Lucene search
K

851 matches found

Vulnrichment
Vulnrichment
added 2026/03/12 7:2 a.m.2 views

CVE-2026-4009 jarikomppa soloud WAV File dr_wav.h drwav_read_pcm_frames_s16__msadpcm out-of-bounds

A vulnerability has been found in jarikomppa soloud up to 20200207. Impacted is the function drwavreadpcmframess16msadpcm in the library src/audiosource/wav/drwav.h of the component WAV File Parser. The manipulation leads to out-of-bounds read. The attack needs to be performed locally. The exploi...

4.8CVSS5AI score0.00113EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/03/12 7:2 a.m.9 views

CVE-2026-4009

A vulnerability has been found in jarikomppa soloud up to 20200207. Impacted is the function drwavreadpcmframess16msadpcm in the library src/audiosource/wav/drwav.h of the component WAV File Parser. The manipulation leads to out-of-bounds read. The attack needs to be performed locally. The exploi...

4.8CVSS5AI score0.00113EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/03/12 7:2 a.m.31 views

CVE-2026-4009 jarikomppa soloud WAV File dr_wav.h drwav_read_pcm_frames_s16__msadpcm out-of-bounds

A vulnerability has been found in jarikomppa soloud up to 20200207. Impacted is the function drwavreadpcmframess16msadpcm in the library src/audiosource/wav/drwav.h of the component WAV File Parser. The manipulation leads to out-of-bounds read. The attack needs to be performed locally. The exploi...

4.8CVSS0.00113EPSS
Exploits0References6
CVE
CVE
added 2026/03/12 7:2 a.m.10 views

CVE-2026-4009

CVE-2026-4009 affects jarikomppa soloud, specifically the WAV File Parser component. The vulnerability is in the function drwav_read_pcm_frames_s16__msadpcm within src/audiosource/wav/dr_wav.h, causing an out-of-bounds read. The issue can be exploited locally, and the exploit has been disclosed p...

4.8CVSS5AI score0.00113EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/03/12 12:0 a.m.10 views

PT-2026-24932

A vulnerability has been found in jarikomppa soloud up to 20200207. Impacted is the function drwav read pcm frames s16 msadpcm in the library src/audiosource/wav/dr wav.h of the component WAV File Parser. The manipulation leads to out-of-bounds read. The attack needs to be performed locally. The...

4.8CVSS5AI score0.00113EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/03/12 12:0 a.m.5 views

GPAC 安全漏洞

GPAC is an open-source multimedia framework developed by GPAC. The GPAC 26.03-DEV version contains a security vulnerability, which stems from a stack buffer overflow in the txtinprocesstexml function within the TeXML File Parser component...

5.3CVSS6.2AI score0.00127EPSS
Exploits0References8
Snyk
Snyk
added 2026/03/11 8:42 p.m.12 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read in the vvdecpushdata2 function of the HEIF File Parser component. An attacker can cause an out-of-bounds read by manipulating the size argument during local exploitation. Remediation A fix was pushed into the master...

4.8CVSS5.8AI score0.00117EPSS
Exploits0References2
OSV
OSV
added 2026/03/11 7:16 p.m.5 views

UBUNTU-CVE-2026-3949

A vulnerability was determined in strukturag libheif up to 1.21.2. This affects the function vvdecpushdata2 of the file libheif/plugins/decodervvdec.cc of the component HEIF File Parser. Executing a manipulation of the argument size can lead to out-of-bounds read. The attack needs to be launched...

4.8CVSS5.3AI score0.00117EPSS
Exploits0References2
CVE
CVE
added 2026/03/11 6:32 p.m.20 views

CVE-2026-3949

CVE-2026-3949 — libheif (up to 1.21.2) has a vulnerability in the HEIF File Parser component. The issue is in the function vvdec_push_data2 (libheif/plugins/decoder_vvdec.cc), where manipulating the argument size can cause an out-of-bounds read . The vulnerability requires local access to exploit...

4.8CVSS5.3AI score0.00117EPSS
Exploits0References8
EUVD
EUVD
added 2026/03/07 6:30 p.m.4 views

EUVD-2026-10173

A vulnerability was identified in xlnt-community xlnt up to 1.6.1. The affected element is the function xlnt::detail::xlsxconsumer::readofficedocument of the file source/detail/serialization/xlsxconsumer.cpp of the component XLSX File Parser. The manipulation leads to null pointer dereference. Th...

4.8CVSS5.3AI score0.00205EPSS
Exploits1References7
NVD
NVD
added 2026/03/07 4:15 p.m.8 views

CVE-2026-3665

A vulnerability was identified in xlnt-community xlnt up to 1.6.1. The affected element is the function xlnt::detail::xlsxconsumer::readofficedocument of the file source/detail/serialization/xlsxconsumer.cpp of the component XLSX File Parser. The manipulation leads to null pointer dereference. Th...

5.5CVSS0.00205EPSS
Exploits1References6
EUVD
EUVD
added 2026/03/07 3:30 p.m.9 views

EUVD-2026-10155

A vulnerability was found in xlnt-community xlnt up to 1.6.1. This issue affects the function xlnt::detail::compounddocumentistreambuf::xsgetn of the file source/detail/cryptography/compounddocument.cpp of the component XLSX File Parser. Performing a manipulation results in out-of-bounds read. Th...

4.8CVSS5.3AI score0.0017EPSS
Exploits1References8
NVD
NVD
added 2026/03/07 3:15 p.m.4 views

CVE-2026-3663

A vulnerability was found in xlnt-community xlnt up to 1.6.1. This issue affects the function xlnt::detail::compounddocumentistreambuf::xsgetn of the file source/detail/cryptography/compounddocument.cpp of the component XLSX File Parser. Performing a manipulation results in out-of-bounds read. Th...

7.1CVSS0.0017EPSS
Exploits1References7
CVE
CVE
added 2026/03/07 2:32 p.m.15 views

CVE-2026-3664

Affected product: xlnt-community xlnt (up to 1.6.1). Vulnerable component: xlnt::detail::compound_document::read_directory in source/detail/cryptography/compound_document.cpp of the Encrypted XLSX File Parser. Issue type: out-of-bounds read caused by manipulation, with local execution requirement...

5.5CVSS5.4AI score0.00179EPSS
Exploits1References7Affected Software1
CVE
CVE
added 2026/03/07 2:32 p.m.8 views

CVE-2026-3663

The CVE-2026-3663 issue affects xlnt-community xlnt up to 1.6.1, specifically the xlnt::detail::compound_document_istreambuf::xsgetn function in source/detail/cryptography/compound_document.cpp of the XLSX File Parser. A manipulation can trigger an out-of-bounds read, with local access required. ...

7.1CVSS5.3AI score0.0017EPSS
Exploits1References7Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/07 12:0 a.m.6 views

PT-2026-23859

A vulnerability was found in xlnt-community xlnt up to 1.6.1. This issue affects the function xlnt::detail::compound document istreambuf::xsgetn of the file source/detail/cryptography/compound document.cpp of the component XLSX File Parser. Performing a manipulation results in out-of-bounds read...

4.8CVSS5.3AI score0.0017EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2026/03/05 12:0 a.m.5 views

Wireshark 4.6.x < 4.6.4 Multiple Vulnerabilities (macOS)

The version of Wireshark installed on the remote macOS / Mac OS X host is prior to 4.6.4. It is, therefore, affected by multiple vulnerabilities as referenced in the wireshark-4.6.4 advisory. - RF4CE Profile protocol dissector crash in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of...

7.8CVSS5.9AI score0.00184EPSS
Exploits5References30
CNNVD
CNNVD
added 2026/03/03 12:0 a.m.4 views

libbiosig 安全漏洞

Libbiosig is an open-source software library developed by the BioSig Project for biomedical signal processing. It includes functions for bio-signal analysis. Version 3.9.2 of Libbiosig contains a security vulnerability; this vulnerability stems from an out-of-bound read operation in the ABF parsi...

7.1CVSS5.8AI score0.00184EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/03/02 5:20 p.m.11 views

CVE-2026-3407

A flaw was found in YosysHQ yosys, specifically within the BLIF File Parser component. A local user can exploit a heap-based buffer overflow vulnerability by manipulating the Yosys::RTLIL::Const::set function. This manipulation can lead to a denial of service, making the affected system unavailab...

4.8CVSS5.9AI score0.00126EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/02 3:2 a.m.25 views

CVE-2026-3407 YosysHQ yosys BLIF File rtlil.h set heap-based overflow

A vulnerability was determined in YosysHQ yosys up to 0.62. This affects the function Yosys::RTLIL::Const::set of the file kernel/rtlil.h of the component BLIF File Parser. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has...

4.8CVSS0.00126EPSS
Exploits0References8
Rows per page
Query Builder