CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

245 matches found

GHSA-R3XG-RG9J-67FV Docling: Unsafe Archive Extraction and XML Parsing in METS-GBS Backend

Impact The METS-GBS backend's XML parsing and the input document format detection lacked security controls, enabling: - XML External Entity XXE attacks to read local files or cause denial of service - Decompression bombs zip bombs to exhaust memory and disk space - Unbounded archive extraction...

5.5CVSS5.8AI score

Exploits0References3

Github Security Blog•added yesterday•9 views

Docling: Unsafe Archive Extraction and XML Parsing in METS-GBS Backend

5.8AI score

Exploits0References3Affected Software1

Positive Technologies•added yesterday•2 views

PT-2026-46105

5.5CVSS5.8AI score

Exploits0References4

Positive Technologies•added yesterday•3 views

PT-2026-46120

5.5CVSS5.8AI score

Exploits0References4

SUSE CVE•added 2026/05/19 2:2 a.m.•6 views

SUSE CVE-2024-0450

An issue was found in the CPython zipfile module affecting versions 3.12.1, 3.11.7, 3.10.13, 3.9.18, and 3.8.18 and prior. The zipfile module is vulnerable to “quoted-overlap” zip-bombs which exploit the zip format to create a zip-bomb with a high compression ratio. The fixed versions of CPython...

6.2CVSS6.8AI score0.00153EPSS

Exploits0References18

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в python2.7, python3.7, python3.11

A issue was discovered in the CPython zipfile module, affecting versions 3.12.1, 3.11.7, 3.10.13, 3.9.18, 3.8.18, and earlier versions. The zipfile module is vulnerable to “quoted-overlap” zip-bombs, which exploit the zip format to create a zip-bomb with a high compression ratio. The fixed versio...

6.2CVSS6.8AI score0.00153EPSS

Exploits0References2

Packet Storm•added 2026/04/23 12:0 a.m.•58 views

📄 Keras 3.13.0 HDF5 Shape Bomb Denial of Service

This script is a security research tool demonstrating a denial of service vulnerability in Keras model loading through malicious HDF5 shape bombs. It generates .keras model archives containing artificially declared extremely large tensor shapes designed to force excessive memory allocation during...

7.5CVSS6.5AI score0.00043EPSS

Exploits3

Packet Storm•added 2026/04/23 12:0 a.m.•68 views

📄 Keras 3.13.0 Malicious ML Model Server HDF5 Shape Bomb

This script is a Flask-based web server that distributes .keras machine learning model files, but it is designed in a malicious way for security research/testing scenarios. The main idea is a denial of service via memory exhaustion, where generated Keras models contain artificially declared...

7.5CVSS6.5AI score0.00043EPSS

Exploits3

OSV•added 2026/04/22 9:45 p.m.•2 views

OPENSUSE-SU-2026:20617-1 Security update for python-Pillow

This update for python-Pillow fixes the following issue: - CVE-2026-40192: Versions 10.3.0 through 12.1.1 did not limit the amount of GZIP-compressed data read when decoding a FITS image, making them vulnerable to decompression bomb attacks bsc1262184...

8.7CVSS5.3AI score0.00018EPSS

Exploits0References2

Positive Technologies•added 2026/04/21 12:0 a.m.•2 views

PT-2026-33882

Name of the Vulnerable Software and Affected Versions OpenBao versions prior to 2.5.3 Description The OCI plugin downloader contains an issue in the ExtractPluginFromImage function where plugin binaries are extracted from container images by streaming decompressed tar data via io.Copy without a...

6.5CVSS5.2AI score0.00054EPSS

Exploits1References18

IBM Security Bulletins•added 2026/04/16 5:49 p.m.•1 views

Security Bulletin: IBM Watson Discovery Cartridge affected by vulnerability in urllib3-1.26.20-py2.py3-none-any.whl

Summary IBM Watson Discovery Cartridge affected by vulnerability in urllib3-1.26.20-py2.py3-none-any.whl Vulnerability Details CVEID:CVE-2026-21441 DESCRIPTION: urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient handling of large HTTP responses by...

8.9CVSS5.8AI score0.00032EPSS

Exploits0Affected Software1

Vulnrichment•added 2026/04/10 7:9 p.m.•1 views

CVE-2026-27460 Tandoor Recipes Affected by Denial of Service via Recipe Import

Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. Prior to 2.6.5, a critical Denial of Service DoS vulnerability was in the recipe import functionality. This vulnerability allows an authenticated user to crash the server or make a significantly...

6.5CVSS5.8AI score0.00054EPSS

Exploits1References1

RedHat Linux•added 2026/03/26 8:28 p.m.•5 views

Scrapy: python-scrapy: brotli: Python brotli decompression bomb DoS

Scrapy are vulnerable to a denial of service DoS attack due to a flaw in its brotli decompression implementation. The protection mechanism against decompression bombs fails to mitigate the brotli variant, allowing remote servers to crash clients with less than 80GB of available memory. This occur...

7.5CVSS7.1AI score0.00036EPSS

Exploits0References5

RedhatCVE•added 2026/03/26 7:27 p.m.•1 views

CVE-2026-3114

A flaw was found in Mattermost. Authenticated users with file upload permissions can exploit this vulnerability by uploading specially crafted zip archives, known as "zip bombs," which contain highly compressed entries. When these archives are decompressed, they exhaust server memory, leading to ...

6.5CVSS5.8AI score0.00017EPSS

Exploits0References2

OSV•added 2026/03/26 6:31 p.m.•0 views

GHSA-VHGH-G7X8-4RX8 Mattermost doesn't validate decompressed archive entry sizes during file extraction

Mattermost versions 11.4.x = 11.4.0, 11.3.x = 11.3.1, 11.2.x = 11.2.3, 10.11.x = 10.11.11 fail to validate decompressed archive entry sizes during file extraction which allows authenticated users with file upload permissions to cause a denial of service via crafted zip archives containing highly...

6.5CVSS5.9AI score0.00017EPSS

Exploits0References3