CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The restoretqbpixels function in libbpg 0.9.5 through 0.9.7 mishandles the transquantbypassenableflag value, which allows remote attackers to execute arbitrary...

8.8CVSS7.7AI score0.0061EPSS

Exploits0References2

SUSE CVE•added 2023/02/15 4:34 a.m.•1 views

SUSE CVE-2018-1338

A carefully crafted or fuzzed file can trigger an infinite loop in Apache Tika's BPGParser in versions of Apache Tika before 1.18...

5.5CVSS8.6AI score0.03002EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 3:27 a.m.•1 views

SUSE CVE-2022-25169

The BPG parser in versions of Apache Tika before 1.28.2 and 2.4.0 may allocate an unreasonable amount of memory on carefully crafted files...

5.5CVSS6.7AI score0.0027EPSS

Exploits0References3

OSV•added 2023/01/17 6:10 p.m.•7 views

GSD-2023-1000783 drm/msm/dsi: Prevent signed BPG offsets from bleeding into adjacent bits

drm/msm/dsi: Prevent signed BPG offsets from bleeding into adjacent bits This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.16 by commit...

7.2AI score

Exploits0

OSV•added 2022/05/17 12:0 a.m.•43 views

GHSA-7QCQ-XP2F-56F6 Apache Tika vulnerable to uncontrolled memory consumption

The BPG parser in versions of Apache Tika before 1.28.2 and 2.4.0 may allocate an unreasonable amount of memory on carefully crafted files...

5.5CVSS5.6AI score0.0027EPSS

Exploits0References6

Github Security Blog•added 2022/05/17 12:0 a.m.•34 views

Apache Tika vulnerable to uncontrolled memory consumption

The BPG parser in versions of Apache Tika before 1.28.2 and 2.4.0 may allocate an unreasonable amount of memory on carefully crafted files...

5.5CVSS3.5AI score0.0027EPSS

Exploits0References6Affected Software1

OSV•added 2022/05/16 5:15 p.m.•26 views

CVE-2022-25169

The BPG parser in versions of Apache Tika before 1.28.2 and 2.4.0 may allocate an unreasonable amount of memory on carefully crafted files...

5.5CVSS5.5AI score

Exploits0References4

OSV•added 2022/05/16 5:15 p.m.•1 views

DEBIAN-CVE-2022-25169

The BPG parser in versions of Apache Tika before 1.28.2 and 2.4.0 may allocate an unreasonable amount of memory on carefully crafted files...

5.5CVSS6.6AI score0.0027EPSS

Exploits0References1

NVD•added 2022/05/16 5:15 p.m.•20 views

CVE-2022-25169

The BPG parser in versions of Apache Tika before 1.28.2 and 2.4.0 may allocate an unreasonable amount of memory on carefully crafted files...

5.5CVSS0.0027EPSS

Exploits0References4

Prion•added 2022/05/16 5:15 p.m.•25 views

Memory corruption

The BPG parser in versions of Apache Tika before 1.28.2 and 2.4.0 may allocate an unreasonable amount of memory on carefully crafted files...

4.3CVSS5.5AI score0.0027EPSS

Exploits0References4Affected Software2

ATTACKERKB•added 2022/05/16 5:15 p.m.•3 views

CVE-2022-25169

The BPG parser in versions of Apache Tika before 1.28.2 and 2.4.0 may allocate an unreasonable amount of memory on carefully crafted files...

5.5CVSS6.7AI score0.0027EPSS

Exploits0References5

Debian CVE•added 2022/05/16 5:5 p.m.•36 views

CVE-2022-25169

The BPG parser in versions of Apache Tika before 1.28.2 and 2.4.0 may allocate an unreasonable amount of memory on carefully crafted files...

5.5CVSS3.6AI score0.0027EPSS

Exploits0

CVE•added 2022/05/16 5:5 p.m.•200 views

CVE-2022-25169

CVE-2022-25169 concerns Apache Tika’s BPG parser, where crafted inputs may cause excessive memory allocation, potentially leading to a denial of service. Public details consistently identify the vulnerable component as the BPG parser within Tika and specify affected versions as before 1.28.2 and ...

5.5CVSS5.7AI score0.0027EPSS

Exploits0References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by