CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

143 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•5 views

Astra Linux - уязвимость в openimageio

There is a heap out-of-bounds read vulnerability in the OpenImageIO master-branch-9aeece7a when parsing the image file directory part of a PSD image file. A specially crafted .psd file can cause a read of arbitrary memory addresses, leading to a denial of service attack. An attacker can provide a...

7.5CVSS6.9AI score0.00106EPSS

Exploits1References2

RedhatCVE•added 2026/04/13 11:57 a.m.•1 views

CVE-2026-4150

A flaw was found in GIMP. A remote attacker can exploit this vulnerability by enticing a user to open a specially crafted PSD Photoshop Document file. This flaw is due to an integer overflow during the parsing of PSD files, which can lead to arbitrary code execution, allowing the attacker to run...

7.8CVSS7.4AI score0.0004EPSS

Exploits0References5

EUVD•added 2026/03/26 9:31 p.m.•0 views

EUVD-2026-16339

A flaw was found in GIMP. Heap-buffer-overflow vulnerability exists in the freadpascalstring function when processing a specially crafted PSD Photoshop Document file. This occurs because the buffer allocated for a Pascal string is not properly null-terminated, leading to an out-of-bounds read whe...

2.8CVSS5.9AI score0.0001EPSS

Exploits1References3

AlpineLinux•added 2026/03/26 8:0 p.m.•0 views

CVE-2026-2239

6.5CVSS6AI score0.0001EPSS

Exploits1References3

Tenable Nessus•added 2026/03/06 12:0 a.m.•5 views

Amazon Linux 2 : python-pillow, --advisory ALAS2-2026-3180 (ALAS-2026-3180)

The version of python-pillow installed on the remote host is prior to 2.0.0-23.gitd1c6db8. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3180 advisory. Pillow is a Python imaging library. From 10.3.0 to before 12.1.1, n out-of-bounds write may be triggered when...

8.6CVSS6.1AI score0.00014EPSS

Exploits1References4

EUVD•added 2026/02/24 12:29 a.m.•2 views

EUVD-2026-7460

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap information disclosure vulnerability exists in ImageMagick's PSD Adobe Photoshop format handler. When processing a maliciously crafted PSD file containin...

7.5CVSS5.3AI score0.00017EPSS

Exploits0References1

CNNVD•added 2026/02/24 12:0 a.m.•4 views

ImageMagick 缓冲区错误漏洞

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It can read, convert, and write images in various formats. Versions of ImageMagick prior to 7.1.2-15 and 6.9.13-40 contained a buffer error vulnerability. This vulnerability stemmed from the PSD...

7.5CVSS7.4AI score0.00017EPSS

Exploits0References2

UbuntuCve•added 2026/02/13 12:0 a.m.•4 views

CVE-2026-25990

Pillow is a Python imaging library. From 10.3.0 to before 12.1.1, an out-of-bounds write may be triggered when loading a specially crafted PSD image. This vulnerability is fixed in 12.1.1...

8.6CVSS6.7AI score0.00014EPSS

Exploits1References4

AlpineLinux•added 2026/02/11 8:53 p.m.•5 views

CVE-2026-25990

Pillow is a Python imaging library. From 10.3.0 to before 12.1.1, an out-of-bounds write may be triggered when loading a specially crafted PSD image. This vulnerability is fixed in 12.1.1...

8.6CVSS6.4AI score0.00014EPSS

Exploits1

CNNVD•added 2026/02/11 12:0 a.m.•3 views

Pillow 缓冲区错误漏洞

Pillow is an open-source image processing library developed by Pillow. Versions of Pillow from 10.3.0 to 12.1.1 contained a buffer error vulnerability. This vulnerability occurred when loading specially crafted PSD images, potentially leading to out-of-bounds write operations...

8.6CVSS7AI score0.00014EPSS

Exploits1References4

RedhatCVE•added 2026/01/09 9:54 a.m.•4 views

CVE-2020-23888

A User Mode Write AV in Editor!TMethodImplementationIntercept+0x53f6c3 of WildBit Viewer v6.6 allows attackers to cause a denial of service DoS via a crafted psd file...

5.5CVSS6.7AI score0.00165EPSS

Exploits1References1

NVD•added 2025/12/10 4:16 p.m.•1 views

CVE-2025-65803

An integer overflow in the psdParser::ReadImageData function of FreeImage v3.18.0 and before allows attackers to cause a Denial of Service DoS via supplying a crafted PSD file...

6.5CVSS0.00089EPSS

Exploits1References2

Snyk•added 2025/12/10 3:45 p.m.•1 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow via the psdParser::ReadImageData function due to improper verification of depth field while computing the number of bytes per row lineSize directly from PSD header values. An attacker can cause the application...

7.1CVSS6.5AI score0.00089EPSS

Exploits1References2

CVE•added 2025/12/10 12:0 a.m.•13 views

CVE-2025-65803

CVE-2025-65803 affects the FreeImage project (v3.18.0 and earlier). The root cause is an integer overflow in psdParser::ReadImageData, enabling a Denial of Service via a crafted PSD file. Connected sources (Red Hat, NVD, Debian, Ubuntu, OSV, Debian, CN) confirm the same description and identify F...

6.5CVSS6.6AI score0.00089EPSS

Exploits1References2Affected Software1

Vulnrichment•added 2025/12/10 12:0 a.m.•1 views

CVE-2025-65803

An integer overflow in the psdParser::ReadImageData function of FreeImage v3.18.0 and before allows attackers to cause a Denial of Service DoS via supplying a crafted PSD file...

6.6AI score0.00089EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2005-0762

Malware in sbrugna...

5CVSS6.1AI score0.01075EPSS

Exploits0References8

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-16625

Malware in sbrugna...

5.5CVSS5.5AI score0.00165EPSS

Exploits1References3