CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

271 matches found

RedhatCVE•added 2026/05/08 11:18 a.m.•5 views

CVE-2026-42146

A flaw was found in CImg Library. A remote attacker can exploit this vulnerability by providing a specially crafted BMP Bitmap image file. This occurs because the nbcolors field in the BMP file header is used directly to compute an allocation size without proper validation against the remaining...

5.5CVSS5.8AI score0.00019EPSS

Exploits0References2

CNNVD•added 2026/03/21 12:0 a.m.•2 views

UltraVNC PCHelpWareV2 安全漏洞

UltraVNC PCHelpWareV2 is a remote control tool developed by the UltraVNC company. Version 1.0.0.5 of UltraVNC PCHelpWareV2 contains a security vulnerability. This vulnerability stems from the provision of malformed image files, which could allow local attackers to cause the application to crash b...

6.9CVSS5.8AI score0.00021EPSS

Exploits1References4

RedHat Linux•added 2026/02/11 5:28 p.m.•3 views

fontforge: FontForge: Remote Code Execution via heap-based buffer overflow in BMP file parsing

A flaw was found in FontForge. This heap-based buffer overflow vulnerability occurs during the parsing of pixels within BMP Bitmap files, due to insufficient validation of user-supplied data length. A remote attacker could exploit this by tricking a user into opening a malicious BMP file or...

7.8CVSS6.5AI score0.00047EPSS

Exploits0References5

RedhatCVE•added 2026/02/03 2:4 p.m.•2 views

CVE-2026-24133

A flaw was found in jsPDF. A remote attacker can exploit this vulnerability by providing specially crafted BMP image data or URLs to the addImage or html methods. This can cause the application to allocate excessive memory, leading to an out-of-memory error and a denial of service DoS. Mitigation...

8.7CVSS5.2AI score0.0004EPSS

Exploits1References6

Positive Technologies•added 2025/10/17 12:0 a.m.•2 views

PT-2025-42625

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 7.1.2-7 and 6.9.13-32 Description ImageMagick is a software suite for displaying, converting, and editing raster image files. An integer overflow exists in the BMP decoder on 32-bit systems in versions prior to...

8.8CVSS6.9AI score0.00136EPSS

Exploits3References60