Lucene search
K

19 matches found

CVE
CVE
added 14 hours ago9 views

CVE-2026-15520

GNU LibreDWG 0.13.4-154-g0b573035 contains a vulnerability in the function decompress_R2004_section (src/decode.c) that can cause a heap-based buffer overflow . Exploitation requires local access and has been publicly disclosed. The issue affects the R2004 Section Decompression component and is a...

5.3CVSS6.1AI score
Exploits0References10
EUVD
EUVD
added 14 hours ago9 views

EUVD-2026-43263

A vulnerability was determined in GNU LibreDWG 0.13.4-154-g0b573035. This impacts the function decompressR2004section of the file src/decode.c of the component R2004 Section Decompression. Executing a manipulation can lead to heap-based buffer overflow. The attack requires local access. The explo...

5.3CVSS6.1AI score
Exploits0References10
RedhatCVE
RedhatCVE
added 2026/05/28 2:16 p.m.16 views

CVE-2026-9501

A vulnerability was determined in GNU LibreDWG up to 0.14. The impacted element is the function decompressR2004section of the file src/decode.c of the component Dwgread Utility. Executing a manipulation can lead to reachable assertion. The attack is restricted to local execution. The exploit has...

4.8CVSS5.4AI score0.00144EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/05/27 12:59 p.m.14 views

SUSE CVE-2026-9501

A vulnerability was determined in GNU LibreDWG up to 0.14. The impacted element is the function decompressR2004section of the file src/decode.c of the component Dwgread Utility. Executing a manipulation can lead to reachable assertion. The attack is restricted to local execution. The exploit has...

4.8CVSS5.3AI score0.00144EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/27 12:59 p.m.16 views

SUSE CVE-2026-9502

A vulnerability was identified in GNU LibreDWG up to 0.14. This affects the function decompressR2004section of the file src/decode.c of the component Dwgread Utility. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit is publicly available an...

5.3CVSS6AI score0.00154EPSS
Exploits0References3
NVD
NVD
added 2026/05/25 9:16 p.m.22 views

CVE-2026-9502

A vulnerability was identified in GNU LibreDWG up to 0.14. This affects the function decompressR2004section of the file src/decode.c of the component Dwgread Utility. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit is publicly available an...

5.3CVSS0.00154EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/05/25 8:45 p.m.13 views

CVE-2026-9502

A vulnerability was identified in GNU LibreDWG up to 0.14. This affects the function decompressR2004section of the file src/decode.c of the component Dwgread Utility. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit is publicly available an...

5.3CVSS6AI score0.00154EPSS
Exploits0References7Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/25 8:45 p.m.11 views

CVE-2026-9502 GNU LibreDWG Dwgread Utility decode.c decompress_R2004_section heap-based overflow

A vulnerability was identified in GNU LibreDWG up to 0.14. This affects the function decompressR2004section of the file src/decode.c of the component Dwgread Utility. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit is publicly available an...

5.3CVSS6AI score0.00154EPSS
Exploits0References7
CVE
CVE
added 2026/05/25 8:45 p.m.32 views

CVE-2026-9502

Summary: CVE-2026-9502 affects GNU LibreDWG’s Dwgread Utility (up to 0.14). The issue is in decompress_R2004_section (src/decode.c), causing a heap-based buffer overflow. The attack is local and there is a publicly available exploit. A patch is identified by commit/id e501cb9926c1e9a07a0d1cc997f3...

5.3CVSS6AI score0.00154EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/05/25 8:45 p.m.51 views

CVE-2026-9502 GNU LibreDWG Dwgread Utility decode.c decompress_R2004_section heap-based overflow

A vulnerability was identified in GNU LibreDWG up to 0.14. This affects the function decompressR2004section of the file src/decode.c of the component Dwgread Utility. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit is publicly available an...

5.3CVSS0.00154EPSS
Exploits0References7
EUVD
EUVD
added 2026/05/25 8:30 p.m.12 views

EUVD-2026-31737

A vulnerability was determined in GNU LibreDWG up to 0.14. The impacted element is the function decompressR2004section of the file src/decode.c of the component Dwgread Utility. Executing a manipulation can lead to reachable assertion. The attack is restricted to local execution. The exploit has...

4.8CVSS5.3AI score0.00144EPSS
Exploits0References7
CVE
CVE
added 2026/05/25 8:30 p.m.34 views

CVE-2026-9501

CVE-2026-9501 affects GNU LibreDWG up to 0.14, specifically the Dwgread Utility’s src/decode.c decompress_R2004_section function. The vulnerability can cause a reachable assertion under local execution due to manipulation of input data. Exploitation status in the provided docs is not detailed bey...

4.8CVSS5.3AI score0.00144EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/05/25 8:30 p.m.40 views

CVE-2026-9501 GNU LibreDWG Dwgread Utility decode.c decompress_R2004_section assertion

A vulnerability was determined in GNU LibreDWG up to 0.14. The impacted element is the function decompressR2004section of the file src/decode.c of the component Dwgread Utility. Executing a manipulation can lead to reachable assertion. The attack is restricted to local execution. The exploit has...

4.8CVSS5.3AI score0.00144EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/05/25 12:0 a.m.11 views

GNU LibreDWG 安全漏洞

GNU LibreDWG is a C language library for working with DWG files from the US GNU community. A security vulnerability exists in GNU LibreDWG version 0.14 and earlier versions, which stems from a reachable assertion in the decompressR2004section function of the src/decode.c file in the Dwgread Utili...

4.8CVSS6.1AI score0.00144EPSS
Exploits0References7
EUVD
EUVD
added 2026/03/12 9:34 p.m.6 views

EUVD-2025-208617

Heap buffer overflow vulnerability in LibreDWG versions v0.13.3.7571 up to v0.13.3.7835 allows a crafted DWG file to cause a Denial of Service DoS via the function decompressR2004section at decode.c...

6AI score0.00218EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/12 12:0 a.m.7 views

libredwg 安全漏洞

libredwg is an open-source DWG file format processing library developed by LibreDWG. Versions of libredwg from v0.13.3.7571 to v0.13.3.7835 contain security vulnerabilities. These vulnerabilities stem from a heap buffer overflow in the decompressR2004section function found in the decode.c file,...

6.5CVSS5.9AI score0.00218EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/12 12:0 a.m.28 views

CVE-2025-61154

Heap buffer overflow vulnerability in LibreDWG versions v0.13.3.7571 up to v0.13.3.7835 allows a crafted DWG file to cause a Denial of Service DoS via the function decompressR2004section at decode.c...

0.00218EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/12 12:0 a.m.2 views

CVE-2025-61154

Heap buffer overflow vulnerability in LibreDWG versions v0.13.3.7571 up to v0.13.3.7835 allows a crafted DWG file to cause a Denial of Service DoS via the function decompressR2004section at decode.c...

6AI score0.00218EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/12 12:0 a.m.2 views

CVE-2025-61154

Heap buffer overflow vulnerability in LibreDWG versions v0.13.3.7571 up to v0.13.3.7835 allows a crafted DWG file to cause a Denial of Service DoS via the function decompressR2004section at decode.c...

6AI score0.00218EPSS
Exploits0References2
Rows per page
Query Builder