CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A memory corruption vulnerability exists in the DMG File Format Handler functionality of PowerISO 7.9. A specially crafted DMG file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability. The vendor fixed it in a bug-release of the current versi...

8.8CVSS6.9AI score0.00237EPSS

Exploits1References1

Cvelist•added 2022/12/19 10:0 a.m.•14 views

CVE-2022-41992

A memory corruption vulnerability exists in the VHD File Format parsing CXSPARSE record functionality of PowerISO PowerISO 8.3. A specially-crafted file can lead to an out-of-bounds write. A victim needs to open a malicious file to trigger this vulnerability...

7.8CVSS7.9AI score0.00063EPSS

Exploits1References1

Vulnrichment•added 2022/12/19 10:0 a.m.•4 views

CVE-2022-41992

7.8CVSS7.8AI score0.00063EPSS

Exploits1References1

CVE•added 2022/12/19 10:0 a.m.•40 views

CVE-2022-41992

PowerISO 8.3 is affected by CVE-2022-41992 due to a memory corruption in the VHD File Format CXSPARSE record parsing. The vulnerability arises because the Num of blocks value from the CXSPARSE record is not validated, allowing an attacker to control the loop counter and trigger an out-of-bounds w...

7.8CVSS7.7AI score0.00063EPSS

Exploits1References1Affected Software1

OSV•added 2022/12/16 5:15 p.m.•0 views

CVE-2022-41992

7.8CVSS5.8AI score0.00063EPSS

Exploits1References1

NVD•added 2022/12/16 5:15 p.m.•11 views

CVE-2022-41992

7.8CVSS0.00063EPSS

Exploits1References1

Prion•added 2022/12/16 5:15 p.m.•9 views

Memory corruption

4.4CVSS7.7AI score0.00063EPSS

Exploits1References1Affected Software1

Talos Blog•added 2022/12/07 6:50 p.m.•24 views

Vulnerability Spotlight: Memory corruption vulnerability discovered in PowerISO

Piotr Bania of Cisco Talos discovered this vulnerability. Cisco Talos recently discovered a memory corruption vulnerability in PowerISO. TALOS-2022-1644 CVE-2022-41992 is a memory corruption vulnerability that exists in the VHD File Format parsing functionality of PowerISO 8.3. A specially crafte...

2.3AI score0.00063EPSS

Exploits1

Talos•added 2022/12/07 12:0 a.m.•22 views

PowerISO VHD File Format parsing CXSPARSE record memory corruption vulnerability

Talos Vulnerability Report TALOS-2022-1644 PowerISO VHD File Format parsing CXSPARSE record memory corruption vulnerability December 7, 2022 CVE Number CVE-2022-41992 SUMMARY A memory corruption vulnerability exists in the VHD File Format parsing CXSPARSE record functionality of PowerISO PowerISO...

7.8CVSS7.8AI score0.00063EPSS

Exploits1

CNNVD•added 2022/12/07 12:0 a.m.•2 views

PowerISO 缓冲区错误漏洞

PowerISO is a powerful CD/DVD/BD image file manipulation tool from PowerISO that can open, extract, burn, create, edit, compress, encrypt, split and convert ISO files, and mount ISO files using internal virtual drives. A buffer error vulnerability exists in PowerISO version 8.3, which stems from...

7.8CVSS7.5AI score0.00063EPSS

Exploits1References3

OSV•added 2021/06/29 4:15 p.m.•1 views

CVE-2021-21871

7.8CVSS5.8AI score0.00237EPSS

Exploits1References1

NVD•added 2021/06/29 4:15 p.m.•10 views

CVE-2021-21871

8.8CVSS0.00237EPSS

Exploits1References1

Prion•added 2021/06/29 4:15 p.m.•13 views

Memory corruption