Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

SUSE CVE
SUSE CVEadded yesterday3 views

SUSE CVE-2026-46254

In the Linux kernel, the following vulnerability has been resolved: AppArmor: Allow apparmor to handle unaligned dfa tables The dfa tables can originate from kernel or userspace and 8-byte alignment isn't always guaranteed and as such may trigger unaligned memory accesses on various architectures...

5.8AI score0.00018EPSS
Exploits0References2
OSV
OSVadded 2026/04/08 9:17 p.m.2 views

CLSA-2026-1775683048 ImageMagick: Fix of CVE-2025-57807

CVE-2025-57807: heap buffer overflow in WriteBlobStream and WriteBlob via incorrect extent calculation when offset exceeds current capacity...

9.8CVSS6AI score0.00073EPSS
Exploits1References1
OSV
OSVadded 2026/04/08 9:14 p.m.3 views

CLSA-2026-1775682890 ImageMagick: Fix of CVE-2025-57807

CVE-2025-57807: heap buffer overflow in WriteBlobStream and WriteBlob via incorrect extent calculation when offset exceeds current capacity...

9.8CVSS6AI score0.00073EPSS
Exploits1References1
OSV
OSVadded 2025/12/15 9:56 a.m.1 views

SUSE-SU-2025:21211-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2025-62594: unsigned underflow and division-by-zero can lead to OOB pointer arithmetic and process crash bsc1252749. - CVE-2025-57807: BlobStream Forward-Seek Under-Allocation bsc1249362. - CVE-2025-62171: incomplete fix for integer...

9.8CVSS5.9AI score0.01005EPSS
Exploits6References13
OSV
OSVadded 2025/09/24 9:25 a.m.2 views

CLSA-2025-1758705954 Fix CVE(s): CVE-2025-57807

SECURITY UPDATE: heap out-of-bounds write in BlobStream WriteBlob - debian/patches/CVE-2025-57807.patch: enforce extent ≥ offset + length when forward-seeking before writes in MagickCore/blob.c - CVE-2025-57807...

9.8CVSS5.8AI score0.00073EPSS
Exploits1References1
CVE
CVEadded 2025/09/05 9:16 p.m.27 views

CVE-2025-57807

CVE-2025-57807 affects ImageMagick versions lower than 14.8.2. The vulnerability arises from insecure functions SeekBlob() and WriteBlob(): SeekBlob() allows advancing the stream offset beyond the current end without increasing capacity, and WriteBlob() expands by quantum + length instead of offs...

9.8CVSS6.2AI score0.00073EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichmentadded 2025/09/05 9:16 p.m.1 views

CVE-2025-57807 ImageMagick BlobStream Forward-Seek Under-Allocation

ImageMagick is free and open-source software used for editing and manipulating digital images. ImageMagick versions lower than 14.8.2 include insecure functions: SeekBlob, which permits advancing the stream offset beyond the current end without increasing capacity, and WriteBlob, which then expan...

3.8CVSS6.1AI score0.00073EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2025/09/05 12:0 a.m.5 views

PT-2025-36602

Reporter: Lumina Mescuwa Product: ImageMagick 7 MagickCore Component: MagickCore/blob.c Blob I/O - BlobStream Tested: 7.1.2-0 source tag and 7.1.2-1 Homebrew, macOS arm64, clang-17, Q16-HDRI Impact: Heap out-of-bounds WRITE attacker-controlled bytes at attacker-chosen offset → memory corruption;...

3.8CVSS7.9AI score
Exploits0References4
Rows per page
Query Builder