Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.2 views

Astra Linux - уязвимость в pillow

An issue was discovered in Pillow before 8.2.0. For BLP data, BlpImagePlugin did not properly check that reads after jumping to file offsets returned data. This could lead to a DoS where the decoder could be run a large number of times on empty data...

5.5CVSS6.8AI score0.0011EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2021-0185

Malware in sbrugna...

5.5CVSS5.4AI score0.0011EPSS
Exploits0References14
Tenable Nessus
Tenable Nessusadded 2022/02/09 12:0 a.m.25 views

AlmaLinux 8 : python-pillow (ALSA-2021:4149)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2021:4149 advisory. - In Pillow before 8.1.0, PcxDecode has a buffer over-read when decoding a crafted PCX file because the user-supplied stride value is trusted for buffer...

9.8CVSS7.2AI score0.00425EPSS
Exploits1References16
RedHat Linux
RedHat Linuxadded 2021/11/09 5:42 p.m.1 views

python-pillow: Excessive looping in BLP image reader

A flaw was found in python-pillow. BlpImagePlugin did not properly check that reads after jumping to file offsets returned data. This could lead to a denial-of-service where the decoder could be run a large number of times on empty data...

5.5CVSS5.7AI score0.0011EPSS
Exploits0References4
PyPA
PyPAadded 2021/06/02 4:15 p.m.3 views

PYSEC-2021-94

An issue was discovered in Pillow before 8.2.0. For BLP data, BlpImagePlugin did not properly check that reads after jumping to file offsets returned data. This could lead to a DoS where the decoder could be run a large number of times on empty data...

5.5CVSS6.8AI score0.0011EPSS
Exploits0References4Affected Software1
AlpineLinux
AlpineLinuxadded 2021/06/02 3:16 p.m.45 views

CVE-2021-28678

An issue was discovered in Pillow before 8.2.0. For BLP data, BlpImagePlugin did not properly check that reads after jumping to file offsets returned data. This could lead to a DoS where the decoder could be run a large number of times on empty data...

5.5CVSS7.2AI score0.0011EPSS
Exploits0
Veracode
Veracodeadded 2021/05/10 4:0 a.m.34 views

Denial Of Service (DoS)

pillow is vulnerable to denial of service. Lack of validation and checks for the validity of return data when jumping to file offsets in the BlpImagePlugin results in a denial-of-service condition...

5.5CVSS3.2AI score0.0011EPSS
Exploits0References5Affected Software2
Positive Technologies
Positive Technologiesadded 2021/05/10 12:0 a.m.2 views

PT-2021-17899 · Pillow +9 · Pillow +9

Name of the Vulnerable Software and Affected Versions: Pillow versions prior to 8.2.0 Description: An issue was discovered in Pillow where the BlpImagePlugin did not properly check that reads, after jumping to file offsets, returned data for BLP data. This could lead to a denial of service DoS...

9.8CVSS6.8AI score0.02781EPSS
Exploits2References171
Rows per page
Query Builder