CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

828 matches found

EUVD•added 2026/03/01 12:32 p.m.•3 views

EUVD-2026-9129

A vulnerability was detected in jarikomppa soloud up to 20200207. This affects the function SoLoud::Wav::loadwav of the file src/audiosource/wav/soloudwav.cpp of the component WAV File Parser. Performing a manipulation results in memory corruption. The attack must be initiated from a local...

4.8CVSS5.6AI score0.00031EPSS

Exploits1References6

Vulnrichment•added 2026/03/01 12:32 p.m.•1 views

CVE-2026-3394 jarikomppa soloud WAV File soloud_wav.cpp loadwav memory corruption

4.8CVSS5.6AI score0.00031EPSS

Exploits1References6

ATTACKERKB•added 2026/03/01 12:32 p.m.•3 views

CVE-2026-3394

7.8CVSS5.6AI score0.00031EPSS

Exploits1References6Affected Software1

Positive Technologies•added 2026/03/01 12:0 a.m.•6 views

PT-2026-22516

A vulnerability was detected in jarikomppa soloud up to 20200207. This affects the function SoLoud::Wav::loadwav of the file src/audiosource/wav/soloud wav.cpp of the component WAV File Parser. Performing a manipulation results in memory corruption. The attack must be initiated from a local...

4.8CVSS5.6AI score0.00031EPSS

Exploits1References7

CNNVD•added 2026/03/01 12:0 a.m.•1 views

SoLoud 缓冲区错误漏洞

SoLoud is a game audio engine developed by Jari Komppa personally. Versions of soloud 20200207 and earlier contained a buffer error vulnerability, which stemmed from memory corruption in the function located in the component WAV File Parser, specifically in the file...

7.8CVSS6AI score0.00031EPSS

Exploits1References7

NVD•added 2026/02/26 12:16 a.m.•7 views

CVE-2026-27710

NanaZip is an open source file archive. Starting in version 5.0.1252.0 and prior to versions 6.0.1638.0 and 6.5.1638.0, a denial-of-service vulnerability exists in NanaZip’s .NET Single File Application parser. A crafted bundle can force an integer underflow in header-size calculation and trigger...

5.1CVSS0.00018EPSS

Exploits1References1

CNNVD•added 2026/02/26 12:0 a.m.•3 views

NanaZip 安全漏洞

NanaZip is a compression software open source by the M2-Team. Versions of NanaZip from 5.0.1252.0 to 6.0.1638.0, as well as versions before 6.5.1638.0, have security vulnerabilities. These vulnerabilities stem from the.NET Single File Application parser’s integer underflow in header size...

5.1CVSS5.8AI score0.00018EPSS

Exploits1References1

OSV•added 2026/02/25 11:43 p.m.•2 views

CVE-2026-27710 NanaZip .NET Single-File Parser Integer Underflow Leads to Unbounded Allocation (DoS)

5.1CVSS5.6AI score0.00018EPSS

Exploits1References3

EUVD•added 2026/02/25 11:43 p.m.•1 views

EUVD-2026-8768

5.1CVSS5.5AI score0.00018EPSS

Exploits1References1

SUSE CVE•added 2026/02/25 12:26 a.m.•1 views

SUSE CVE-2026-3102

A vulnerability was determined in exiftool up to 13.49 on macOS. This issue affects the function SetMacOSTags of the file lib/Image/ExifTool/MacOS.pm of the component PNG File Parser. This manipulation of the argument DateTimeOriginal causes os command injection. The attack is possible to be...

8.8CVSS5.5AI score0.00073EPSS

Exploits2References3

Positive Technologies•added 2026/02/25 12:0 a.m.•5 views

PT-2026-22044

5.1CVSS5.5AI score0.00018EPSS

Exploits1References2

NVD•added 2026/02/24 3:21 p.m.•4 views

CVE-2026-3102

8.8CVSS0.00073EPSS

Exploits2References7

Vulnrichment•added 2026/02/24 2:32 p.m.•3 views

CVE-2026-3102 exiftool PNG File MacOS.pm SetMacOSTags os command injection

7.5CVSS6.3AI score0.00073EPSS

Exploits2References7

EUVD•added 2026/02/24 2:32 p.m.•2 views

EUVD-2026-8471

7.5CVSS6.2AI score0.00073EPSS

Exploits2References7

SUSE Linux•added 2026/02/24 11:17 a.m.•4 views

Security update for gimp

This update for gimp fixes the following issues: CVE-2026-2272: integer overflow in ICO file handling can lead to a heap buffer overflow bsc1258000. CVE-2026-2271: integer overflow in the PSP file parser can lead to a heap buffer overflow bsc1257999. CVE-2026-2239: missing null terminator when...

8.5CVSS5.8AI score0.00059EPSS

Exploits3References12

Positive Technologies•added 2026/02/24 12:0 a.m.•7 views

PT-2026-21764

Name of the Vulnerable Software and Affected Versions exiftool versions prior to 13.50 Description An OS command injection issue exists in the PNG File Parser component of exiftool on macOS. The flaw is located in the SetMacOSTags function within the lib/Image/ExifTool/MacOS.pm file. A remote...

8.8CVSS7.4AI score0.00073EPSS

Exploits2References39

RedhatCVE•added 2026/02/22 1:28 a.m.•3 views

CVE-2026-2858

A vulnerability was identified in wren-lang wren up to 0.4.0. This affects the function peekChar of the file src/vm/wrencompiler.c of the component Source File Parser. Such manipulation leads to out-of-bounds read. The attack needs to be performed locally. The exploit is publicly available and...

7.1CVSS5.1AI score0.00017EPSS

Exploits0References1

NVD•added 2026/02/20 10:16 p.m.•5 views

CVE-2026-2858

7.1CVSS0.00017EPSS

Exploits0References6

Vulnrichment•added 2026/02/20 9:32 p.m.•4 views

CVE-2026-2858 wren-lang wren Source File wren_compiler.c peekChar out-of-bounds

4.8CVSS4.9AI score0.00017EPSS

Exploits0References6

Snyk•added 2026/02/19 5:1 a.m.•1 views

Off-by-one Error

Overview Affected versions of this package are vulnerable to Off-by-one Error via the decodebase64 function in the Encrypted XLSX File Parser component. An attacker can cause a denial of service by executing a manipulation that triggers an off-by-one error. Remediation A fix was pushed into the...

5.5CVSS5.6AI score0.00012EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by