CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

5.5CVSS3.6AI score0.00204EPSS

JLSEC-2026-336

A vulnerability was found in HDF5 up to 1.14.6 and classified as problematic. This issue affects the function H5Ocachechkserialize of the file src/H5Ocache.c. The manipulation leads to null pointer dereference. An attack has to be approached locally. The exploit has been disclosed to the public a...

Exploits1References5

4.8CVSS3.9AI score0.00208EPSS

JLSEC-2026-343

A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5Ofsinfoencode of the file /src/H5Ofsinfo.c. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to...

Exploits1References6

4.8CVSS4.1AI score0.00203EPSS

JLSEC-2026-342

A vulnerability, which was classified as problematic, has been found in HDF5 1.14.6. Affected by this issue is the function H5Omtimenewencode of the file src/H5Omtime.c. The manipulation leads to heap-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the...

Exploits1References6

OSV•added 2026/04/29 1:21 p.m.•2 views

JLSEC-2026-354

HDF5 is software for managing data. In 1.14.1-2 and earlier, a heap-use-after-free was found in the h5dump helper utility. An attacker who can supply a malicious h5 file can trigger a heap use-after-free. The freed object is referenced in a memmove call from H5Tconvstruct. The original object was...

7.8CVSS5.3AI score0.00175EPSS

Exploits1References1

9.8CVSS8.9AI score0.00917EPSS

JLSEC-2026-292

HDF5 through 1.14.3 contains a buffer overflow in H5Zfilterscaleoffset, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...

7.4CVSS8.2AI score0.00239EPSS

JLSEC-2026-314

HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5Tcopyreopen in H5T.c, resulting in the corruption of the instruction pointer...

9.8CVSS8.8AI score0.00865EPSS

JLSEC-2026-297

HDF5 through 1.14.3 contains a stack buffer overflow in H5Rdecodeheap, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...

5.3CVSS4AI score0.00223EPSS

JLSEC-2026-329

A vulnerability was found in HDF5 up to 1.14.6. It has been declared as problematic. Affected by this vulnerability is the function H5Omsgflush of the file src/H5Omessage.c. The manipulation of the argument oh leads to heap-based buffer overflow. The attack needs to be approached locally. The...

Exploits1References4

5.3CVSS4.3AI score0.00201EPSS

JLSEC-2026-330

A vulnerability was found in HDF5 up to 1.14.6. It has been rated as critical. Affected by this issue is the function H5FLblkgclist of the file src/H5FL.c. The manipulation of the argument H5FLblkheadt leads to use after free. An attack has to be approached locally. The exploit has been disclosed...

Exploits1References4

8.1CVSS4.7AI score0.00462EPSS

JLSEC-2026-325

A vulnerability, which was classified as critical, was found in HDF5 1.14.6. Affected is the function H5SMdelete of the file H5SM.c of the component h5 File Handler. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack remotely. The complexity of an attack is...

Exploits1References5

9.8CVSS8.8AI score0.00907EPSS

JLSEC-2026-290

HDF5 through 1.14.3 contains a heap buffer overflow in H5HGread, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...

5.7CVSS8.6AI score0.00227EPSS

JLSEC-2026-323

HDF5 Library through 1.14.3 has a heap buffer overflow in H5Spointdeserialize in H5Spoint.c...

OSV•added 2026/04/29 1:21 p.m.•2 views

JLSEC-2026-304

HDF5 Library through 1.14.3 allows stack consumption in the function H5Eprintfstack in H5Eint.c...

7.5CVSS8.2AI score0.00796EPSS

OSV•added 2026/04/29 1:21 p.m.•2 views

JLSEC-2026-335

A vulnerability has been found in HDF5 up to 1.14.6 and classified as problematic. This vulnerability affects the function H5MMrealloc of the file src/H5MM.c. The manipulation of the argument mem leads to double free. The attack needs to be approached locally. The exploit has been disclosed to th...

5.5CVSS4.5AI score0.00206EPSS

Exploits1References5

5.5CVSS3.8AI score0.00215EPSS

JLSEC-2026-351

A vulnerability, which was classified as problematic, was found in HDF5 1.14.6. Affected is the function H5FSsectlinksize of the file src/H5FSsection.c. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to t...

Exploits1References6

8.8CVSS5.6AI score0.00377EPSS

JLSEC-2026-337

hdf5 v1.14.6 was discovered to contain a heap buffer overflow via the H5VMmemcpyvv function...

Exploits1References2

5.7CVSS7.4AI score0.00227EPSS

JLSEC-2026-322

HDF5 Library through 1.14.3 has a heap-based buffer overflow in H5Olayoutencode in H5Olayout.c, resulting in the corruption of the instruction pointer...

OSV•added 2026/04/29 1:21 p.m.•6 views

JLSEC-2026-321

HDF5 Library through 1.14.3 has a heap buffer overflow in H5Omtimenewencode in H5Omtime.c...

9.8CVSS8.1AI score0.00927EPSS

7.4CVSS8.2AI score0.00245EPSS

JLSEC-2026-315

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in H5Faddrdecodelen in H5Fint.c, resulting in the corruption of the instruction pointer...

7.4CVSS8.8AI score0.00223EPSS

JLSEC-2026-293

HDF5 through 1.14.3 contains a heap buffer overflow in H5HGcacheheapdeserialize, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...