Lucene search
K

5 matches found

NVD
NVD
added 2026/04/07 3:17 p.m.3 views

CVE-2026-24450

An integer overflow vulnerability exists in the uncompressedfpdngloadraw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS0.00454EPSS
Exploits1References2
OSV
OSV
added 2026/04/07 3:17 p.m.4 views

UBUNTU-CVE-2026-20884

An integer overflow vulnerability exists in the deflatedngloadraw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS6.2AI score0.00454EPSS
Exploits1References3
Packet Storm
Packet Storm
added 2026/02/09 12:0 a.m.198 views

📄 Samsung QuramDng Warp Out-Of-Bounds Read

This python proof of concept demonstrates an out-of-bounds read vulnerability in Samsung's QuramDng image processing library, triggered via a specially crafted DNG Digital Negative file. The script programmatically builds a minimal but valid DNG file containing a malformed WarpRectilinear opcode,...

9.1CVSS5.5AI score0.00393EPSS
Exploits2
GoogleProjectZero
GoogleProjectZero
added 2025/12/12 12:0 a.m.16 views

A look at an Android ITW DNG exploit

Posted by Benoît Sevens, Google Threat Intelligence Group Introduction Between July 2024 and February 2025, 6 suspicious image files were uploaded to VirusTotal. Thanks to a lead from Meta, these samples came to the attention of Google Threat Intelligence Group. Investigation of these images show...

9.8CVSS7.8AI score0.11606EPSS
Exploits1
Cvelist
Cvelist
added 2024/08/14 8:19 a.m.23 views

CVE-2024-41863 Adobe Substance 3D Sampler Memory Corruption Out-of-Bounds-READ Vulnerability III, when parsing DNG file

Substance3D - Sampler versions 4.5 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a...

5.5CVSS0.00228EPSS
Exploits0References1
Rows per page
Query Builder