Lucene search
K

64 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:41 a.m.10 views

CVE-2022-26507

A heap-based buffer overflow exists in XML Decompression DecodeTreeBlock in AT Labs Xmill 0.7. A crafted input file can lead to remote code execution. This is not the same as any of: CVE-2021-21810, CVE-2021-21811, CVE-2021-21812, CVE-2021-21815, CVE-2021-21825, CVE-2021-21826, CVE-2021-21828,...

9.8CVSS8AI score0.02545EPSS
Exploits9References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-8998

Malicious code in bioql PyPI...

9.8CVSS8.2AI score0.01136EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-9000

Malicious code in bioql PyPI...

9.8CVSS8.1AI score0.02545EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-8999

Malicious code in bioql PyPI...

9.8CVSS8.1AI score0.01136EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-8986

Malicious code in bioql PyPI...

7.8CVSS7.8AI score0.00333EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-8982

Malicious code in bioql PyPI...

9.8CVSS8.1AI score0.01136EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-8981

Malicious code in bioql PyPI...

9.8CVSS8.1AI score0.01136EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-8997

Malicious code in bioql PyPI...

9.8CVSS8.1AI score0.01136EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-8983

Malicious code in bioql PyPI...

7.8CVSS7.8AI score0.00333EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:31 p.m.17 views

CVE-2021-21827

A heap-based buffer overflow vulnerability exists in the XML Decompression DecodeTreeBlock functionality of AT Labs Xmill 0.7. Within DecodeTreeBlock which is called during the decompression of an XMI file, a UINT32 is loaded from the file and used as trusted input as the length of a buffer. An...

9.8CVSS7.2AI score0.01136EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:12 p.m.8 views

CVE-2021-21830

A heap-based buffer overflow vulnerability exists in the XML Decompression LabelDict::Load functionality of AT Labs’ Xmill 0.7. A specially crafted XMI file can lead to remote code execution. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS8AI score0.02274EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:12 p.m.10 views

CVE-2021-21828

A heap-based buffer overflow vulnerability exists in the XML Decompression DecodeTreeBlock functionality of AT Labs Xmill 0.7. In the default case of DecodeTreeBlock a label is created via CurPath::AddLabel in order to track the label for later reference. An attacker can provide a malicious file ...

9.8CVSS7.2AI score0.01136EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:12 p.m.10 views

CVE-2021-21810

A memory corruption vulnerability exists in the XML-parsing ParseAttribs functionality of AT Labs’ Xmill 0.7. A specially crafted XML file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS7.1AI score0.01136EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:11 p.m.7 views

CVE-2021-21811

A memory corruption vulnerability exists in the XML-parsing CreateLabelOrAttrib functionality of AT Labs’ Xmill 0.7. A specially crafted XML file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS7.1AI score0.01136EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:33 p.m.10 views

CVE-2021-21826

A heap-based buffer overflow vulnerability exists in the XML Decompression DecodeTreeBlock functionality of AT Labs Xmill 0.7. Within DecodeTreeBlock which is called during the decompression of an XMI file, a UINT32 is loaded from the file and used as trusted input as the length of a buffer. An...

9.8CVSS6.8AI score0.01136EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:20 p.m.9 views

CVE-2021-21825

A heap-based buffer overflow vulnerability exists in the XML Decompression PlainTextUncompressor::UncompressItem functionality of AT Labs’ Xmill 0.7. A specially crafted XMI file can lead to remote code execution. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS7.6AI score0.02274EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:19 p.m.10 views

CVE-2021-21815

A stack-based buffer overflow vulnerability exists in the command-line-parsing HandleFileArg functionality of AT Labs' Xmill 0.7. Within the function HandleFileArg the argument filepattern is under control of the user who passes it in from the command line. filepattern is passed directly to strcp...

7.8CVSS6.9AI score0.00333EPSS
Exploits1References1
NVD
NVD
added 2022/04/14 1:15 p.m.36 views

CVE-2022-26507

A heap-based buffer overflow exists in XML Decompression DecodeTreeBlock in AT&T Labs Xmill 0.7. A crafted input file can lead to remote code execution. This is not the same as any of: CVE-2021-21810, CVE-2021-21811, CVE-2021-21812, CVE-2021-21815, CVE-2021-21825, CVE-2021-21826, CVE-2021-21828,...

9.8CVSS0.02277EPSS
Exploits0References2
Prion
Prion
added 2022/04/14 1:15 p.m.23 views

Heap overflow

UNSUPPORTED WHEN ASSIGNED A heap-based buffer overflow exists in XML Decompression DecodeTreeBlock in AT&T Labs Xmill 0.7. A crafted input file can lead to remote code execution. This is not the same as any of: CVE-2021-21810, CVE-2021-21811, CVE-2021-21812, CVE-2021-21815, CVE-2021-21825,...

7.5CVSS9AI score0.02545EPSS
Exploits9References2Affected Software3
Cvelist
Cvelist
added 2022/04/14 12:4 p.m.25 views

CVE-2022-26507

A heap-based buffer overflow exists in XML Decompression DecodeTreeBlock in AT&T Labs Xmill 0.7. A crafted input file can lead to remote code execution. This is not the same as any of: CVE-2021-21810, CVE-2021-21811, CVE-2021-21812, CVE-2021-21815, CVE-2021-21825, CVE-2021-21826, CVE-2021-21828,...

9.3AI score0.02277EPSS
Exploits0References2
Rows per page
Query Builder