Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

UbuntuCve
UbuntuCveadded 2023/06/15 6:15 p.m.191 views

CVE-2023-34455

snappy-java is a fast compressor/decompressor for Java. Due to use of an unchecked chunk length, an unrecoverable fatal error can occur in versions prior to 1.1.10.1. The code in the function hasNextChunk in the fileSnappyInputStream.java checks if a given stream has more chunks to read. It does...

7.5CVSS6.9AI score0.00611EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2022/12/05 12:0 a.m.3 views

PT-2022-25999 · Nadesiko3 · Nadesiko3

Name of the Vulnerable Software and Affected Versions: Nadesiko3 PC Version versions 3.3.61 and earlier Nadesiko3 PC Version versions 3.3.68 and earlier Description: The issue allows a remote attacker to execute an arbitrary OS command when processing compression and decompression on the product...

9.8CVSS7.9AI score0.02345EPSS
Exploits0References12
Vulnrichment
Vulnrichmentadded 2022/12/05 12:0 a.m.4 views

CVE-2022-41642

OS command injection vulnerability in Nadesiko3 PC Version v3.3.61 and earlier allows a remote attacker to execute an arbitrary OS command when processing compression and decompression on the product...

7.7AI score0.02345EPSS
Exploits0References3
Cvelist
Cvelistadded 2022/07/29 6:52 p.m.15 views

CVE-2022-23002 Point Compression/Decompression of NIST P-256 points with X coordinate of zero

When compressing or decompressing a point on the NIST P-256 elliptic curve with an X coordinate of zero, the resulting output is not properly reduced modulo the P-256 field prime and is invalid. The resulting output will cause an error when used in other operations. This may be leveraged by an...

5.3CVSS5.6AI score0.00377EPSS
Exploits0References1
OSV
OSVadded 2022/03/14 11:15 p.m.2 views

DEBIAN-CVE-2021-43305

Heap buffer overflow in Clickhouse's LZ4 compression codec when parsing a malicious query. There is no verification that the copy operations in the LZ4::decompressImpl loop and especially the arbitrary copy operation wildCopyop, ip, copyend, don’t exceed the destination buffer’s limits. This issu...

8.8CVSS8.7AI score0.00281EPSS
Exploits1References1
Cvelist
Cvelistadded 2021/04/28 6:15 p.m.23 views

CVE-2021-29482 denial of service in github.com/ulikunitz/xz

xz is a compression and decompression library focusing on the xz format completely written in Go. The function readUvarint used to read the xz container format may not terminate a loop provide malicous input. The problem has been fixed in release v0.5.8. As a workaround users can limit the size o...

7.5CVSS7.8AI score0.00433EPSS
Exploits0References2
Ubuntu
Ubuntuadded 2019/08/21 5:19 p.m.134 views

USN-4109-1: OpenJPEG vulnerabilities

It was discovered that OpenJPEG incorrectly handled certain PGX files. An attacker could possibly use this issue to cause a denial of service or possibly remote code execution. CVE-2017-17480 It was discovered that OpenJPEG incorrectly handled certain files. An attacker could possibly use this...

9.8CVSS6.7AI score0.03921EPSS
Exploits4
OpenVAS
OpenVASadded 2010/12/02 12:0 a.m.20 views

Fedora Update for libmspack FEDORA-2010-14135

Check for the Version of libmspack OpenVAS Vulnerability Test Fedora Update for libmspack FEDORA-2010-14135 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...

5.1CVSS0.2AI score0.04956EPSS
Exploits0References2
Rows per page
Query Builder