Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5950 matches found

EUVD
EUVDadded 2026/04/02 6:36 p.m.1 views

EUVD-2026-18505

XZ Utils provide a general-purpose data-compression library plus command-line tools. Prior to version 5.8.3, if lzmaindexdecoder was used to decode an Index that contained no Records, the resulting lzmaindex was left in a state where where a subsequent lzmaindexappend would allocate too little...

6.3CVSS6AI score0.0006EPSS
Exploits0References3
Snyk
Snykadded 2026/04/02 6:36 p.m.2 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the lzmaindexdecoder function when processing an empty index, followed by a call to lzmaindexappend. An attacker can cause a buffer overflow and disrupt service availability by providing a specially crafted...

7.4CVSS6.1AI score0.0006EPSS
Exploits0References2
OSV
OSVadded 2026/04/02 9:51 a.m.4 views

CLSA-2026-1775121601 ImageMagick: Fix of 7 CVEs

CVE-2026-28494: fix stack buffer overflow in morphology kernel parsing - CVE-2026-28691: fix uninitialized pointer dereference in JBIG decoder - CVE-2026-25989: fix off-by-one boundary check in CastDoubleToLong - CVE-2026-25985: fix memory allocation without limits in SVG decoder -...

8.1CVSS6AI score0.00067EPSS
Exploits0References1
SUSE CVE
SUSE CVEadded 2026/04/02 8:42 a.m.3 views

SUSE CVE-2026-5190

Out-of-bounds write in the streaming decoder component in aws-c-event-stream before 0.6.0 might allow a third party operating a server to cause memory corruption leading to arbitrary code execution on a client application that processes crafted event-stream messages. To remediate this issue, user...

7.7CVSS6.4AI score0.00022EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2026/04/02 6:2 a.m.2 views

CVE-2026-5317

A flaw was found in Nothings stb, a library used for processing audio. A remote attacker can exploit a vulnerability involving an out-of-bounds write within the startdecoder function. This issue could allow an attacker to cause the application to crash, disclose sensitive information, or corrupt...

7.5CVSS6.6AI score0.00021EPSS
Exploits1References7
NVD
NVDadded 2026/04/02 1:16 a.m.1 views

CVE-2026-5317

A security flaw has been discovered in Nothings stb up to 1.22. This affects the function startdecoder of the file stbvorbis.c. The manipulation results in out-of-bounds write. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks. The...

8.8CVSS0.00021EPSS
Exploits1References4
OSV
OSVadded 2026/04/02 1:16 a.m.3 views

UBUNTU-CVE-2026-5317

A security flaw has been discovered in Nothings stb up to 1.22. This affects the function startdecoder of the file stbvorbis.c. The manipulation results in out-of-bounds write. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks. The...

8.8CVSS5.3AI score0.00021EPSS
Exploits1References6
ATTACKERKB
ATTACKERKBadded 2026/04/02 12:45 a.m.2 views

CVE-2026-5317

A security flaw has been discovered in Nothings stb up to 1.22. This affects the function startdecoder of the file stbvorbis.c. The manipulation results in out-of-bounds write. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks. The...

7.5CVSS5.5AI score0.00021EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/02 12:45 a.m.1 views

CVE-2026-5317 Nothings stb stb_vorbis.c start_decoder out-of-bounds write

A security flaw has been discovered in Nothings stb up to 1.22. This affects the function startdecoder of the file stbvorbis.c. The manipulation results in out-of-bounds write. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks. The...

7.5CVSS6.2AI score0.00021EPSS
Exploits1References4
Cvelist
Cvelistadded 2026/04/02 12:45 a.m.26 views

CVE-2026-5317 Nothings stb stb_vorbis.c start_decoder out-of-bounds write

A security flaw has been discovered in Nothings stb up to 1.22. This affects the function startdecoder of the file stbvorbis.c. The manipulation results in out-of-bounds write. The attack may be performed from remote. The exploit has been released to the public and may be used for attacks. The...

7.5CVSS0.00021EPSS
Exploits1References4
EUVD
EUVDadded 2026/04/02 12:31 a.m.0 views

EUVD-2026-18091

A vulnerability has been found in Nothings stb up to 2.30. This issue affects the function stbigifloadnext in the library stbimage.h of the component GIF Decoder. Such manipulation leads to denial of service. The attack may be launched remotely. The exploit has been disclosed to the public and ma...

5.3CVSS5.4AI score0.00049EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2026/04/02 12:0 a.m.3 views

PT-2026-29674

Name of the Vulnerable Software and Affected Versions Nothings stb versions up to 1.22 Description A security flaw exists in Nothings stb, specifically within the start decoder function of the stb vorbis.c file. This flaw results in an out-of-bounds write, and can be exploited remotely. The explo...

8.8CVSS6.3AI score0.00021EPSS
Exploits1References14
CNNVD
CNNVDadded 2026/04/02 12:0 a.m.3 views

XZ Utils 安全漏洞

XZ Utils is an open-source utility developed by Tukaani. Versions of XZ Utils prior to 5.8.3 contained security vulnerabilities. These vulnerabilities stemmed from abnormal states during the decoding of unrecorded indexes by lzmaindexdecoder, which could lead to insufficient memory allocation...

6.3CVSS6.2AI score0.0006EPSS
Exploits0References4
Snyk
Snykadded 2026/04/01 10:25 p.m.0 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow via the HTJ2K decoder. An attacker can execute arbitrary code or cause a denial of service by providing a crafted .exr file with HTJ2K compression and a channel width of 32768, which results in controlled data...

8.8CVSS6.4AI score0.00029EPSS
Exploits1References2
OSV
OSVadded 2026/04/01 10:16 p.m.0 views

DEBIAN-CVE-2026-5313

A vulnerability has been found in Nothings stb up to 2.30. This issue affects the function stbigifloadnext in the library stbimage.h of the component GIF Decoder. Such manipulation leads to denial of service. The attack may be launched remotely. The exploit has been disclosed to the public and ma...

4.3CVSS4.6AI score0.00049EPSS
Exploits0References1
NVD
NVDadded 2026/04/01 10:16 p.m.0 views

CVE-2026-5313

A vulnerability has been found in Nothings stb up to 2.30. This issue affects the function stbigifloadnext in the library stbimage.h of the component GIF Decoder. Such manipulation leads to denial of service. The attack may be launched remotely. The exploit has been disclosed to the public and ma...

5.3CVSS0.00049EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2026/04/01 10:16 p.m.1 views

CVE-2026-5313

A vulnerability has been found in Nothings stb up to 2.30. This issue affects the function stbigifloadnext in the library stbimage.h of the component GIF Decoder. Such manipulation leads to denial of service. The attack may be launched remotely. The exploit has been disclosed to the public and ma...

5.3CVSS5.4AI score0.00049EPSS
Exploits0References4
ATTACKERKB
ATTACKERKBadded 2026/04/01 9:30 p.m.1 views

CVE-2026-5313

A vulnerability has been found in Nothings stb up to 2.30. This issue affects the function stbigifloadnext in the library stbimage.h of the component GIF Decoder. Such manipulation leads to denial of service. The attack may be launched remotely. The exploit has been disclosed to the public and ma...

5.3CVSS5.4AI score0.00049EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/01 9:30 p.m.0 views

CVE-2026-5313 Nothings stb GIF Decoder stb_image.h stbi__gif_load_next denial of service

A vulnerability has been found in Nothings stb up to 2.30. This issue affects the function stbigifloadnext in the library stbimage.h of the component GIF Decoder. Such manipulation leads to denial of service. The attack may be launched remotely. The exploit has been disclosed to the public and ma...

5.3CVSS5.3AI score0.00049EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/04/01 9:30 p.m.19 views

CVE-2026-5313 Nothings stb GIF Decoder stb_image.h stbi__gif_load_next denial of service

A vulnerability has been found in Nothings stb up to 2.30. This issue affects the function stbigifloadnext in the library stbimage.h of the component GIF Decoder. Such manipulation leads to denial of service. The attack may be launched remotely. The exploit has been disclosed to the public and ma...

5.3CVSS0.00049EPSS
Exploits0References3
Rows per page
Query Builder