CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11091 matches found

Positive Technologies•added 2026/02/24 12:0 a.m.•6 views

PT-2026-21647

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 7.1.2-15 ImageMagick versions prior to 6.9.13-40 Description ImageMagick is software used for editing and manipulating digital images. A specially crafted profile containing invalid IPTC data can cause an infinite...

9.8CVSS5.2AI score0.0045EPSS

Exploits0References161

Positive Technologies•added 2026/02/24 12:0 a.m.•4 views

PT-2026-21648

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 7.1.2-15 ImageMagick versions prior to 6.9.13-40 Description ImageMagick is software used for editing and manipulating digital images. A continue statement within the JPEG extent binary search loop in the jpeg...

9.8CVSS5.2AI score0.00594EPSS

Exploits0References145

UbuntuCve•added 2026/02/24 12:0 a.m.•5 views

CVE-2026-24485

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, when a PCD file does not contain a valid Sync marker, the DecodeImage function becomes trapped in an infinite loop while searching for the Sync marker, causing...

7.5CVSS5.9AI score0.00449EPSS

Exploits0References5

UbuntuCve•added 2026/02/24 12:0 a.m.•5 views

CVE-2026-26283

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a continue statement in the JPEG extent binary search loop in the jpeg encoder causes an infinite loop when writing persistently fails. An attacker can trigger ...

7.5CVSS6.5AI score0.00327EPSS

Exploits0References2

CNNVD•added 2026/02/24 12:0 a.m.•4 views

ImageMagick 安全漏洞

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It can read, convert, and write images in various formats. Versions of ImageMagick prior to 7.1.2-15 and 6.9.13-40 contained security vulnerabilities. These vulnerabilities stemmed from configurati...

7.5CVSS7.2AI score0.00327EPSS

Exploits0References2

UbuntuCve•added 2026/02/24 12:0 a.m.•2 views

CVE-2026-26066

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted profile contain invalid IPTC data may cause an infinite loop when writing it with IPTCTEXT. Versions 7.1.2-15 and 6.9.13-40 contain a patch...

7.5CVSS5.9AI score0.00327EPSS

Exploits0References3

Tenable Nessus•added 2026/02/24 12:0 a.m.•5 views

Unity Linux 20.1060e / 20.1070e Security Update: wireshark (UTSA-2026-005363)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005363 advisory. In Wireshark through 3.2.7, the Facebook Zero Protocol aka FBZERO dissector could enter an infinite loop. This was addressed in epan/dissectors/packet-fbzero.c by...

7.5CVSS5.5AI score0.03078EPSS

Exploits0References4

Tenable Nessus•added 2026/02/24 12:0 a.m.•6 views

Unity Linux 20.1060e / 20.1070e Security Update: wireshark (UTSA-2026-005367)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005367 advisory. In Wireshark 3.0.0 to 3.0.3 and 2.6.0 to 2.6.10, the Gryphon dissector could go into an infinite loop. This was addressed in plugins/epan/gryphon/packet-gryphon.c by...

7.8CVSS5.6AI score0.03753EPSS

Exploits0References4

RedHat Linux•added 2026/02/23 1:47 a.m.•3 views

libpng: LIBPNG has a heap buffer overflow in png_set_quantize

A heap based buffer overflow flaw has been discovered in LibPNG. Prior to version 1.6.55, an out-of-bounds read vulnerability exists in the pngsetquantize API function. When the function is called with no histogram and the number of colors in the palette is more than twice the maximum supported b...

8.3CVSS5.9AI score0.00905EPSS

Exploits1References7

Microsoft CVE•added 2026/02/21 12:29 p.m.•4 views

ksmbd: fix infinite loop caused by next_smb2_rcv_hdr_off reset in error paths

...

6.5CVSS5.9AI score0.00118EPSS

Exploits0

Veracode•added 2026/02/21 5:6 a.m.•7 views

Infinite Loop

pypdf is vulnerable to Infinite Loop. The vulnerability is due to an infinite loop vulnerability that is present in versions prior to 6.6.2, where an attacker can craft a PDF which leads to an infinite loop by accessing the outlines/bookmarks...

5.1CVSS5.7AI score0.00374EPSS

Exploits2References4Affected Software1

RedhatCVE•added 2026/02/21 1:30 a.m.•16 views

CVE-2026-27114

NanaZip is an open source file archive. Starting in version 5.0.1252.0 and prior to version 6.0.1630.0, circular NextOffset chains cause an infinite loop in the ROMFS archive parser. Version 6.0.1630.0 patches the issue...

7.5CVSS5.4AI score0.00267EPSS

Exploits1References1

Tenable Nessus•added 2026/02/21 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2026-27024

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop...

6.9CVSS5.8AI score0.00168EPSS

Exploits0References3

OSV•added 2026/02/20 10:16 p.m.•2 views

DEBIAN-CVE-2026-27024

pypdf is a free and open-source pure-python PDF library. Prior to 6.7.1, an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This requires accessing the children of a TreeObject, for example as part of outlines. This vulnerability is fixed in 6.7.1...

5.5CVSS5.3AI score0.00168EPSS

Exploits0References1