Lucene search
K

11271 matches found

NVD
NVD
added 2025/08/25 3:15 p.m.5 views

CVE-2025-52456

A memory corruption vulnerability exists in the WebP Image Decoding functionality of the SAIL Image Decoding Library v0.9.8. When loading a specially crafted .webp animation an integer overflow can be made to occur when calculating the stride for decoding. Afterwards, this will cause a heap-based...

8.8CVSS0.00636EPSS
Exploits1References2
NVD
NVD
added 2025/08/25 3:15 p.m.5 views

CVE-2025-50129

A memory corruption vulnerability exists in the PCX Image Decoding functionality of the SAIL Image Decoding Library v0.9.8. When decoding the image data from a specially crafted .tga file, a heap-based buffer overflow can occur which allows for remote code execution. An attacker will need to...

8.8CVSS0.00691EPSS
Exploits1References2
CVE
CVE
added 2025/08/25 2:17 p.m.30 views

CVE-2025-46407

The CVE-2025-46407 entry concerns a memory corruption vulnerability in the BMPv3 Palette Decoding functionality of the SAIL Image Decoding Library v0.9.8. The root cause is an integer overflow while reading the palette from a specially crafted BMP file, which can overflow a heap-based buffer. Thi...

8.8CVSS8.3AI score0.00614EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2025/08/25 2:17 p.m.32 views

CVE-2025-32468

CVE-2025-32468 : A memory corruption vulnerability exists in the BMPv3 Image Decoding functionality of the SAIL Image Decoding Library v0.9.8. When loading a specially crafted .bmp, an integer overflow occurs during stride calculation, leading to a heap-based buffer overflow during decoding and p...

8.8CVSS8.3AI score0.00636EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/25 2:17 p.m.3 views

CVE-2025-35984

A memory corruption vulnerability exists in the PCX Image Decoding functionality of the SAIL Image Decoding Library v0.9.8. When decoding the image data from a specially crafted .pcx file, a heap-based buffer overflow can occur which allows for remote code execution. An attacker will need to...

8.8CVSS8.4AI score0.0094EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2025/08/25 2:17 p.m.3 views

CVE-2025-35984

A memory corruption vulnerability exists in the PCX Image Decoding functionality of the SAIL Image Decoding Library v0.9.8. When decoding the image data from a specially crafted .pcx file, a heap-based buffer overflow can occur which allows for remote code execution. An attacker will need to...

8.8CVSS6.5AI score0.0094EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2025/08/25 2:17 p.m.1 views

CVE-2025-53510

A memory corruption vulnerability exists in the PSD Image Decoding functionality of the SAIL Image Decoding Library v0.9.8. When loading a specially crafted .psd file, an integer overflow can be made to occur when calculating the stride for decoding. Afterwards, this will cause a heap-based buffe...

8.8CVSS8.3AI score0.00636EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/08/25 2:17 p.m.2 views

CVE-2025-53085

A memory corruption vulnerability exists in the PSD RLE Decoding functionality of the SAIL Image Decoding Library v0.9.8. When decompressing the image data from a specially crafted .psd file, a heap-based buffer overflow can occur which allows for remote code execution. An attacker will need to...

8.8CVSS8.4AI score0.00691EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/08/25 2:17 p.m.1 views

CVE-2025-52456

A memory corruption vulnerability exists in the WebP Image Decoding functionality of the SAIL Image Decoding Library v0.9.8. When loading a specially crafted .webp animation an integer overflow can be made to occur when calculating the stride for decoding. Afterwards, this will cause a heap-based...

8.8CVSS8.3AI score0.00636EPSS
Exploits1References1
CVE
CVE
added 2025/08/25 2:17 p.m.31 views

CVE-2025-52456

The CVE-2025-52456 entry describes a memory corruption in the WebP decoding path of the SAIL Image Decoding Library v0.9.8. Specifically, an integer overflow during stride calculation in the WebP animation decoding can overflow a heap buffer, enabling remote code execution when a crafted file is ...

8.8CVSS8.3AI score0.00636EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVE
added 2025/08/25 2:17 p.m.3 views

CVE-2025-52456

A memory corruption vulnerability exists in the WebP Image Decoding functionality of the SAIL Image Decoding Library v0.9.8. When loading a specially crafted .webp animation an integer overflow can be made to occur when calculating the stride for decoding. Afterwards, this will cause a heap-based...

8.8CVSS6.4AI score0.00636EPSS
Exploits1
CVE
CVE
added 2025/08/25 9:23 a.m.21 views

CVE-2025-8562

CVE-2025-8562 refers to a path traversal vulnerability in the WordPress plugin Custom Query Shortcode (versions

6.5CVSS6AI score0.00389EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/08/25 12:0 a.m.3 views

PerfreeBlog 安全漏洞

PerfreeBlog is PerfreeBlog open source a java-based development of blog/CMS site building platform. PerfreeBlog v4.0.11 version of a security vulnerability , the vulnerability stems from the getThemeFileContent function has an arbitrary file read problem...

7.5CVSS6.8AI score0.00335EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/08/25 12:0 a.m.7 views

CVE-2025-29421

PerfreeBlog v4.0.11 has an arbitrary file read vulnerability in the getThemeFileContent function...

0.00335EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/08/25 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2016-10187

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The E-book viewer in calibre before 2.75 allows remote attackers to read arbitrary files via a crafted epub file with JavaScript. CVE-2016-10187 Note that Nessu...

5.5CVSS6.2AI score0.02793EPSS
Exploits1References2
CVE
CVE
added 2025/08/25 12:0 a.m.20 views

CVE-2025-29421

CVE-2025-29421 affects PerfreeBlog v4.0.11 and describes an arbitrary file-read vulnerability in the getThemeFileContent function. The CVE reports a network-based, low-complexity issue with no privileges required and no user interaction, resulting in high confidentiality impact and no integrity/a...

7.5CVSS7.2AI score0.00335EPSS
Exploits1References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/08/25 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-10472

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen through 4.10.x allowing x86 HVM guest OS users in certain configurations to read arbitrary dom0 files via QMP live insertion of a...

5.6CVSS6.9AI score0.00373EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/08/25 12:0 a.m.4 views

PT-2025-34622 · Unknown · Sail Image Decoding Library

Name of the Vulnerable Software and Affected Versions: SAIL Image Decoding Library version 0.9.8 Description: A memory corruption issue exists in the WebP Image Decoding functionality. Loading a specially crafted .webp animation can cause an integer overflow when calculating the stride for...

8.8CVSS7.4AI score0.00636EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/08/25 12:0 a.m.6 views

PT-2025-34625 · Unknown · Sail Image Decoding Library

Name of the Vulnerable Software and Affected Versions: SAIL Image Decoding Library version 0.9.8 Description: A memory corruption issue exists in the BMPv3 RLE Decoding functionality. A heap-based buffer overflow can occur when decompressing image data from a specially crafted .bmp file,...

8.8CVSS7.4AI score0.00691EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/08/25 12:0 a.m.4 views

PT-2025-34682 · Unknown · Perfreeblog

Name of the Vulnerable Software and Affected Versions: PerfreeBlog version 4.0.11 Description: PerfreeBlog version 4.0.11 contains an arbitrary file read vulnerability within the getThemeFileContent function. Recommendations: At the moment, there is no information about a newer version that...

7.5CVSS6.3AI score0.00335EPSS
Exploits1References4
Rows per page
Query Builder