CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

482 matches found

Advisory ROSA-SA-2026-3296

CVE-ID: CVE-2020-10809 BDU-ID: 2024-07119 CVE-Crit: MEDIUM CVE-DESC.: Vulnerability in the Decompress function in the decompress.c file. This vulnerability is related to writing beyond the memory bounds. Exploitation of this vulnerability could allow an attacker to cause a service failure...

9.8CVSS6.5AI score0.00474EPSS

Exploits4

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в hdf5

The HDF5 library from version 1.14.3 has a heap-based buffer overflow issue in the H5Dscattermem function within the H5Dscatgath.c file...

8.8CVSS7.3AI score0.005EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•5 views

Astra Linux - уязвимость в hdf5

The HDF5 library from version 1.14.3 has a heap buffer overflow issue in the H5Omtimenewencode function within H5Omtime.c...

9.8CVSS7.3AI score0.00481EPSS

Exploits0References2

Tenable Nessus•added 2026/05/11 12:0 a.m.•3 views

Unity Linux 20.1070e Security Update: hdf5 (UTSA-2026-017688)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017688 advisory. A NULL pointer dereference in H5Osdspaceencode in H5Osdspace.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF...

6.5CVSS6.9AI score0.00755EPSS

Exploits1References4

OSV•added 2026/04/29 1:21 p.m.•2 views

JLSEC-2026-318

HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5VMarrayfill in H5VM.c called from H5Sselectelements in H5Spoint.c...

8.8CVSS8.6AI score0.006EPSS

Exploits0References2

OSV•added 2026/04/29 1:21 p.m.•3 views

JLSEC-2026-308

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in the function H5HLfldeserialize in H5HLcache.c, a different vulnerability than CVE-2024-32612...

7.4CVSS8.5AI score0.00087EPSS

Exploits0References2

OSV•added 2026/04/29 1:21 p.m.•2 views

JLSEC-2026-313

HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5Tgetnativetype in H5Tnative.c, resulting in the corruption of the instruction pointer...

7.4CVSS8.8AI score0.00107EPSS

Exploits0References2

OSV•added 2026/04/29 1:21 p.m.•1 views

JLSEC-2026-296

HDF5 through 1.14.3 contains a heap buffer overflow in H5Tbitfind, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...

7.4CVSS8.8AI score0.00086EPSS

Exploits0References2

OSV•added 2026/04/29 1:21 p.m.•2 views

JLSEC-2026-307

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in H5HLfldeserialize in H5HLcache.c, resulting in the corruption of the instruction pointer, a different vulnerability than CVE-2024-32613...

7.4CVSS8.7AI score0.00087EPSS

Exploits0References2

Snyk•added 2026/04/09 8:10 p.m.•3 views

Use After Free

Overview Affected versions of this package are vulnerable to Use After Free in the H5Tconvstruct function. An attacker can achieve arbitrary code execution or cause a denial of service by supplying a specially crafted h5 file that triggers a use-after-free condition during memory operations...

8.4CVSS6.4AI score0.0002EPSS

Exploits1References2

Tenable Nessus•added 2026/02/21 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-2492

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - TensorFlow HDF5 Library Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate...

7CVSS7.5AI score0.00012EPSS

Exploits0References2

OSV•added 2026/02/20 11:16 p.m.•1 views

AZL-78246 CVE-2026-2492 affecting package tensorflow 2.11.1-2

TensorFlow HDF5 Library Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of TensorFlow. An attacker must first obtain the ability to execute low-privileged code on the target syste...

7CVSS6.2AI score0.00012EPSS

Exploits0References1

OSV•added 2026/02/20 11:16 p.m.•3 views

DEBIAN-CVE-2026-2492

7CVSS7.7AI score0.00012EPSS

Exploits0References1

OSV•added 2026/02/20 11:16 p.m.•1 views

AZL-78234 CVE-2026-2492 affecting package tensorflow for versions less than 2.16.1-11

7CVSS6.2AI score0.00012EPSS

Exploits0References1

Cvelist•added 2026/02/20 10:22 p.m.•18 views

CVE-2026-2492 TensorFlow HDF5 Library Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

7CVSS0.00012EPSS

Exploits0References2

Zero Day Initiative•added 2026/02/19 12:0 a.m.•2 views

TensorFlow HDF5 Library Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of TensorFlow. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of plugins...

7CVSS6.2AI score0.00012EPSS

Exploits0References1