CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

31 matches found

Snyk•added 2026/05/04 12:25 p.m.•2 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read in the ParseBody function of the BMP parser. An attacker can cause a denial of service by sending specially crafted BMP messages that trigger an out-of-bounds read. Remediation Upgrade...

7.5CVSS5.8AI score0.00031EPSS

Exploits0References2

OSV•added 2026/05/04 9:31 a.m.•3 views

GHSA-W88C-9VG8-CMQ8 GoBGP has Improper Restriction of Operations within the Bounds of a Memory Buffer

A vulnerability was identified in osrg GoBGP up to 4.3.0. Affected by this issue is the function BMPPeerUpNotification.ParseBody/BMPStatisticsReport.ParseBody of the file pkg/packet/bmp/bmp.go of the component BMP Parser. The manipulation leads to out-of-bounds read. The attack can be initiated...

6.9CVSS5.6AI score0.00031EPSS

Exploits0References7

Github Security Blog•added 2026/05/04 9:31 a.m.•5 views

GoBGP has Improper Restriction of Operations within the Bounds of a Memory Buffer

7.5CVSS5.6AI score0.00031EPSS

Exploits0References8Affected Software1

NVD•added 2026/05/04 7:16 a.m.•3 views

CVE-2026-7737

7.5CVSS0.00031EPSS

Exploits0References6

CVE•added 2026/05/04 5:45 a.m.•8 views

CVE-2026-7737

CVE-2026-7737 affects osrg GoBGP up to 4.3.0. The vulnerability lies in the BMP parser, specifically BMPPeerUpNotification.ParseBody and BMPStatisticsReport.ParseBody in pkg/packet/bmp/bmp.go, where input manipulation leads to an out-of-bounds read. The issue is exploitable remotely. A fix is pub...

7.5CVSS5.7AI score0.00031EPSS

Exploits0References6Affected Software1

Vulnrichment•added 2026/05/04 5:45 a.m.•2 views

CVE-2026-7737 osrg GoBGP BMP Parser bmp.go BMPStatisticsReport.ParseBody out-of-bounds

6.9CVSS5.7AI score0.00031EPSS

Exploits0References6

Cvelist•added 2026/05/04 5:45 a.m.•30 views

CVE-2026-7737 osrg GoBGP BMP Parser bmp.go BMPStatisticsReport.ParseBody out-of-bounds

6.9CVSS0.00031EPSS

Exploits0References6

EUVD•added 2026/05/04 5:45 a.m.•2 views

EUVD-2026-26917

6.9CVSS5.7AI score0.00031EPSS

Exploits0References6

ATTACKERKB•added 2026/05/04 5:45 a.m.•0 views

CVE-2026-7737

6.9CVSS5.7AI score0.00031EPSS

Exploits0References7Affected Software1

Tenable Nessus•added 2026/05/04 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2026-7737

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was identified in osrg GoBGP up to 4.3.0. Affected by this issue is the function BMPPeerUpNotification.ParseBody/BMPStatisticsReport.ParseBody o...

7.5CVSS5.6AI score0.00031EPSS

Exploits0References3

CNNVD•added 2026/05/04 12:0 a.m.•4 views

GoBGP 缓冲区错误漏洞

GoBGP is an open-source implementation of the Border Gateway Protocol BGP developed by osrg. Versions of GoBGP prior to 4.3.0 contained a buffer error vulnerability. This vulnerability stems from an out-of-bounds read in the function BMPPeerUpNotification.ParseBody/BMPStatisticsReport.ParseBody...

7.5CVSS6.2AI score0.00031EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 5:52 p.m.•6 views

CVE-2019-5133

An exploitable out-of-bounds write vulnerability exists in the igcore19d.dll BMP parser of the ImageGear 19.3.0 library. A specially crafted BMP file can cause an out-of-bounds write, resulting in a remote code execution. An attacker needs to provide a malformed file to the victim to trigger the...

9.8CVSS7.6AI score0.01713EPSS

Exploits0References1

SUSE CVE•added 2023/02/15 6:20 a.m.•3 views

SUSE CVE-2004-0691

Heap-based buffer overflow in the BMP image format parser for the QT library qt3 before 3.3.3 allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code...

7.5CVSS8AI score0.27214EPSS

Exploits0References9

SUSE CVE•added 2023/02/15 6:12 a.m.•5 views

SUSE CVE-2007-2789

The BMP image parser in Sun Java Development Kit JDK before 1.5.011-b03 and 1.6.x before 1.6.001-b06, and Sun Java Runtime Environment in JDK and JRE 6, JDK and JRE 5.0 Update 10 and earlier, SDK and JRE 1.4.214 and earlier, and SDK and JRE 1.3.119 and earlier, when running on Unix/Linux systems,...

4.3CVSS6.8AI score0.05079EPSS

Exploits0References7

CNVD•added 2019/12/09 12:0 a.m.•2 views

Accusoft ImageGear BMP parser buffer overflow vulnerability

Accusoft ImageGear is a software development kit SDK for image processing from Accusoft Inc. BMP parser is one of the BMP image format parsers. A buffer overflow vulnerability exists in the igcore19d.dll BMP parser in Accusoft ImageGear version 19.3.0. An attacker can exploit this vulnerability t...

9.8CVSS7.8AI score0.01713EPSS

Exploits0References1

NVD•added 2019/12/03 10:15 p.m.•9 views

CVE-2019-5133

9.8CVSS9.3AI score0.01713EPSS

Exploits0References1

OSV•added 2019/12/03 10:15 p.m.•2 views

CVE-2019-5133

8.8CVSS7.6AI score

Exploits0References1

Prion•added 2019/12/03 10:15 p.m.•9 views

Out-of-bounds

6.8CVSS8.9AI score0.01713EPSS

Exploits0References1Affected Software1

CVE•added 2019/12/03 9:26 p.m.•79 views

CVE-2019-5133

CVE-2019-5133 : Accusoft ImageGear 19.3.0 exports an exploitable out-of-bounds write in the BMP parser (igcore19d.dll) via the IG_mpi_page_set routine. A specially crafted BMP file can drive a write beyond the allocated dstBuffer, leading to memory corruption and remote code execution. The vulner...

9.8CVSS8.9AI score0.01713EPSS

Exploits0References1Affected Software1

Cvelist•added 2019/12/03 9:26 p.m.•11 views

CVE-2019-5133

9.8CVSS9AI score0.01713EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by