References5
snyk
snyk
added 2025/12/23 9:41 p.m.3 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the EXR file parsing process due to improper validation of user-supplied data length before copying it to a heap-based buffer. An attacker can execute arbitrary code in the context of the current process by...

8.5CVSS7.9AI score0.00158EPSS
Exploits0References2
debiancve
debiancve
added 2025/12/23 9:41 p.m.6 views

CVE-2025-12839

Academy Software Foundation OpenEXR EXR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Academy Software Foundation OpenEXR. User interaction is required to exploit this...

7.8CVSS7.8AI score0.00158EPSS
Exploits0
debiancve
debiancve
added 2025/12/23 9:31 p.m.3 views

CVE-2025-14425

GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page o...

7.8CVSS7.8AI score0.00539EPSS
Exploits0
cnnvd
cnnvd
added 2025/12/23 12:0 a.m.5 views

Academy Software Foundation OpenEXR 安全漏洞

Academy Software Foundation OpenEXR is a suite of software libraries for reading and writing EXR files organized by the Academy Software Foundation in the United States. A security vulnerability exists in Academy Software Foundation OpenEXR that stems from a lack of validation of the length of...

7.8CVSS8AI score0.00158EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/12/23 12:0 a.m.6 views

GIMP 安全漏洞

GIMP is an open source bitmap image editor from the GIMP team. A security vulnerability exists in GIMP that stems from a lack of proper validation of the length of user-supplied data when parsing an LBM file before copying it to the stack buffer, which could lead to a stack buffer overflow and...

7.8CVSS8AI score0.00544EPSS
Exploits0References2
cnnvd
cnnvd
added 2025/12/09 12:0 a.m.3 views

Robocode 安全漏洞

Robocode is an open source programming game by Robocode. A security vulnerability exists in Robocode version 1.9.3.6, which stems from insufficient data length validation and could lead to a buffer overflow and arbitrary code execution...

10CVSS7.6AI score0.005EPSS
Exploits0References1
nvd
nvd
added 2025/11/26 6:15 a.m.4 views

CVE-2025-9558

There is a potential OOB Write vulnerability in the genprovstart function in pbadv.c. The full length of the received data is copied into the link.rx.buf receiver buffer without any validation on the data size...

7.6CVSS0.00168EPSS
Exploits0References1
zdi
zdi
added 2025/11/11 12:0 a.m.6 views

Academy Software Foundation OpenEXR EXR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Academy Software Foundation OpenEXR. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS7.2AI score0.00158EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/10/29 12:0 a.m.2 views

GIMP 安全漏洞

GIMP is an open source bitmap image editor from the GIMP team. A security vulnerability exists in GIMP that stems from not properly validating the length of user-supplied data when parsing XWD files, which could lead to a heap buffer overflow and remote code execution...

7.8CVSS8AI score0.00452EPSS
Exploits0References3
cnnvd
cnnvd
added 2025/10/29 12:0 a.m.5 views

GIMP 安全漏洞

GIMP is an open source bitmap image editor from the GIMP team. A security vulnerability exists in GIMP that stems from a failure to properly validate the length of user-supplied data when parsing ILBM files, which could lead to remote code execution...

7.8CVSS7.8AI score0.02751EPSS
Exploits0References3
cnnvd
cnnvd
added 2025/10/29 12:0 a.m.3 views

GIMP 安全漏洞

GIMP is an open source bitmap image editor from the GIMP team. A security vulnerability exists in GIMP that stems from not properly validating the length of user-supplied data when parsing HDR files, which could lead to a heap buffer overflow and remote code execution...

7.8CVSS8AI score0.00452EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-3917

Malware in sbrugna...

7.8CVSS7.7AI score0.0021EPSS
Exploits0References2
mscve
mscve
added 2025/10/05 8:2 a.m.5 views

ksmbd: smbdirect: verify remaining_data_length respects max_fragmented_recv_size

...

5.5CVSS7AI score0.00136EPSS
Exploits0
mscve
mscve
added 2025/10/05 1:2 a.m.5 views

ksmbd: smbdirect: validate data_offset and data_length field of smb_direct_data_transfer

...

7.1CVSS7AI score0.0014EPSS
Exploits0
cvelist
cvelist
added 2025/10/04 7:31 a.m.14 views

CVE-2025-39943 ksmbd: smbdirect: validate data_offset and data_length field of smb_direct_data_transfer

In the Linux kernel, the following vulnerability has been resolved: ksmbd: smbdirect: validate dataoffset and datalength field of smbdirectdatatransfer If dataoffset and datalength of smbdirectdatatransfer struct are invalid, out of bounds issue could happen. This patch validate dataoffset and...

0.0014EPSS
Exploits0References6
cnnvd
cnnvd
added 2025/09/17 12:0 a.m.5 views

Ashlar-Vellum Graphite 安全漏洞

Ashlar-Vellum Graphite is a CAD modeling software from Ashlar-Vellum. A security vulnerability exists in Ashlar-Vellum Graphite that stems from a failure to properly validate the length of user-supplied data during VC6 file parsing, which could lead to a heap buffer overflow and remote code...

7.8CVSS8.1AI score0.00206EPSS
Exploits0References1
Rows per page
Query Builder