CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

120525 matches found

CVE•added 2026/03/18 7:47 p.m.•7 views

CVE-2026-31969

HTSlib CRAM decoding bug: a heap buffer overflow in cram_byte_array_stop_decode_char() when decoding BYTE_ARRAY_STOP can write an attacker-controlled byte past a heap allocation. This arises from an out-by-one check in the full output buffer. Consequence could be program crash, data/heap-structur...

8.1CVSS6.3AI score0.00061EPSS

Exploits0References2Affected Software1

OSV•added 2026/03/18 7:47 p.m.•3 views

CVE-2026-31969 HTSlib CRAM decoder has a heap buffer overflow

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. When reading data encoded using the BYTEARRAYSTOP method, an out-by-one error in the...

7.1CVSS6.2AI score0.00061EPSS

Exploits0References4

Vulnrichment•added 2026/03/18 7:47 p.m.•3 views

CVE-2026-31969 HTSlib CRAM decoder has a heap buffer overflow

7.1CVSS6.3AI score0.00061EPSS

Exploits0References2

Cvelist•added 2026/03/18 7:47 p.m.•20 views

CVE-2026-31969 HTSlib CRAM decoder has a heap buffer overflow

7.1CVSS0.00061EPSS

Exploits0References2

Vulnrichment•added 2026/03/18 7:38 p.m.•0 views

CVE-2026-31968 HTSlib CRAM decoder vulnerable to buffer overflow

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. For the VARINT and CONST encodings, incomplete validation of the context in which the encodings were...

8.8CVSS6.2AI score0.0002EPSS

Exploits0References2

Cvelist•added 2026/03/18 7:38 p.m.•14 views

CVE-2026-31968 HTSlib CRAM decoder vulnerable to buffer overflow

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. For the VARINT and CONST encodings, incomplete validation of the context in which the encodings were...

8.8CVSS0.0002EPSS

Exploits0References2

EUVD•added 2026/03/18 7:38 p.m.•4 views

EUVD-2026-12942

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. For the VARINT and CONST encodings, incomplete validation of the context in which the encodings were...

8.8CVSS6.2AI score0.0002EPSS

Exploits0References2

CVE•added 2026/03/18 7:38 p.m.•6 views

CVE-2026-31968

HTSlib CRAM decoder (CVE-2026-31968) has incomplete validation in the VARINT and CONST encodings, which can cause writes past heap allocations or a stack byte, potentially enabling heap or stack corruption and, in some streams, arbitrary code execution. Affected versions are 1.23.1, 1.22.2, and 1...

8.8CVSS6.2AI score0.0002EPSS

Exploits0References2Affected Software1

OSV•added 2026/03/18 7:38 p.m.•2 views

CVE-2026-31968 HTSlib CRAM decoder vulnerable to buffer overflow

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. For the VARINT and CONST encodings, incomplete validation of the context in which the encodings were...

8.8CVSS6.5AI score0.0002EPSS

Exploits0References4

NVD•added 2026/03/18 7:16 p.m.•3 views

CVE-2026-31963

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. As one method of removing redundant data, CRAM uses reference-based compression so that instead of storing the full sequence for each alignment record it...

8.8CVSS0.00061EPSS

Exploits0References2

ATTACKERKB•added 2026/03/18 6:22 p.m.•4 views

CVE-2026-31963

8.8CVSS6.4AI score0.00061EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2026/03/18 6:22 p.m.•0 views

CVE-2026-31963 HTSlib CRAM reader has heap buffer overflow due to improper validation of input

8.8CVSS6.4AI score0.00061EPSS

Exploits0References2

Cvelist•added 2026/03/18 6:22 p.m.•19 views

CVE-2026-31963 HTSlib CRAM reader has heap buffer overflow due to improper validation of input

8.8CVSS0.00061EPSS

Exploits0References2

CVE•added 2026/03/18 6:22 p.m.•6 views

CVE-2026-31963

HTSlib CRAM reader vulnerability (CVE-2026-31963) arises from an out-by-one error when decoding CRAM features that extend beyond the record boundary. This can write one attacker-controlled byte past the end of a heap buffer, causing a heap buffer overflow. The issue may crash the program, overwri...

8.8CVSS6.4AI score0.00061EPSS

Exploits0References2Affected Software1

EUVD•added 2026/03/18 6:22 p.m.•3 views

EUVD-2026-12930

8.8CVSS6.4AI score0.00061EPSS

Exploits0References2

NVD•added 2026/03/18 6:16 p.m.•2 views

CVE-2026-31962

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. While most alignment records store DNA sequence and quality values, the format also allows them to omit this data in certain cases to save space. Due to...

8.8CVSS0.0007EPSS

Exploits0References2

OSV•added 2026/03/18 6:16 p.m.•0 views

UBUNTU-CVE-2026-31962

8.8CVSS6.3AI score0.0007EPSS

Exploits0References4

Cvelist•added 2026/03/18 6:8 p.m.•15 views

CVE-2026-31962 HTSlib CRAM reader has heap buffer overflow due to improper validation of input

8.8CVSS0.0007EPSS

Exploits0References2

OSV•added 2026/03/18 6:8 p.m.•1 views

CVE-2026-31962 HTSlib CRAM reader has heap buffer overflow due to improper validation of input