CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

516 matches found

Positive Technologies•added 2026/01/01 12:0 a.m.•3 views

PT-2026-21391

GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability...

7.2AI score0.00058EPSS

Exploits0References17

OSV•added 2025/12/19 9:30 a.m.•2 views

CLSA-2025-1766136361 exiv2: Fix of CVE-2025-55304

CVE-2025-55304: add new method appendIccProfile to fix quadratic performance issue...

5.5CVSS5.8AI score0.00011EPSS

Exploits1References1

Redos•added 2025/12/16 12:0 a.m.•3 views

ROS-20251216-7349

A vulnerability in the Gimp image processing library is related to writing beyond buffer boundaries. Exploitation of the vulnerability could allow an attacker to execute arbitrary code by loading a specially crafted ICNS file...

7.8CVSS8AI score0.00075EPSS

Exploits0

Microsoft CVE•added 2025/11/27 9:3 a.m.•5 views

LIBPNG is vulnerable to a heap buffer overflow in `png_combine_row` triggered via `png_image_finish_read`

...

7.1CVSS7AI score0.00065EPSS

Exploits4

F5 Networks•added 2025/11/26 8:50 p.m.•6 views

K000157986: Multiple LibTIFF vulnerabilities

Security Advisory Description CVE-2016-9532 Integer overflow in the writeBufferToSeparateStrips function in tiffcrop.c in LibTIFF before 4.0.7 allows remote attackers to cause a denial of service out-of-bounds read via a crafted tif file. CVE-2016-5322 The setByteArray function in tifdir.c in...

9.1CVSS7.3AI score0.01239EPSS

Exploits0

Gentoo Linux•added 2025/11/26 12:0 a.m.•8 views

libpng: Multiple vulnerabilities

Background libpng is the official PNG reference library used to read, write and manipulate PNG images. Description Multiple vulnerabilities have been discovered in libpng. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for...

7.1CVSS7.3AI score0.00079EPSS

Exploits5

OSV•added 2025/11/25 10:18 p.m.•2 views

JLSEC-2025-262 Reachable Assertion in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via a c...

Reachable Assertion in tiffcp in libtiff 4.3.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 5e180045...

6.5CVSS6.6AI score0.00035EPSS

Exploits1References8

OSV•added 2025/11/25 10:18 p.m.•2 views

JLSEC-2025-319 A vulnerability was found in LibTIFF up to 4.7.0

A vulnerability was found in LibTIFF up to 4.7.0. It has been declared as problematic. Affected by this vulnerability is the function t2preadtiffinit of the file tools/tiff2pdf.c of the component fax2ps. The manipulation leads to null pointer dereference. The attack needs to be approached locally...

2.5CVSS5.7AI score0.00141EPSS

Exploits1References8

OSV•added 2025/11/25 12:15 a.m.•3 views

ALPINE-CVE-2025-64505

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. Prior to version 1.6.51, a heap buffer over-read vulnerability exists in libpng's pngdoquantize function when processing PNG files with malformed palette...

6.1CVSS7.1AI score0.00014EPSS

Exploits2References1

OSV•added 2025/11/25 12:15 a.m.•0 views

UBUNTU-CVE-2025-64720

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From version 1.6.0 to before 1.6.51, an out-of-bounds read vulnerability exists in pngimagereadcomposite when processing palette images with PNGFLAGOPTIMIZEALP...

7.1CVSS6.4AI score0.00079EPSS

Exploits4References7