Lucene search
+L

44 matches found

snyk
snyk
added 2026/06/19 9:16 p.m.8 views

Improper Handling of Highly Compressed Data (Data Amplification)

Overview py7zr is a Pure python 7-zip library Affected versions of this package are vulnerable to Improper Handling of Highly Compressed Data Data Amplification via the decompress function. An attacker can cause resource exhaustion by providing a specially crafted archive that expands to a much...

8.7CVSS5.9AI score0.00321EPSS
Exploits0References2
rosalinux
rosalinux
added 2026/06/01 7:53 a.m.13 views

Advisory ROSA-SA-2026-3296

CVE-ID: CVE-2020-10809 BDU-ID: 2024-07119 CVE-Crit: MEDIUM CVE-DESC.: Vulnerability in the Decompress function in the decompress.c file. This vulnerability is related to writing beyond the memory bounds. Exploitation of this vulnerability could allow an attacker to cause a service failure...

9.8CVSS6.5AI score0.0151EPSS
Exploits4
redhat
redhat
added 2026/04/01 4:28 p.m.12 views

freerdp: FreeRDP: Arbitrary code execution via heap out-of-bounds write in RLE planar decode path

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol RDP. A malicious RDP server can exploit a heap out-of-bounds write vulnerability in the planardecompressplanerle function. This vulnerability allows the server to write past the end of a temporary buffer, potentiall...

8.8CVSS6.4AI score0.00591EPSS
Exploits1References6
bdu_fstec
bdu_fstec
added 2026/01/21 12:0 a.m.3 views

The vulnerability of the clear_decompress() function in the RDP client FreeRDP allows a hacker to execute arbitrary code and trigger a service failure.

The vulnerability of the cleardecompress function in the RDP client FreeRDP is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code and cause service failures...

7.8CVSS8AI score0.00443EPSS
Exploits1References4Affected Software2
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-16747

Malware in sbrugna...

8.8CVSS9AI score0.01418EPSS
Exploits1References14
euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-3215

Malware in sbrugna...

5.5CVSS7.2AI score0.0151EPSS
Exploits1References5
euvd
euvd
added 2025/10/03 8:7 p.m.3 views

EUVD-2021-32644

Malicious code in bioql PyPI...

5.5CVSS5.5AI score0.00882EPSS
Exploits1References3
redhatcve
redhatcve
added 2025/05/22 6:51 p.m.8 views

CVE-2021-45935

Grok 9.5.0 has a heap-based buffer overflow in openhtj2k::T1OpenHTJ2K::decompress called from std::1::packagedtaskfuncstd::1::bindgrk::T1DecompressScheduler::deco and std::1::packagedtaskint...

5.5CVSS7.4AI score0.00882EPSS
Exploits1
bdu_fstec
bdu_fstec
added 2024/09/17 12:0 a.m.7 views

Vulnerability of the Decompress() function in the decompress.c file of the HDF5 library, allowing attackers to cause a service failure.

The vulnerability of the Decompress function in the decompress.c file is related to writing beyond the memory boundaries. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.8AI score0.0151EPSS
Exploits1References5Affected Software4
ptsecurity
ptsecurity
added 2024/04/24 12:0 a.m.5 views

PT-2024-40705 · Git +1 · Ndpi

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A stack-buffer-overflow READ 1 crash was reported. The crash occurred in the shoco decompress function, located in the fuzz alg shoco.cpp file. No...

7AI score
Exploits0References2
ptsecurity
ptsecurity
added 2023/03/07 12:0 a.m.8 views

PT-2023-35476 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.232 Description: The issue is related to the s390/decompressor in the Linux Kernel, where the length of the buffer in the decompress function is not properly specified, potentially leading to an overflow. T...

7.5AI score
Exploits0References1
susecve
susecve
added 2023/02/15 6:16 a.m.4 views

SUSE CVE-2006-1168

The decompress function in compress42.c in 1 ncompress 4.2.4 and 2 liblzw allows remote attackers to cause a denial of service crash, and possibly execute arbitrary code, via crafted data that leads to a buffer underflow...

7.5CVSS9.3AI score0.05757EPSS
Exploits0References7
osv
osv
added 2022/01/01 1:15 a.m.2 views

DEBIAN-CVE-2021-45935

Grok 9.5.0 has a heap-based buffer overflow in openhtj2k::T1OpenHTJ2K::decompress called from std::1::packagedtaskfuncstd::1::bindgrk::T1DecompressScheduler::deco and std::1::packagedtaskint...

5.5CVSS6AI score0.00882EPSS
Exploits1References1
debiancve
debiancve
added 2021/12/31 11:58 p.m.24 views

CVE-2021-45935

Grok 9.5.0 has a heap-based buffer overflow in openhtj2k::T1OpenHTJ2K::decompress called from std::1::packagedtaskfuncstd::1::bindgrk::T1DecompressScheduler::deco and std::1::packagedtaskint...

5.5CVSS5.7AI score0.00882EPSS
Exploits1
osv
osv
added 2021/10/22 8:15 p.m.2 views

CVE-2020-28963

Passcovery Co. Ltd ZIP Password Recovery v3.70.69.0 was discovered to contain a buffer overflow via the decompress function...

7.8CVSS6.1AI score0.00403EPSS
Exploits1References1
nvd
nvd
added 2021/10/22 8:15 p.m.26 views

CVE-2020-28963

Passcovery Co. Ltd ZIP Password Recovery v3.70.69.0 was discovered to contain a buffer overflow via the decompress function...

7.8CVSS0.00403EPSS
Exploits1References1
prion
prion
added 2021/10/22 8:15 p.m.15 views

Buffer overflow

Passcovery Co. Ltd ZIP Password Recovery v3.70.69.0 was discovered to contain a buffer overflow via the decompress function...

7.2CVSS7.9AI score0.00403EPSS
Exploits1References1Affected Software1
cve
cve
added 2021/10/22 7:20 p.m.50 views

CVE-2020-28963

CVE-2020-28963 affects Passcovery ZIP Password Recovery v3.70.69.0, with a buffer overflow in the decompression function. The issue can allow an attacker with local access to overwrite local process registers, potentially compromising a local software process and elevating privileges. The vulnera...

7.8CVSS7.9AI score0.00403EPSS
Exploits1References1Affected Software1
cvelist
cvelist
added 2021/10/22 7:20 p.m.31 views

CVE-2020-28963

Passcovery Co. Ltd ZIP Password Recovery v3.70.69.0 was discovered to contain a buffer overflow via the decompress function...

7.9AI score0.00403EPSS
Exploits1References1
cnvd
cnvd
added 2020/03/23 12:0 a.m.2 views

HDF5 Buffer Overflow Vulnerability (CNVD-2020-22284)

HDF5 is a suite of tools for managing and storing different types of data. The product supports managing, manipulating, viewing and analyzing data and generating files in portable formats. A buffer overflow vulnerability exists in the 'Decompress' function of the decompress.c file in HDF5 1.12.0...

5.5CVSS9.5AI score0.0151EPSS
Exploits1References1
Rows per page
Query Builder