Lucene search
K

668 matches found

SUSE CVE
SUSE CVE
added 2026/07/07 3:13 p.m.10 views

SUSE CVE-2026-55380

Pillow is a Python imaging library. Prior to 12.3.0, PIL/GdImageFile.py GdImageFile.open read image dimensions from the GD 2.x header and stored them in self.size without calling Image.decompressionbombcheck, allowing a crafted .gd file to trigger excessive C-heap allocation when loaded. This iss...

7.5CVSS6AI score0.00361EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2026/06/30 2:6 p.m.9 views

giflib: giflib: Denial of Service via buffer overflow in EGifGCBToExtension

A flaw was found in giflib. A remote attacker can exploit a buffer overflow vulnerability in the EGifGCBToExtension function by providing a specially crafted Graphics Control Extension GCE block. This allows overwriting an existing GCE block without proper size validation, leading to a denial of...

8.2CVSS7.6AI score0.00618EPSS
Exploits1References5
OSV
OSV
added 2026/06/28 9:26 a.m.3 views

OPENSUSE-SU-2026:21076-1 Security update for giflib

This update for giflib fixes the following issue - CVE-2026-26740: heap out-of-bounds read when processing a specially crafted GIF file containing a GCE block with a truncated extension byte count bsc1259836...

8.2CVSS5.8AI score0.00618EPSS
Exploits1References2
OSV
OSV
added 2026/06/26 2:8 p.m.2 views

SUSE-SU-2026:2666-1 Security update for giflib

This update for giflib fixes the following issue - CVE-2026-26740: heap out-of-bounds read when processing a specially crafted GIF file containing a GCE block with a truncated extension byte count bsc1259836...

8.2CVSS5.8AI score0.00618EPSS
Exploits1References3
OSV
OSV
added 2026/06/24 1:11 p.m.4 views

OESA-2026-2708 giflib security update

giflib is a library of gif images and provides utilities for processing images. Security Fixes: Buffer Overflow vulnerability in giflib v.5.2.2 allows a remote attacker to cause a denial of service via the EGifGCBToExtension overwriting an existing Graphic Control Extension block without validati...

8.2CVSS5.9AI score0.00618EPSS
Exploits1References2
OSV
OSV
added 2026/06/24 1:11 p.m.6 views

OESA-2026-2707 giflib security update

giflib is a library of gif images and provides utilities for processing images. Security Fixes: Buffer Overflow vulnerability in giflib v.5.2.2 allows a remote attacker to cause a denial of service via the EGifGCBToExtension overwriting an existing Graphic Control Extension block without validati...

8.2CVSS5.9AI score0.00618EPSS
Exploits1References2
OSV
OSV
added 2026/06/24 1:11 p.m.4 views

OESA-2026-2706 giflib security update

giflib is a library of gif images and provides utilities for processing images. Security Fixes: Buffer Overflow vulnerability in giflib v.5.2.2 allows a remote attacker to cause a denial of service via the EGifGCBToExtension overwriting an existing Graphic Control Extension block without validati...

8.2CVSS5.9AI score0.00618EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/06/22 12:0 a.m.7 views

Amazon Linux 2023 : giflib, giflib-devel, giflib-utils (ALAS2023-2026-1883)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1883 advisory. Buffer Overflow vulnerability in giflib v.5.2.2 allows a remote attacker to cause a denial of service via the EGifGCBToExtension overwriting an existing Graphic Control Extension block without validati...

8.2CVSS7.2AI score0.00618EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/06/15 12:0 a.m.31 views

CVE-2026-50873

An arbitrary file upload vulnerability in the attachment handling component of flatnotes v5.5.4 allows attackers to execute arbitrary code via uploading a crafted HTML or SVG file...

0.00441EPSS
Exploits0References1
OSV
OSV
added 2026/06/12 12:28 p.m.9 views

OESA-2026-2685 giflib security update

giflib is a library of gif images and provides utilities for processing images. Security Fixes: Buffer Overflow vulnerability in giflib v.5.2.2 allows a remote attacker to cause a denial of service via the EGifGCBToExtension overwriting an existing Graphic Control Extension block without validati...

8.2CVSS5.3AI score0.00618EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/06/08 10:54 a.m.10 views

CVE-2026-11569 Quay: quay: stored xss via filedrop svg upload

A flaw was found in Quay. The filedrop endpoint accepts any mime type without validation, allowing an authenticated user with repository write access to upload a malicious SVG file containing JavaScript. The file is stored and served inline through the CDN, enabling stored cross-site scripting wh...

5.4CVSS5.2AI score0.00138EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/05 7:28 p.m.9 views

CVE-2026-4054

Mattermost versions 11.5.x = 11.5.1, 10.11.x = 10.11.13, 11.4.x = 11.4.3 Fail to validate the response body of proxied images, which allows a remote attacker to enact client-side DoS via an SVG file served from an attacker-controlled origin under a non-SVG Content-Type header e.g. image/png...

6.5CVSS5.5AI score0.00242EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.21 views

PT-2026-46891

SVG files are in the allowed extensions whitelist and can be uploaded by any admin user via the media manager. There is zero SVG content sanitization anywhere in the upload pipeline. A malicious SVG with JavaScript onload, , executes in the context of the Shopware domain when accessed. The Proble...

4.9CVSS5.9AI score0.00039EPSS
Exploits0References5
Rosalinux
Rosalinux
added 2026/06/01 8:37 a.m.30 views

Advisory ROSA-SA-2026-3297

CVE-ID: CVE-2024-41817 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: The vulnerability in the AppImage version of ImageMagick relates to the use of an empty path during the installation of environment variables MAGICKCONFIGUREPATH and LDLIBRARYPATH. This allows attackers to execute arbitrary code by...

9.8CVSS6.5AI score0.04065EPSS
Exploits14
CVE
CVE
added 2026/05/27 2:26 p.m.25 views

CVE-2026-47119

CVE-2026-47119 concerns Agent Zero before version 1.15, which is affected by a stored XSS via the image_get API endpoint. The vulnerability arises when SVG files are served without proper headers (no Content-Security-Policy, X-Content-Type-Options, or Content-Disposition), allowing an attacker to...

6.1CVSS5.9AI score0.00236EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/25 7:27 p.m.15 views

EUVD-2026-31727

Roundcube Webmail 1.6.x before 1.6.16 and 1.7.x before 1.7 has insufficient HTML sanitization that could lead to Cascading Style Sheets CSS injection via an SVG document that has an animate element with the attributeName attribute...

7.2CVSS5.8AI score0.00388EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/22 5:55 p.m.7 views

CVE-2026-39970

TypeBot is a chatbot builder tool. Versions 3.15.2 and prior contain a critical stored XSS vulnerability in the app.typebot.io profile picture upload form. The application fails to sanitize or restrict SVG/XML-based uploads and directly renders them when accessed through the domain. By uploading ...

8.5CVSS6AI score0.00276EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/05/20 8:29 a.m.6 views

CLSA-2026-1779265764 giflib: Fix of CVE-2026-26740

CVE-2026-26740: fix heap OOB write when rewriting truncated GCE in EGifGCBToSavedExtension...

8.2CVSS5.8AI score0.00618EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/05/20 12:0 a.m.13 views

RHEL 8 : thunderbird (RHSA-2026:19466)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:19466 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Incorrect boundary conditions in the...

9.8CVSS6.1AI score0.04938EPSS
Exploits1References52
RedhatCVE
RedhatCVE
added 2026/05/19 1:58 a.m.11 views

CVE-2026-45314

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.3, the channel webhook create/update flow accepts arbitrary profileimageurl values, including data:image/svg+xml;base64,... payloads. The profile image endpoint then decodes and serves...

7.4CVSS6AI score0.00212EPSS
Exploits1References1
Rows per page
Query Builder