CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

IBM Security Bulletins•added 2025/08/11 1:46 p.m.•11 views

Security Bulletin: Astronomer with IBM is vulnerable to several vulnerabilities

Summary Open source software is used by Astronomer with IBM as part of overall processing functionality. Vulnerability Details CVEID:CVE-2021-33194 DESCRIPTION: golang.org/x/net before v0.0.0-20210520170846-37e1c6afe023 allows attackers to cause a denial of service infinite loop via crafted...

7.8CVSS7.9AI score0.07492EPSS

Exploits1Affected Software1

CNNVD•added 2025/08/06 12:0 a.m.•4 views

Qualcomm Chipsets 缓冲区错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A buffer error vulnerability exists in Qualcomm Chipsets, which stems from the possibility of memory corruption through virtual CDM programming registers...

7.8CVSS7.1AI score0.00081EPSS

Exploits0References3

CNNVD•added 2025/08/02 12:0 a.m.•3 views

NVIDIA GPU Display Driver 缓冲区错误漏洞

NVIDIA GPU Display Driver is a display driver from NVIDIA Corporation. NVIDIA GPU Display Driver suffers from a buffer error vulnerability that stems from the possibility of reading invalid memory, which could lead to information disclosure...

4.4CVSS6.3AI score0.00134EPSS

Positive Technologies•added 2025/08/02 12:0 a.m.•4 views

PT-2025-31760

Name of the Vulnerable Software and Affected Versions iperf versions prior to 3.19.1 Description The iperf software contains a heap-based buffer overflow issue in the iperf auth.c file. This is due to an off-by-one error. Recommendations Update to iperf version 3.19.1 or later...

10CVSS6.2AI score0.01107EPSS

Exploits1References43

CNNVD•added 2025/07/30 12:0 a.m.•5 views

Silicon Labs Zigbee EmberZNet SDK 安全漏洞

Silicon Labs Zigbee EmberZNet SDK is a software development kit for developing Zigbee networks from Silicon Labs, Inc. A security vulnerability exists in the Silicon Labs Zigbee EmberZNet SDK that stems from improper handling of buffer management API error states, which could lead to a data...

5.9CVSS6.5AI score0.00216EPSS

Exploits0References4

CNNVD•added 2025/07/28 12:0 a.m.•0 views

sequoia-openpgp 缓冲区错误漏洞

sequoia-openpgp is a Rust library by the individual developer of sequoia-openpgp. A buffer error vulnerability exists in sequoia-openpgp crate versions prior to 1.16.0, which stems from out-of-bounds array accesses that may cause a crash...

5.3CVSS6.5AI score0.00274EPSS

Exploits0References6

CNNVD•added 2025/07/22 12:0 a.m.•1 views

Mozilla Firefox和Mozilla Thunderbird 缓冲区错误漏洞

Mozilla Firefox and Mozilla Thunderbird are both products of the Mozilla Foundation in the U.S. Mozilla Firefox is an open-source web browser. Mozilla Thunderbird is a separate set of Mozilla Application Suite Email client software. The software supports IMAP, POP mail protocols, and HTML mail...

9.8CVSS6.4AI score0.00435EPSS

Exploits0References5

CNNVD•added 2025/07/21 12:0 a.m.•5 views

IrfanView CADImage Plugin 缓冲区错误漏洞

IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from an information disclosure vulnerability that can be exploited by attackers to obtain sensitive information...

5.5CVSS6.1AI score0.00209EPSS

INVT HMITool 缓冲区错误漏洞

INVT HMITool is an HMI programming and configuration software from China-based INVT. A buffer error vulnerability exists in INVT HMITool that stems from an out-of-bounds write when parsing a VPM file, which could lead to remote code execution...

7.8CVSS8.2AI score0.00249EPSS

Luxion KeyShot 缓冲区错误漏洞

Luxion KeyShot is a software for designing photographs of 3D scenes from Luxion, USA. The software allows real-time 3D rendering workflows to display results immediately and reduce the time required to create photorealistic product photos. A buffer error vulnerability exists in Luxion KeyShot tha...

CNNVD•added 2025/07/21 12:0 a.m.•3 views

INVT VT-Designer 缓冲区错误漏洞

INVT VT-Designer is an HMI programming and configuration software from China-based INVT. A buffer error vulnerability exists in INVT VT-Designer that originates from an out-of-bounds write when parsing a PM3 file, which could lead to remote code execution...

INVT HMITool 缓冲区错误漏洞

INVT HMITool 缓冲区错误漏洞

CNNVD•added 2025/07/21 12:0 a.m.•3 views

INVT VT-Designer 缓冲区错误漏洞

CNNVD•added 2025/07/21 12:0 a.m.•4 views

INVT VT-Designer 缓冲区错误漏洞

INVT HMITool 缓冲区错误漏洞

CNNVD•added 2025/07/21 12:0 a.m.•3 views

IrfanView CADImage Plugin 缓冲区错误漏洞

IrfanView CADImage Plugin is a CAD plugin from IrfanView, Inc. IrfanView CADImage Plugin suffers from a buffer error vulnerability that stems from a lack of validation of user-supplied data when parsing CGM files, which could lead to out-of-bounds reading and execution of arbitrary code...

7.8CVSS7.8AI score0.0022EPSS

CNNVD•added 2025/07/17 12:0 a.m.•2 views

OpenZeppelin Contracts 缓冲区错误漏洞

OpenZeppelin Contracts is a secure smart contract development library open-sourced by OpenZeppelin. A buffer error vulnerability exists in OpenZeppelin Contracts versions prior to 5.4.0, which stems from the lastIndexOf function potentially accessing uninitialized memory, potentially resulting in...

6.9CVSS6.7AI score0.00334EPSS

CNNVD•added 2025/07/15 12:0 a.m.•2 views

Dassault Systèmes SOLIDWORKS eDrawings 缓冲区错误漏洞

Dassault Systèmes SOLIDWORKS eDrawings is a collaboration tool for viewing, sharing, and labeling 2D/3D design files from Dassault Systèmes France. A security vulnerability exists in Dassault Systèmes SOLIDWORKS eDrawings that originates from an out-of-bounds read during the JT file read process,...

7.8CVSS6.7AI score0.00161EPSS