Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

75 matches found

OSV
OSVadded 2026/04/25 5:49 a.m.0 views

OESA-2026-2070 libgphoto2 security update

is the core of gphoto2 software. It is a portable library which gives access to literally hundreds of digital cameras. Security Fixes: libgphoto2 is a camera access and control library. In versions up to and including 2.5.33, a missing null terminator exists in the ptpunpackCanonFE function in...

6.1CVSS5.7AI score0.0001EPSS
Exploits0References7
OSV
OSVadded 2026/04/25 5:49 a.m.1 views

OESA-2026-2069 libgphoto2 security update

is the core of gphoto2 software. It is a portable library which gives access to literally hundreds of digital cameras. Security Fixes: libgphoto2 is a camera access and control library. In versions up to and including 2.5.33, a missing null terminator exists in the ptpunpackCanonFE function in...

6.1CVSS5.7AI score0.0001EPSS
Exploits0References7
OSV
OSVadded 2026/04/25 5:49 a.m.0 views

OESA-2026-2068 libgphoto2 security update

is the core of gphoto2 software. It is a portable library which gives access to literally hundreds of digital cameras. Security Fixes: libgphoto2 is a camera access and control library. In versions up to and including 2.5.33, a missing null terminator exists in the ptpunpackCanonFE function in...

6.1CVSS5.7AI score0.0001EPSS
Exploits0References7
SUSE CVE
SUSE CVEadded 2026/04/22 1:36 a.m.5 views

SUSE CVE-2026-40338

libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have an out-of-bounds read in the PTPDPFFEnumeration case of ptpunpackSonyDPD in camlibs/ptp2/ptp-pack.c line 856. The function reads a 2-byte enumeration count N via dtoh16odata, poffset without verifying that...

5.2CVSS5.7AI score0.00009EPSS
Exploits0References3
SUSE CVE
SUSE CVEadded 2026/04/22 1:36 a.m.3 views

SUSE CVE-2026-40339

libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have an out-of-bounds read in ptpunpackSonyDPD in camlibs/ptp2/ptp-pack.c line 842. The function reads the FormFlag byte via dtoh8odata, poffset without a prior bounds check. The standard ptpunpackDPD at lines...

5.2CVSS5.7AI score0.00009EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2026/04/20 1:55 p.m.0 views

CVE-2026-40339

A flaw was found in libgphoto2, a library for camera access and control. An out-of-bounds read vulnerability exists in the ptpunpackSonyDPD function due to a missing bounds check when reading the FormFlag byte. This flaw could allow an attacker to disclose sensitive information from memory...

5.2CVSS5.6AI score0.00009EPSS
Exploits0References5
Snyk
Snykadded 2026/04/18 1:25 a.m.3 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read in the ptpunpackSonyDPD function when parsing the enumeration count from a buffer without verifying sufficient data remains. An attacker can cause information disclosure or application instability by providing a craft...

6.1CVSS5.9AI score0.00009EPSS
Exploits0References2
Snyk
Snykadded 2026/04/18 12:45 a.m.2 views

Missing Release of Memory after Effective Lifetime

Overview Affected versions of this package are vulnerable to Missing Release of Memory after Effective Lifetime in the ptpunpackSonyDPD function. An attacker can cause increased memory consumption and potential denial of service by repeatedly triggering property descriptor parsing that leads to...

4.3CVSS5.7AI score0.00008EPSS
Exploits0References2
OSV
OSVadded 2026/04/18 12:16 a.m.1 views

DEBIAN-CVE-2026-40336

libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have a memory leak in ptpunpackSonyDPD in camlibs/ptp2/ptp-pack.c lines 884–885. When processing a secondary enumeration list introduced in 2024+ Sony cameras, the function overwrites dpd-FORM.Enum.SupportedVal...

2.4CVSS5.3AI score0.00008EPSS
Exploits0References1
NVD
NVDadded 2026/04/18 12:16 a.m.1 views

CVE-2026-40338

libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have an out-of-bounds read in the PTPDPFFEnumeration case of ptpunpackSonyDPD in camlibs/ptp2/ptp-pack.c line 856. The function reads a 2-byte enumeration count N via dtoh16odata, poffset without verifying that...

5.2CVSS0.00009EPSS
Exploits0References2
NVD
NVDadded 2026/04/18 12:16 a.m.2 views

CVE-2026-40339

libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have an out-of-bounds read in ptpunpackSonyDPD in camlibs/ptp2/ptp-pack.c line 842. The function reads the FormFlag byte via dtoh8odata, poffset without a prior bounds check. The standard ptpunpackDPD at lines...

5.2CVSS0.00009EPSS
Exploits0References2
OSV
OSVadded 2026/04/18 12:16 a.m.1 views

DEBIAN-CVE-2026-40339

libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have an out-of-bounds read in ptpunpackSonyDPD in camlibs/ptp2/ptp-pack.c line 842. The function reads the FormFlag byte via dtoh8odata, poffset without a prior bounds check. The standard ptpunpackDPD at lines...

5.2CVSS5.3AI score0.00009EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2026/04/18 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2026-40339

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have an out-of- bounds read in ptpunpackSonyDPD in camlibs/ptp2/ptp-pack....

5.2CVSS5.8AI score0.00009EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2026/04/18 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2026-40338

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have an out-of- bounds read in the PTPDPFFEnumeration case of...

5.2CVSS5.8AI score0.00009EPSS
Exploits0References4
CNNVD
CNNVDadded 2026/04/18 12:0 a.m.3 views

libgphoto2 安全漏洞

libgphoto2 is an open-source camera access and control library developed by gPhoto. Versions of libgphoto2 prior to 2.5.33 contained security vulnerabilities. These vulnerabilities stemmed from the ptpunpackSonyDPD function in the camlibs/ptp2/ptp-pack.c file, which did not validate the remaining...

5.2CVSS5.9AI score0.00009EPSS
Exploits0References1
CVE
CVEadded 2026/04/17 11:42 p.m.6 views

CVE-2026-40339

libgphoto2

5.2CVSS5.7AI score0.00009EPSS
Exploits0References2
Cvelist
Cvelistadded 2026/04/17 11:42 p.m.28 views

CVE-2026-40339 libgphoto2 has OOB read in ptp_unpack_Sony_DPD() FormFlag parsing in ptp-pack.c

libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have an out-of-bounds read in ptpunpackSonyDPD in camlibs/ptp2/ptp-pack.c line 842. The function reads the FormFlag byte via dtoh8odata, poffset without a prior bounds check. The standard ptpunpackDPD at lines...

5.2CVSS0.00009EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2026/04/17 11:42 p.m.0 views

CVE-2026-40339

libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have an out-of-bounds read in ptpunpackSonyDPD in camlibs/ptp2/ptp-pack.c line 842. The function reads the FormFlag byte via dtoh8odata, poffset without a prior bounds check. The standard ptpunpackDPD at lines...

5.2CVSS5.7AI score0.00009EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichmentadded 2026/04/17 11:42 p.m.0 views

CVE-2026-40339 libgphoto2 has OOB read in ptp_unpack_Sony_DPD() FormFlag parsing in ptp-pack.c

libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have an out-of-bounds read in ptpunpackSonyDPD in camlibs/ptp2/ptp-pack.c line 842. The function reads the FormFlag byte via dtoh8odata, poffset without a prior bounds check. The standard ptpunpackDPD at lines...

5.2CVSS5.7AI score0.00009EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2026/04/17 11:40 p.m.1 views

CVE-2026-40338

libgphoto2 is a camera access and control library. Versions up to and including 2.5.33 have an out-of-bounds read in the PTPDPFFEnumeration case of ptpunpackSonyDPD in camlibs/ptp2/ptp-pack.c line 856. The function reads a 2-byte enumeration count N via dtoh16odata, poffset without verifying that...

5.2CVSS5.3AI score0.00009EPSS
Exploits0
Rows per page
Query Builder