Lucene search
+L

447 matches found

Cvelist
Cvelist
added 6 days ago33 views

CVE-2026-15520 GNU LibreDWG R2004 Section Decompression decode.c decompress_R2004_section heap-based overflow

A vulnerability was determined in GNU LibreDWG 0.13.4-154-g0b573035. This impacts the function decompressR2004section of the file src/decode.c of the component R2004 Section Decompression. Executing a manipulation can lead to heap-based buffer overflow. The attack requires local access. The explo...

5.3CVSS0.00136EPSS
Exploits0References10
OSV
OSV
added 6 days ago4 views

CVE-2026-15520 GNU LibreDWG R2004 Section Decompression decode.c decompress_R2004_section heap-based overflow

A vulnerability was determined in GNU LibreDWG 0.13.4-154-g0b573035. This impacts the function decompressR2004section of the file src/decode.c of the component R2004 Section Decompression. Executing a manipulation can lead to heap-based buffer overflow. The attack requires local access. The explo...

4.8CVSS6AI score0.00136EPSS
Exploits0References12
CVE
CVE
added 6 days ago19 views

CVE-2026-15520

GNU LibreDWG 0.13.4-154-g0b573035 contains a vulnerability in the function decompress_R2004_section (src/decode.c) that can cause a heap-based buffer overflow . Exploitation requires local access and has been publicly disclosed. The issue affects the R2004 Section Decompression component and is a...

5.3CVSS6.1AI score0.00136EPSS
Exploits0References10
NVD
NVD
added 2026/07/09 12:16 p.m.10 views

CVE-2026-15182

A vulnerability has been found in GNU LibreDWG up to 0.13.4. The affected element is the function dwgbmp of the file src/dwg.c of the component BMP Image Handler. Such manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit has been disclosed to the...

5.3CVSS0.00133EPSS
Exploits0References10
CVE
CVE
added 2026/07/09 12:0 p.m.12 views

CVE-2026-15184

CVE-2026-15184 affects GNU LibreDWG up to 0.13.4. The vulnerable element is the function dwg_next_entity in src/dwg.c of the DWG File Handler. Manipulating the argument next_obj can cause a null pointer dereference . The attack must come from a local position and an exploit has been made public. ...

4.8CVSS5.5AI score0.00118EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/07/09 12:0 a.m.8 views

PT-2026-56793

Name of the Vulnerable Software and Affected Versions GNU LibreDWG versions prior to 0.14 Description A null pointer dereference occurs in the DWG File Handler component when the next obj argument is manipulated within the dwg next entity function located in the src/dwg.c file. This issue require...

4.8CVSS6AI score0.00118EPSS
Exploits0References36
SUSE CVE
SUSE CVE
added 2026/05/27 12:59 p.m.16 views

SUSE CVE-2026-9502

A vulnerability was identified in GNU LibreDWG up to 0.14. This affects the function decompressR2004section of the file src/decode.c of the component Dwgread Utility. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit is publicly available an...

5.3CVSS6AI score0.00154EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/27 12:59 p.m.13 views

SUSE CVE-2026-9529

A security flaw has been discovered in GNU LibreDWG up to 0.14. The affected element is the function matchBLOCKHEADER of the file dwggrep.c of the component Dwggrep Utility. Performing a manipulation results in null pointer dereference. The attack requires a local approach. The exploit has been...

4.8CVSS5.4AI score0.00143EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/27 12:59 p.m.13 views

SUSE CVE-2026-9605

A flaw has been found in GNU libredwg up to 0.13.4.8160. This issue affects the function bitreadRC of the file bits.c of the component Dwgbmp Utility. This manipulation causes heap-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been published and may be...

7.5CVSS7.2AI score0.00339EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/27 2:52 a.m.12 views

SUSE CVE-2026-9530

A weakness has been identified in GNU LibreDWG up to 0.14. The impacted element is the function read2004compressedsection of the file src/decode.c of the component Dwgbmp Utility. Executing a manipulation can lead to out-of-bounds read. The attack requires local access. The exploit has been made...

4.8CVSS5.4AI score0.00143EPSS
Exploits0References3
NVD
NVD
added 2026/05/27 12:16 a.m.18 views

CVE-2026-9605

A flaw has been found in GNU libredwg up to 0.13.4.8160. This issue affects the function bitreadRC of the file bits.c of the component Dwgbmp Utility. This manipulation causes heap-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been published and may be...

7.5CVSS0.00339EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/05/27 12:0 a.m.51 views

GNU LibreDWG 安全漏洞

GNU LibreDWG is a C-language library from the GNU community in the United States that is used for processing DWG files. Versions of GNU LibreDWG 0.13.4.8160 and earlier contain security vulnerabilities. These vulnerabilities stem from a heap buffer overflow in the bitreadRC function within the...

7.5CVSS7.3AI score0.00339EPSS
Exploits0References8
EUVD
EUVD
added 2026/05/26 11:15 p.m.11 views

EUVD-2026-32023

A flaw has been found in GNU libredwg up to 0.13.4.8160. This issue affects the function bitreadRC of the file bits.c of the component Dwgbmp Utility. This manipulation causes heap-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been published and may be...

7.5CVSS7.2AI score0.00339EPSS
Exploits0References7
CVE
CVE
added 2026/05/26 11:15 p.m.36 views

CVE-2026-9605

GNU libredwg up to 0.13.4.8160 has a heap-based buffer overflow in the bit_read_RC function (bits.c) of the Dwgbmp Utility. The flaw can be triggered remotely and an exploit has been published. A patch identified by hash 8f03865f37f5d4ffd616fef802acc980be54d300 is available; applying the patch is...

7.5CVSS7.2AI score0.00339EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/05/26 11:15 p.m.37 views

CVE-2026-9605 GNU libredwg Dwgbmp Utility bits.c bit_read_RC heap-based overflow

A flaw has been found in GNU libredwg up to 0.13.4.8160. This issue affects the function bitreadRC of the file bits.c of the component Dwgbmp Utility. This manipulation causes heap-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been published and may be...

7.5CVSS0.00339EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/05/26 11:15 p.m.11 views

CVE-2026-9605 GNU libredwg Dwgbmp Utility bits.c bit_read_RC heap-based overflow

A flaw has been found in GNU libredwg up to 0.13.4.8160. This issue affects the function bitreadRC of the file bits.c of the component Dwgbmp Utility. This manipulation causes heap-based buffer overflow. The attack is possible to be carried out remotely. The exploit has been published and may be...

7.5CVSS7.2AI score0.00339EPSS
Exploits0References7
NVD
NVD
added 2026/05/26 5:16 a.m.15 views

CVE-2026-9529

A security flaw has been discovered in GNU LibreDWG up to 0.14. The affected element is the function matchBLOCKHEADER of the file dwggrep.c of the component Dwggrep Utility. Performing a manipulation results in null pointer dereference. The attack requires a local approach. The exploit has been...

4.8CVSS0.00143EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/26 4:30 a.m.8 views

CVE-2026-9530

A weakness has been identified in GNU LibreDWG up to 0.14. The impacted element is the function read2004compressedsection of the file src/decode.c of the component Dwgbmp Utility. Executing a manipulation can lead to out-of-bounds read. The attack requires local access. The exploit has been made...

4.8CVSS5.4AI score0.00143EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2026/05/26 4:15 a.m.43 views

CVE-2026-9529 GNU LibreDWG Dwggrep Utility dwggrep.c match_BLOCK_HEADER null pointer dereference

A security flaw has been discovered in GNU LibreDWG up to 0.14. The affected element is the function matchBLOCKHEADER of the file dwggrep.c of the component Dwggrep Utility. Performing a manipulation results in null pointer dereference. The attack requires a local approach. The exploit has been...

4.8CVSS0.00143EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/26 4:15 a.m.7 views

CVE-2026-9529

A security flaw has been discovered in GNU LibreDWG up to 0.14. The affected element is the function matchBLOCKHEADER of the file dwggrep.c of the component Dwggrep Utility. Performing a manipulation results in null pointer dereference. The attack requires a local approach. The exploit has been...

4.8CVSS5.4AI score0.00143EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder