Lucene search
K

15 matches found

EUVD
EUVD
added 2026/07/01 4:28 p.m.8 views

EUVD-2026-41083

A vulnerability in the 7z file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device. This vulnerability is due to improper boundary checks for content in 7z file...

7.5CVSS6AI score0.00389EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/18 7:8 a.m.10 views

CVE-2026-6340

Mattermost versions 11.5.x = 11.5.1, 10.11.x = 10.11.13, 11.4.x = 11.4.3 fail to validate 7zip archive structure before processing which allows an authenticated attacker to cause server memory exhaustion and denial of service via uploading a specially crafted 7zip file with excessive folder...

4.3CVSS5.8AI score0.0024EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/03 5:8 a.m.6 views

CVE-2026-32926

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!loadlinkinf. Opening a crafted V7 file may lead to information disclosure from the affected product...

8.4CVSS5.9AI score0.00189EPSS
Exploits0References1
NVD
NVD
added 2026/04/01 11:17 p.m.5 views

CVE-2026-32927

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6MemInIF!settemptypedefault. Opening a crafted V7 file may lead to information disclosure from the affected product...

8.4CVSS0.00189EPSS
Exploits0References2
NVD
NVD
added 2026/04/01 11:17 p.m.4 views

CVE-2026-32929

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!getmacromemCOM. Opening a crafted V7 file may lead to information disclosure from the affected product...

8.4CVSS0.00193EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/01 11:0 p.m.20 views

CVE-2026-32929

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!getmacromemCOM. Opening a crafted V7 file may lead to information disclosure from the affected product...

8.4CVSS0.00193EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/04/01 10:58 p.m.22 views

CVE-2026-32926

V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!loadlinkinf. Opening a crafted V7 file may lead to information disclosure from the affected product...

8.4CVSS0.00189EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/01 12:0 a.m.6 views

PT-2026-29650

CVE-2026-32929 V-SFT versions 6.2.10.0 and prior contain an out-of-bounds read in VS6ComFile!get macro mem COM. Opening a crafted V7 file may lead to information disclosure from the… https://t.co/VzwAV69g6I...

8.4CVSS5.8AI score0.00193EPSS
Exploits0References4
OSV
OSV
added 2025/05/19 8:15 a.m.7 views

CVE-2025-47753

V-SFT v6.2.5.0 and earlier contains an issue with out-of-bounds read in VS6EditData!CDrawSLine::GetRectArea function. Opening specially crafted V7 or V8 files may lead to crash, information disclosure, and arbitrary code execution...

7.8CVSS6AI score0.00191EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 5:10 a.m.4 views

SUSE CVE-2015-8922

The readCodersInfo function in archivereadsupportformat7zip.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted 7z file, related to the 7zfolder struct...

5.5CVSS6.7AI score0.02058EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:8 a.m.4 views

SUSE CVE-2016-1372

ClamAV aka Clam AntiVirus before 0.99.2 allows remote attackers to cause a denial of service application crash via a crafted 7z file...

5.5CVSS6.7AI score0.01606EPSS
Exploits1References5
OSV
OSV
added 2022/12/06 8:15 p.m.2 views

DEBIAN-CVE-2022-44900

A directory traversal vulnerability in the SevenZipFile.extractall function of the python library py7zr v0.20.0 and earlier allows attackers to write arbitrary files via extracting a crafted 7z file...

9.1CVSS8.5AI score0.02242EPSS
Exploits3References1
CNVD
CNVD
added 2018/11/06 12:0 a.m.4 views

Yi Home Camera Code Execution Vulnerability (CNVD-2018-22813)

Yi Home Camera is an IoT home camera sold worldwide. A code execution vulnerability exists in the firmware update function of the Yi Home Camera 27US 1.8.7.0D. An attacker can cause a CRC conflict by inserting an SD card and exploiting the vulnerability via a specially crafted 7-Zip file, which c...

7.6CVSS7.5AI score0.00586EPSS
Exploits1References1
OSV
OSV
added 2018/11/02 5:29 p.m.7 views

CVE-2018-3920

An exploitable code execution vulnerability exists in the firmware update functionality of the Yi Home Camera 27US 1.8.7.0D. A specially crafted 7-Zip file can cause a CRC collision, resulting in a firmware update and code execution. An attacker can insert an SDcard to trigger this vulnerability...

6.8CVSS6.2AI score0.00586EPSS
Exploits1References1
OSV
OSV
added 2016/06/14 12:0 a.m.8 views

UBUNTU-CVE-2016-1372

ClamAV aka Clam AntiVirus before 0.99.2 allows remote attackers to cause a denial of service application crash via a crafted 7z file...

5.5CVSS6.4AI score0.01606EPSS
Exploits1References5
Rows per page
Query Builder