Lucene search
K

404 matches found

UbuntuCve
UbuntuCve
added 2026/04/07 3:17 p.m.3 views

CVE-2026-20884

An integer overflow vulnerability exists in the deflatedngloadraw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS6.2AI score0.00454EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/04/07 1:49 p.m.5 views

CVE-2026-24450

An integer overflow vulnerability exists in the uncompressedfpdngloadraw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

8.1CVSS6.2AI score0.00454EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/04/07 1:49 p.m.2 views

CVE-2026-20884

An integer overflow vulnerability exists in the deflatedngloadraw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

8.1CVSS6.4AI score0.00454EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2026/04/07 1:49 p.m.2 views

CVE-2026-20884

An integer overflow vulnerability exists in the deflatedngloadraw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS5.9AI score0.00454EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2026/04/07 1:49 p.m.5 views

CVE-2026-20884

An integer overflow vulnerability exists in the deflatedngloadraw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

8.1CVSS6.2AI score0.00454EPSS
Exploits1References2
CVE
CVE
added 2026/04/07 1:49 p.m.50 views

CVE-2026-20884

CVE-2026-20884 affects LibRaw deflate_dng_load_raw: a crafted file can trigger a heap buffer overflow via integer overflow in the deflate_dng_load_raw path. Multiple advisories (TencentOS/TSSA-2026:0413; Amazon ALAS-2026-3258; SUSE/SLES/SLED advisories; openSUSE; Fedora) reference LibRaw, with af...

9.8CVSS6.2AI score0.00454EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2026/04/07 1:49 p.m.22 views

CVE-2026-20884

An integer overflow vulnerability exists in the deflatedngloadraw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

8.1CVSS0.00454EPSS
Exploits1References1
Talos
Talos
added 2026/04/07 12:0 a.m.9 views

LibRaw uncompressed_fp_dng_load_raw integer overflow vulnerability

Talos Vulnerability Report TALOS-2026-2363 LibRaw uncompressedfpdngloadraw integer overflow vulnerability April 7, 2026 CVE Number CVE-2026-24450 SUMMARY An integer overflow vulnerability exists in the uncompressedfpdngloadraw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious...

9.8CVSS6.4AI score0.00454EPSS
Exploits1
CNNVD
CNNVD
added 2026/04/07 12:0 a.m.11 views

Libraw 安全漏洞

Libraw is a C++ library developed by Libraw Inc. that processes RAW CRW/CR2, NEF, RAF, DNG, and other formats images. It supports various operating systems. LibRaw has a security vulnerability, which stems from an integer overflow in the uncompressedfpdngloadraw function, potentially leading to a...

9.8CVSS6.4AI score0.00454EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/04/07 12:0 a.m.4 views

PT-2026-30829

Name of the Vulnerable Software and Affected Versions LibRaw versions prior to Commit 8dc68e2 Description An integer overflow exists in the deflate dng load raw functionality of LibRaw. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file...

9.8CVSS6.4AI score0.00454EPSS
Exploits1References40
Talos
Talos
added 2026/04/07 12:0 a.m.9 views

LibRaw deflate_dng_load_raw integer overflow vulnerability

Talos Vulnerability Report TALOS-2026-2364 LibRaw deflatedngloadraw integer overflow vulnerability April 7, 2026 CVE Number CVE-2026-20884 SUMMARY An integer overflow vulnerability exists in the deflatedngloadraw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead ...

9.8CVSS6.3AI score0.00454EPSS
Exploits1
CNNVD
CNNVD
added 2026/04/07 12:0 a.m.6 views

Libraw 安全漏洞

Libraw is a C++ library developed by Libraw Inc. that processes RAW CRW/CR2, NEF, RAF, DNG, and other formats images. It supports various operating systems. Libraw has a security vulnerability, which stems from an integer overflow in the deflatedngloadraw function, potentially leading to a heap...

9.8CVSS6.4AI score0.00454EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:9 p.m.4 views

CVE-2026-27281

DNG SDK versions 1.7.1 2471 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to cause the application to crash or become unresponsive. Exploitation of this issue requires user...

5.5CVSS5.8AI score0.00179EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:1 p.m.3 views

CVE-2026-27280

DNG SDK versions 1.7.1 2471 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.4AI score0.00176EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/10 9:32 p.m.7 views

EUVD-2026-10784

DNG SDK versions 1.7.1 2471 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00176EPSS
Exploits0References2
OSV
OSV
added 2026/03/10 7:17 p.m.4 views

CVE-2026-27281

DNG SDK versions 1.7.1 2471 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to cause the application to crash or become unresponsive. Exploitation of this issue requires user...

5.5CVSS5.8AI score0.00179EPSS
Exploits1References1
OSV
OSV
added 2026/03/10 7:17 p.m.5 views

CVE-2026-27280

DNG SDK versions 1.7.1 2471 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00176EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/10 6:23 p.m.26 views

CVE-2026-27281 DNG SDK | Integer Overflow or Wraparound (CWE-190)

DNG SDK versions 1.7.1 2471 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to cause the application to crash or become unresponsive. Exploitation of this issue requires user...

5.5CVSS0.00179EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/03/10 6:23 p.m.4 views

CVE-2026-27281 DNG SDK | Integer Overflow or Wraparound (CWE-190)

DNG SDK versions 1.7.1 2471 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could lead to application denial-of-service. An attacker could exploit this vulnerability to cause the application to crash or become unresponsive. Exploitation of this issue requires user...

5.5CVSS5.8AI score0.00179EPSS
Exploits1References1
CVE
CVE
added 2026/03/10 6:23 p.m.18 views

CVE-2026-27281

DVE-2024-2026: CVE-2026-27281 affects DNG SDK up to version 1.7.1 2471 and earlier. The flaw is an Integer Overflow or Wraparound (CWE-190) in a component used by the SDK, leading to an application denial-of-service. Exploitation requires user interaction: a victim must open a malicious file. The...

5.5CVSS5.8AI score0.00179EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder