Lucene search
K

44 matches found

Huntr
Huntr
added 2026/03/13 1:57 a.m.9 views

model.weights.h5: h5py.ExternalLink at Group level silently followed during load_model(), bypassing CVE-2025-9905 fix — information disclosure from arbitrary HDF5 files

Keras 3.x introduced a fix for CVE-2025-9905 by checking dataset.external in H5IOStore.verifydataset. This check blocks datasets whose raw bytes are stored in external files via the HDF5 "External Data Storage" mechanism. However, HDF5 supports a second, unrelated external-reference mechanism:...

7.3CVSS7.5AI score0.00205EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2025/12/22 12:43 a.m.6 views

hdf5: HDF5 heap-based overflow

A heap-based buffer overflow was found in HDF5. This flaw exists in the H5Faddrdecodelen function of the /hdf5/src/H5Fint.c file and may be triggered by input manipulation to the function. Local access is required to exploit this flaw...

7.8CVSS5.8AI score0.00303EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-9188

Malware in sbrugna...

6.5CVSS7.8AI score0.01312EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-17437

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Memory leak in the H5Odtypedecodehelper function in H5Odtype.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service memory...

6.5CVSS6.9AI score0.01494EPSS
Exploits1References2
CVE
CVE
added 2025/03/10 2:0 p.m.117 views

CVE-2025-2153

CVE-2025-2153 impacts HDF5 1.14.6, specifically the H5SM_delete function in H5SM.c of the h5 File Handler. The vulnerability is a heap-based buffer overflow that can be triggered remotely; exploitation is described as difficult and is publicly disclosed. Connected sources confirm this as a critic...

8.1CVSS7.3AI score0.00462EPSS
Exploits1References5Affected Software1
Prion
Prion
added 2019/02/17 6:29 a.m.14 views

Buffer overflow

A buffer overflow in H5Olayoutencode in H5Olayout.c in the HDF HDF5 through 1.10.4 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while repacking an HDF5 file, aka "Invalid write of size 2."...

4.3CVSS6.3AI score0.01348EPSS
Exploits1References1Affected Software1
UbuntuCve
UbuntuCve
added 2019/02/17 6:29 a.m.19 views

CVE-2019-8396

A buffer overflow in H5Olayoutencode in H5Olayout.c in the HDF HDF5 through 1.10.4 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while repacking an HDF5 file, aka "Invalid write of size 2."...

6.5CVSS7AI score0.01348EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2018/12/20 12:0 a.m.8 views

The vulnerability of the ReadGifImageDesc() function (gifread.c) in the HDF5 library, which allows a hacker to cause a service failure

The vulnerability of the ReadGifImageDesc function in the HDF5 library arises from the occurrence of operations outside the buffer’s boundaries in memory. Exploiting this vulnerability could allow a malicious actor to cause service interruptions by using a specially crafted HDF5 file...

6.5CVSS7AI score0.01272EPSS
Exploits1References5Affected Software1
RedhatCVE
RedhatCVE
added 2018/09/28 7:52 p.m.32 views

CVE-2018-17432

A NULL pointer dereference in H5Osdspaceencode in H5Osdspace.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file...

6.5CVSS4.6AI score0.01312EPSS
Exploits1References2
NVD
NVD
added 2018/09/24 2:29 p.m.26 views

CVE-2018-17435

A heap-based buffer over-read in H5Oattrdecode in H5Oattr.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while converting an HDF file to GIF file...

6.5CVSS5.5AI score0.01312EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2018/09/24 2:29 p.m.30 views

CVE-2018-17436

ReadCode in decompress.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service invalid write access via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file...

6.5CVSS6.9AI score0.01312EPSS
Exploits1References2
OSV
OSV
added 2018/09/24 2:29 p.m.3 views

UBUNTU-CVE-2018-17437

Memory leak in the H5Odtypedecodehelper function in H5Odtype.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service memory consumption via a crafted HDF5 file...

6.5CVSS6.9AI score0.01494EPSS
Exploits1References3
OSV
OSV
added 2018/09/24 2:29 p.m.22 views

CVE-2018-17433

A heap-based buffer overflow in ReadGifImageDesc in gifread.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file...

6.5CVSS6.9AI score
Exploits0References1
NVD
NVD
added 2018/09/24 2:29 p.m.14 views

CVE-2018-17432

A NULL pointer dereference in H5Osdspaceencode in H5Osdspace.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file...

6.5CVSS5.3AI score0.01312EPSS
Exploits1References1
Cvelist
Cvelist
added 2018/09/24 2:0 p.m.28 views

CVE-2018-17435

A heap-based buffer over-read in H5Oattrdecode in H5Oattr.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while converting an HDF file to GIF file...

5.5AI score0.01312EPSS
Exploits1References1
CVE
CVE
added 2018/09/24 2:0 p.m.69 views

CVE-2018-17433

CVE-2018-17433 is a heap-based buffer overflow in ReadGifImageDesc() (gifread.c) of the HDF5 library up to 1.10.3, enabling a denial of service via a crafted HDF5 file when converting a GIF to HDF. The connected OSV/Nessus entries corroborate the vulnerability and show that advisories (e.g., SUSE...

6.5CVSS5.8AI score0.01272EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2018/09/24 2:0 p.m.23 views

CVE-2018-17433

A heap-based buffer overflow in ReadGifImageDesc in gifread.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file...

5.6AI score0.01272EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2018/09/24 2:0 p.m.28 views

CVE-2018-17433

A heap-based buffer overflow in ReadGifImageDesc in gifread.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file...

6.5CVSS7.2AI score0.01272EPSS
Exploits1
AlpineLinux
AlpineLinux
added 2018/09/24 2:0 p.m.30 views

CVE-2018-17432

A NULL pointer dereference in H5Osdspaceencode in H5Osdspace.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service via a crafted HDF5 file...

6.5CVSS5.8AI score0.01312EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2017/12/12 10:20 a.m.31 views

CVE-2017-17505

In HDF5 1.10.1, there is a NULL pointer dereference in the function H5Oplinedecode in the H5Opline.c file in libhdf5.a. For example, h5dump would crash when someone opens a crafted hdf5 file...

6.5CVSS2.5AI score0.01218EPSS
Exploits0References1
Rows per page
Query Builder