CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

126 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в libxml2

There is a flaw in libxml2’s xmllint in versions before 2.9.11. An attacker who can submit a crafted file for processing by xmllint could trigger a use-after-free. The most significant impact of this flaw is on confidentiality, integrity, and availability...

7.8CVSS6.8AI score0.0199EPSS

Exploits1References2

RedhatCVE•added 2026/04/07 8:49 p.m.•2 views

CVE-2026-20911

A flaw was found in LibRaw. A remote attacker can exploit a heap-based buffer overflow vulnerability in the HuffTable::initval functionality by providing a specially crafted malicious file. This can lead to arbitrary code execution or a denial of service DoS on the affected system. Mitigation...

9.8CVSS6.6AI score0.00494EPSS

Exploits1References4

Cvelist•added 2026/03/17 6:52 p.m.•22 views

CVE-2025-66617

An out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker could exploit this vulnerability to perform an out-of-bounds read, potentially leading to the disclosure of sensitive information...

6.1CVSS0.00268EPSS

Exploits1References2

CVE•added 2026/03/03 2:32 p.m.•46 views

CVE-2026-22891

CVE-2026-22891 describes a heap-based buffer overflow in the Intan CLP parsing functionality of the Biosig Project’s libbiosig 3.9.2 and its Master Branch (db9a9a63). A specially crafted Intan CLP file can lead to arbitrary code execution, with an attacker able to provide a malicious file to trig...

9.8CVSS6.3AI score0.00589EPSS

Exploits1References2Affected Software1

OSV•added 2025/12/11 5:15 p.m.•5 views

CVE-2025-66047

Several stack-based buffer overflow vulnerabilities exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.1. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger these vulnerabilities.When Tag is 131...

9.8CVSS6.5AI score

Exploits0References1

OSV•added 2025/10/28 2:15 p.m.•7 views

CVE-2025-53814

A use-after-free vulnerability exists in the XML parser functionality of GCC Productions Inc. Fade In 4.2.0. A specially crafted .xml file can lead to heap-based memory corruption. An attacker can provide a malicious file to trigger this vulnerability...

7.8CVSS5.8AI score0.00267EPSS

Exploits1References2