Lucene search
K

60 matches found

ATTACKERKB
ATTACKERKB
added last week5 views

CVE-2026-54059

Pillow is a Python imaging library. Prior to 12.3.0, PIL/PcfFontFile.py loadbitmaps read glyph dimensions from the PCF METRICS section and passed them directly to Image.frombytes without calling Image.decompressionbombcheck, allowing crafted PCF font data to cause excessive memory allocation. Thi...

7.5CVSS6AI score0.00354EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/06/25 9:54 p.m.9 views

ImageMagick: Policy Bypass can Trigger an Out-of-Memory condition

A missing check for maximum memory request in AcquireAlignedMemory could trigger an out-of-Memory condition. Credit Aisle Research Ze Sheng, Dmitrijs Trizna, Luigino Camastra, Guido Vranken...

7.5CVSS5.8AI score0.00346EPSS
Exploits0References4Affected Software17
EUVD
EUVD
added 2026/06/25 9:54 p.m.11 views

EUVD-2026-36187

ImageMagick: Policy Bypass can Trigger an Out-of-Memory condition...

7.5CVSS5.8AI score0.00346EPSS
Exploits0References3
OSV
OSV
added 2026/06/25 9:54 p.m.4 views

GHSA-Q62C-H75R-2XHC ImageMagick: Policy Bypass can Trigger an Out-of-Memory condition

A missing check for maximum memory request in AcquireAlignedMemory could trigger an out-of-Memory condition. Credit Aisle Research Ze Sheng, Dmitrijs Trizna, Luigino Camastra, Guido Vranken...

7.5CVSS5.8AI score0.00346EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/17 7:13 a.m.9 views

CVE-2026-53460

A flaw was found in ImageMagick. A remote attacker could exploit a missing check for maximum memory requests in the AcquireAlignedMemory function, leading to an out-of-memory condition. This vulnerability could result in a Denial of Service DoS, making the affected system or application...

7.5CVSS5.8AI score0.00346EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-53460

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-50 and 7.1.2-25, a missing check for...

7.5CVSS5.9AI score0.00346EPSS
Exploits0References2
CVE
CVE
added 2026/06/10 10:2 p.m.47 views

CVE-2026-53460

CVE-2026-53460 (ImageMagick) affects ImageMagick due to a missing check for maximum memory requests in AcquireAlignedMemory, which can trigger an out-of-Memory condition. Affected versions include pre-patch 6.9.13-50 and 7.1.2-25; patches fix in 6.9.13-50 and 7.1.2-25. The CVSS v3.1 base score is...

7.5CVSS5.4AI score0.00346EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/06/10 10:2 p.m.8 views

CVE-2026-53460 ImageMagick: Policy Bypass can trigger out-of-Memory condition

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-50 and 7.1.2-25, a missing check for maximum memory request in AcquireAlignedMemory could trigger an out-of-Memory condition. This issue has been patched in versions 6.9.13-50 a...

7.5CVSS5.4AI score0.00346EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/06/10 10:2 p.m.7 views

CVE-2026-53460

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-50 and 7.1.2-25, a missing check for maximum memory request in AcquireAlignedMemory could trigger an out-of-Memory condition. This issue has been patched in versions 6.9.13-50 a...

7.5CVSS5.3AI score0.00346EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/05/27 12:0 a.m.11 views

CVE-2026-45969

HID: playstation: Add missing check for inputffcreatememless...

5.8AI score0.00123EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/04/29 2:0 p.m.8 views

Malicious code in @enterprise-core/auth-gateway-bridge (npm)

Dependency confusion and typosquatting campaign by threat actor "saif777". Packages use inflated version numbers 9999.9999.9999, 9999.9999.10000, 50.50.50, 7.66.5 to win version resolution in environments with private registries. All active packages execute a postinstall hook "node index.js" that...

5.9AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

MiracleLinux 7 : 389-ds-base-1.3.6.1-28.el7 (AXSA:2018-2594:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2018-2594:02 advisory. 389-ds-base: remote Denial of Service DoS via search filters in SetUnicodeStringFromUTF8 in collate.c CVE-2018-1054 389-ds-base: Authentication bypa...

8.1CVSS7.7AI score0.04817EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.3 views

MiracleLinux 3 : glibc-2.5-49.6.0.1.AXS3 (AXSA:2010-475:05)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2010-475:05 advisory. The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make...

6.9CVSS8.2AI score0.08747EPSS
Exploits20References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-9049

Malware in sbrugna...

8.8CVSS8.8AI score0.01623EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-16757

Malware in sbrugna...

8.8CVSS8.6AI score0.01551EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-16720

Malware in sbrugna...

7.8CVSS7.6AI score0.02459EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-54107

Malicious code in bioql PyPI...

8.1CVSS7.9AI score0.01149EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-37249

Malicious code in bioql PyPI...

7.1CVSS5.7AI score0.00101EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-30436

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00266EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/09/16 11:29 p.m.5 views

SUSE CVE-2023-53327

In the Linux kernel, the following vulnerability has been resolved: iommufd/selftest: Catch overflow of uptr and length syzkaller hits a WARNON when trying to have a uptr close to UINTPTRMAX: WARNING: CPU: 1 PID: 393 at drivers/iommu/iommufd/selftest.c:403 iommufdtest+0xb19/0x16f0 Modules linked...

5.5CVSS6.7AI score0.00134EPSS
Exploits0References3
Rows per page
Query Builder