CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

55 matches found

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в binutils

A NULL pointer dereference aka SEGV on unknown address 0x000000000000 was discovered in workstuffcopytofrom in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30. This can occur during execution of objdump...

7.5CVSS7.1AI score0.01561EPSS

Exploits1References2

F5 Networks•added 2026/02/03 4:32 p.m.•7 views

K000159856: Binutils vulnerability CVE-2025-66862

Security Advisory Description A buffer overflow vulnerability in function gnuspecial in file cplus-dem.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file. CVE-2025-66862 Impact An attacker can exploit this vulnerability to trigger a heap-based buffer over-read in...

7.5CVSS5.8AI score0.00086EPSS

Exploits1Affected Software30

Snyk•added 2025/12/29 5:40 p.m.•3 views

Buffer Overflow

Overview Affected versions of this package are vulnerable to Buffer Overflow via the gnuspecial function in the cplus-dem.c file. An attacker can cause a crash or disrupt service by supplying a specially crafted PE file. Remediation There is no fixed version for binutils. References - POC -...

7.5CVSS6.8AI score0.00086EPSS

Exploits1References2

NVD•added 2025/12/29 5:15 p.m.•6 views

CVE-2025-66862

A buffer overflow vulnerability in function gnuspecial in file cplus-dem.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

7.5CVSS0.00086EPSS

Exploits1References1

Vulnrichment•added 2025/12/29 12:0 a.m.•1 views

CVE-2025-66862

A buffer overflow vulnerability in function gnuspecial in file cplus-dem.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

6.7AI score0.00086EPSS

Exploits1References1

CVE•added 2025/12/29 12:0 a.m.•13 views

CVE-2025-66862

CVE-2025-66862 affects GNU Binutils 2.26, with a buffer overflow in gnu_special (cplus-dem.c) that can cause a denial-of-service via a crafted PE file. The issue can trigger a heap-based buffer over-read and terminate affected processes. CVSS v3.1 base score 7.5 (HIGH). Connected advisories ident...

7.5CVSS6.7AI score0.00086EPSS

Exploits1References1Affected Software1

CNNVD•added 2025/12/29 12:0 a.m.•1 views

GNU BinUtils 安全漏洞

GNU BinUtils is a collection of programming tools for working with binary files from the US GNU community. A security vulnerability exists in GNU BinUtils version 2.26, which originates from a buffer overflow in the gnuspecial function in the cplus-dem.c file, which could result in a denial of...

7.5CVSS6.3AI score0.00086EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-9540

Malware in sbrugna...

6.5CVSS6.9AI score0.00459EPSS

Exploits0References6

Prion•added 2023/08/24 11:15 p.m.•11 views

Integer overflow

Rizin is a UNIX-like reverse engineering framework and command-line toolset. Versions 0.6.0 and prior are vulnerable to integer overflow in consumecount of src/gnuv2/cplus-dem.c. The overflow check is valid logic but, is missing the modulus if the block once compiled. The compiler sees this block...

4.4CVSS7.8AI score0.00086EPSS

Exploits0References5Affected Software1

F5 Networks•added 2023/02/21 6:33 p.m.•40 views

K62553631: Binutils vulnerabilities CVE-2018-7570, CVE-2018-9996, and CVE-2018-10372

Security Advisory Description CVE-2018-7570 The assignfilepositionsfornonloadsections function in elf.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service NULL pointer dereference and application crash vi...

5.5CVSS5.9AI score0.00441EPSS

Exploits2

SUSE CVE•added 2023/02/15 5:2 a.m.•1 views

SUSE CVE-2016-4492

Buffer overflow in the dotype function in cplus-dem.c in libiberty allows remote attackers to cause a denial of service segmentation fault and crash via a crafted binary...

4.4CVSS7.7AI score0.00224EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 4:28 a.m.•1 views

SUSE CVE-2018-9996

An issue was discovered in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30. Stack Exhaustion occurs in the C++ demangling functions provided by libiberty, and there are recursive stack frames: demangletemplatevalueparm, demangleintegralvalue, and demangleexpression...

5.5CVSS7.9AI score0.00385EPSS

Exploits1References3

SUSE CVE•added 2023/02/15 4:26 a.m.•2 views

SUSE CVE-2018-12697

3.3CVSS8AI score0.01561EPSS

Exploits1References3

SUSE CVE•added 2023/02/15 3:39 a.m.•2 views

SUSE CVE-2021-37322

GCC c++filt v2.26 was discovered to contain a use-after-free vulnerability via the component cplus-dem.c...

7.8CVSS9.1AI score0.00241EPSS

Exploits1References3

Tenable Nessus•added 2022/02/09 12:0 a.m.•46 views

AlmaLinux 8 : gcc (ALSA-2021:4386)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2021:4386 advisory. - The demangletemplate function in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.31.1, contains an integer overflow vulnerability for Create an...

5.5CVSS6.6AI score0.00093EPSS

Exploits1References2

Veracode•added 2021/12/25 12:40 a.m.•25 views

Integer Overflow

GNU is vulnerable to integer overflows. The vulnerability exists in demangletemplate function in cplus-dem.c which causes a heap based overflow crashing the application...

5.5CVSS2.1AI score0.00093EPSS

Exploits1References6Affected Software1