Lucene search
K

106 matches found

Positive Technologies
Positive Technologies
added 6 days ago10 views

PT-2026-56357

Name of the Vulnerable Software and Affected Versions Foxit PDF Editor/Reader affected versions not specified Description The PRC file header parsing logic trusts the constructed file structure description information and assumes the underlying array contains elements. When reading these elements...

6.1CVSS6.1AI score0.00112EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/06/29 12:0 a.m.13 views

PT-2026-53260

Name of the Vulnerable Software and Affected Versions SzafirHost versions prior to 1.2.2 Description SzafirHost is susceptible to remote code execution due to a discrepancy between how it verifies and extracts native library archives. The software uses a JarFile parser to verify the archive by...

8.6CVSS6.4AI score0.00418EPSS
Exploits0References4
OSV
OSV
added 2026/05/11 6:47 p.m.5 views

MINI-FH2H-X7M5-MJ7F

Bulletin has no description...

7.5CVSS5.7AI score0.00813EPSS
Exploits0
Amazon
Amazon
added 2026/04/30 12:0 a.m.8 views

Important: openexr

Issue Overview: OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From 3.4.0 to before 3.4.9, a missing bounds check on the dataWindow attribute in EXR file headers allows an attacker to trigger a signe...

8.6CVSS5.4AI score0.00482EPSS
Exploits3
Debian CVE
Debian CVE
added 2026/04/06 9:22 a.m.4 views

CVE-2026-5673

A flaw was found in libtheora. This heap-based out-of-bounds read vulnerability exists within the AVI Audio Video Interleave parser, specifically in the aviparseinputfile function. A local attacker could exploit this by tricking a user into opening a specially crafted AVI file containing a...

7.1CVSS5.2AI score0.00178EPSS
Exploits1
NVD
NVD
added 2026/02/19 9:18 p.m.6 views

CVE-2026-26282

NanaZip is an open source file archive Starting in version 5.0.1252.0 and prior to version 6.0.1630.0, NanaZip has an out-of-bounds heap read in .NET Single File bundle header parser due to missing bounds check. Opening a crafted file with NanaZip causes a crash or leaks heap data to the user...

6.6CVSS0.00172EPSS
Exploits1References2
OSV
OSV
added 2026/02/19 8:41 p.m.7 views

CVE-2026-26282 NanaZip has DotNet Single file OOB Heap Read

NanaZip is an open source file archive Starting in version 5.0.1252.0 and prior to version 6.0.1630.0, NanaZip has an out-of-bounds heap read in .NET Single File bundle header parser due to missing bounds check. Opening a crafted file with NanaZip causes a crash or leaks heap data to the user...

5.2CVSS5.6AI score0.00172EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/02/19 12:0 a.m.5 views

PT-2026-20927

NanaZip is an open source file archive Starting in version 5.0.1252.0 and prior to version 6.0.1630.0, NanaZip has an out-of-bounds heap read in .NET Single File bundle header parser due to missing bounds check. Opening a crafted file with NanaZip causes a crash or leaks heap data to the user...

5.2CVSS5.6AI score0.00172EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/01/09 11:25 a.m.5 views

CVE-2021-28977

Cross Site Scripting vulnerability in GetSimpleCMS 3.3.16 in admin/upload.php by adding comments or jpg and other file header information to the content of xla, pages, and gzip files,...

4.8CVSS6.3AI score0.00506EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-4945

Malware in sbrugna...

5CVSS6.4AI score0.0281EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2007-4447

Malware in sbrugna...

4.3CVSS6.4AI score0.01238EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-1943

Malware in sbrugna...

6.8CVSS9.2AI score0.01731EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2012-1601

Malware in sbrugna...

4.3CVSS6AI score0.02646EPSS
Exploits1References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2021-15624

Malware in sbrugna...

4.8CVSS5.1AI score0.00506EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-21298

Malicious code in bioql PyPI...

5.3CVSS4.9AI score0.00324EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-35111

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.01544EPSS
Exploits0References23
OSV
OSV
added 2025/08/22 5:59 p.m.8 views

CLSA-2025-1755885569 zziplib: Fix of CVE-2020-18770

CVE-2020-18770: fix denial-of-service issue in zzipdiskentrytofileheader function in mmapped.c...

5.5CVSS5.8AI score0.00317EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/08/01 4:32 p.m.2 views

CVE-2025-48074 OpenEXR's Unbounded File Header Values can Lead to Out-Of-Memory Errors

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In version 3.3.2, applications trust unvalidated dataWindow size values from file headers, which can lead to excessive memory allocation and performance...

4.6CVSS7AI score0.00259EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/08/01 4:32 p.m.11 views

CVE-2025-48074 OpenEXR's Unbounded File Header Values can Lead to Out-Of-Memory Errors

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In version 3.3.2, applications trust unvalidated dataWindow size values from file headers, which can lead to excessive memory allocation and performance...

4.6CVSS0.00259EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2025/07/31 7:23 p.m.9 views

OpenEXR Out-Of-Memory via Unbounded File Header Values

Summary The OpenEXR file format defines many information about the final image inside of the file header, such as the size of data/display window. The application trusts the value of dataWindow size provided in the header of the input file, and performs computations based on this value. This may...

5.5CVSS6.5AI score0.00259EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder