Lucene search
K

2251 matches found

Prion
Prion
added 2021/03/01 4:15 p.m.14 views

Heap overflow

A heap buffer overflow vulnerability inside of BMP image processing was found at core module of ONLYOFFICE DocumentServer v4.0.0-9-v6.0.0. Using this vulnerability, an attacker is able to gain remote code executions on DocumentServer...

7.5CVSS9.9AI score0.1259EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2021/03/01 3:8 p.m.33 views

CVE-2021-25832

A heap buffer overflow vulnerability inside of BMP image processing was found at core module of ONLYOFFICE DocumentServer v4.0.0-9-v6.0.0. Using this vulnerability, an attacker is able to gain remote code executions on DocumentServer...

10AI score0.1259EPSS
Exploits1References7
CVE
CVE
added 2021/03/01 3:8 p.m.43 views

CVE-2021-25832

CVE-2021-25832 affects ONLYOFFICE DocumentServer. A heap buffer overflow in the BMP image processing of the core module (document server) can allow remote code execution on vulnerable versions: v4.0.0-9-v6.0.0. The provided documents do not include remediation steps or patch/version details beyon...

9.8CVSS9.9AI score0.1259EPSS
Exploits1References7Affected Software1
Ubuntu
Ubuntu
added 2021/02/25 5:1 p.m.137 views

USN-4755-1: LibTIFF vulnerabilities

It was discovered that LibTIFF incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image, a remote attacker could crash the application, leading to a denial of service, or possibly execute arbitrary code with user privileges...

7.8CVSS7.6AI score0.01922EPSS
Exploits0
CNNVD
CNNVD
added 2021/02/25 12:0 a.m.5 views

ImageMagick Studio ImageMagick 数字错误漏洞

Imagemagick Studio ImageMagick is a suite of open source image processing software from the American company ImageMagick Studio. The software can read, convert or write images in a variety of formats. A de-zero vulnerability exists in coders/jp2.c in versions prior to ImageMagick 7.0.10-62. An...

5.5CVSS6.8AI score0.01117EPSS
Exploits0References14
OSV
OSV
added 2021/02/05 11:2 a.m.3 views

OESA-2021-1007 ImageMagick security update

Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...

7.8CVSS6.8AI score0.0703EPSS
Exploits5References11
BDU FSTEC
BDU FSTEC
added 2021/02/02 12:0 a.m.4 views

The vulnerability of the Cisco Webex Teams collaboration software, related to errors in processing images of various symbols, allows a hacker to manipulate the names of files in the messaging interface.

The vulnerability of the Cisco Webex Teams collaboration software is related to errors in processing images of various symbols. Exploiting this vulnerability allows a malicious actor to remotely manipulate the names of files in the messaging interface...

5CVSS6.2AI score0.01352EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2021/01/26 12:0 a.m.5 views

Rust 安全漏洞

Rust is a general-purpose, compiled programming language from the Mozilla Foundation. A security vulnerability exists in Rust im crate through 2020-11-09, which stems from a limitation that TreeFocus does not have a send feature or a synchronization feature, resulting in a data contention...

4.7CVSS5.8AI score0.00332EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/01/25 12:0 a.m.22 views

Fedora: Security Advisory for python-pillow (FEDORA-2021-880aa7bd27)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.1CVSS8.3AI score0.01573EPSS
Exploits0References2
Fedora
Fedora
added 2021/01/24 1:23 a.m.131 views

[SECURITY] Fedora 32 Update: python-pillow-7.0.0-5.fc32

Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are four subpackages: tk tk interface, qt PIL image wrapper for Qt , devel developme...

8.8CVSS1.4AI score0.01789EPSS
Exploits0
Fedora
Fedora
added 2021/01/21 1:47 a.m.69 views

[SECURITY] Fedora 33 Update: python-pillow-7.2.0-3.fc33

Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are four subpackages: tk tk interface, qt PIL image wrapper for Qt , devel developme...

8.8CVSS1.4AI score0.01789EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/01/21 12:0 a.m.29 views

Fedora: Security Advisory for python-pillow (FEDORA-2021-a8ddc1ce70)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.3AI score
Exploits0References2
CNVD
CNVD
added 2021/01/14 12:0 a.m.22 views

Pillow Buffer Overflow Vulnerability (CNVD-2021-54038)

Pillow is a Python-based image processing library. buffer overflow vulnerability exists in versions of Pillow prior to 8.1.0, which can be exploited by attackers to cause a buffer over read...

7.1CVSS5.5AI score0.01498EPSS
Exploits0References1
CNVD
CNVD
added 2020/12/24 12:0 a.m.3 views

Magical Image Converter and Processor (Windows Edition) Denial of Service Vulnerability

Magic Image Processing Software is a professional, easy-to-use and efficient image processing software toolset developed by Beijing Magic Pixel Technology Co. A denial of service vulnerability exists in Miracle Image Converter windows version, which can be exploited by attackers to cause a softwa...

6.9AI score
Exploits0
CNVD
CNVD
added 2020/12/23 12:0 a.m.7 views

ImageMagick Input Validation Error Vulnerability (CNVD-2021-11327)

ImageMagick is a suite of open source image processing software. The software can read, convert or write images in a variety of formats. ImageMagick suffers from a security vulnerability, which stems from IntensityCompare of /magick/quantize.c, where a call to PixelPacketIntensity returns an...

4.3CVSS7.5AI score0.01124EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2020/12/22 12:0 a.m.5 views

The vulnerability of the realloc function in the Pillow image processing library allows a malicious actor to cause a service failure.

The vulnerability of the realloc function in the Pillow image processing library libImaging/TiffDecode.c is due to a numerical overflow during the processing of TIFF images. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

9.3CVSS6.5AI score0.01975EPSS
Exploits0References6Affected Software3
BDU FSTEC
BDU FSTEC
added 2020/12/22 12:0 a.m.3 views

The vulnerability of the PCX P library for image processing in Pillow allows a hacker to trigger a service failure.

The vulnerability of the PCX P library for image processing in Pillow relates to the issue of the operation exceeding the buffer boundaries in memory during the encoding of PCX images. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

9.8CVSS6.7AI score0.0369EPSS
Exploits0References14Affected Software6
Apple
Apple
added 2020/12/15 6:2 a.m.70 views

About the security content of iCloud for Windows 11.3 - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

9.8CVSS0.7AI score0.05716EPSS
Exploits9Affected Software1
CNVD
CNVD
added 2020/12/15 12:0 a.m.6 views

Imagemagick Studio ImageMagick Resource Management Error Vulnerability (CNVD-2021-25968)

Imagemagick Studio ImageMagick is a suite of open source image processing software from ImageMagick Studio Imagemagick Studio, an American company. The software can read, convert or write images in many formats. A resource management error vulnerability exists in versions of ImageMagick prior to...

5.5CVSS7AI score0.01101EPSS
Exploits1References1
CNVD
CNVD
added 2020/12/15 12:0 a.m.9 views

Imagemagick Studio ImageMagick Input Validation Error Vulnerability (CNVD-2021-23801)

Imagemagick Studio ImageMagick is a suite of open source image processing software from ImageMagick Studio Imagemagick Studio, an American company. The software can read, convert or write images in many formats. A security vulnerability exists in versions of ImageMagick prior to 7.0.9-0, which...

5.5CVSS6.4AI score0.00833EPSS
Exploits1References1
Rows per page
Query Builder