Lucene search
K

19327 matches found

NVD
NVD
added 2026/07/01 7:16 p.m.7 views

CVE-2026-55597

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-26, an incorrect handling of arguments can cause a heap buffer over-write in the JP2 encoder. This issue has been fixed in version7.1.2-26...

5.5CVSS0.00103EPSS
Exploits0References1
NVD
NVD
added 2026/07/01 7:16 p.m.6 views

CVE-2026-55577

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-51 and 7.1.2-26, a heap buffer overflow occurs in the MVG decoder that could result in an out of bounds write when processing a crafted image. This issue has been fixed in...

5.9CVSS0.00226EPSS
Exploits0References1
CVE
CVE
added 2026/07/01 7:3 p.m.56 views

CVE-2026-55597

CVE-2026-55597 affects ImageMagick prior to 7.1.2-26, where incorrect handling of arguments can cause a heap buffer overwrite in the JP2 encoder. The issue is fixed in 7.1.2-26. This can lead to memory corruption in the JP2 encoding path; upgrading to the fixed release is the advised remediation.

5.5CVSS5.9AI score0.00103EPSS
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
added 2026/07/01 12:19 p.m.6 views

glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

A flaw was found in glibc GNU C Library. This vulnerability occurs when an application uses the scanf family of functions with a %mc format specifier, which is used for dynamically allocating memory for character input, and provides an explicit width greater than 1024. This specific combination c...

9.8CVSS5.9AI score0.00451EPSS
Exploits1References7
OSV
OSV
added 2026/07/01 12:16 a.m.3 views

UBUNTU-CVE-2026-54896

Oj Optimized JSON is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.2, when in object mode, Oj.dump is vulnerable to a heap buffer overflow when serializing Exception objects with a large :indent value. The serializer allocates a buffer sized for the object'...

2.1CVSS6AI score0.00119EPSS
Exploits0References3
CVE
CVE
added 2026/06/30 10:8 p.m.10 views

CVE-2026-56361

ImageMagick before 7.1.2-19 contains an off-by-one error in morphology validation that allows out-of-bounds heap buffer reads. The vulnerability can be triggered by incorrect morphology parameters, causing heap buffer overflow and single-pixel memory access violations. Documented across multiple ...

7.1CVSS6AI score0.00128EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/06/30 9:10 a.m.5 views

SUSE-SU-2026:2696-1 Security update for 7zip

This update for 7zip fixes the following issues Update to 26.01: - CVE-2026-48092: Information disclosure in 32-bit builds due to heap memory disclosure bsc1267858. - CVE-2026-48095: Heap buffer overflow via NTFS compressed stream buffer under-allocation bsc1267421. - CVE-2026-48101: Information...

8.8CVSS6.1AI score0.00938EPSS
Exploits8References17
EUVD
EUVD
added 2026/06/30 12:31 a.m.5 views

EUVD-2026-40244

A heap buffer overflow in the TS7Worker::PerformFunctionWrite function /core/s7server.cpp of snap7 v1.4.3 allows attackers to cause a Denial of Service DoS via a crafted packet...

6.5CVSS6AI score0.00303EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/06/30 12:6 a.m.6 views

glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

A flaw was found in glibc GNU C Library. This vulnerability occurs when an application uses the scanf family of functions with a %mc format specifier, which is used for dynamically allocating memory for character input, and provides an explicit width greater than 1024. This specific combination c...

9.8CVSS5.9AI score0.00451EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2026/06/30 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-6094

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap buffer overread in wcPKCS7DecodeEnvelopedData when parsing crafted PKCS7 EnvelopedData. This could theoretically be triggered by attacker-supplied data...

9.1CVSS6.2AI score0.00294EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.7 views

PT-2026-54075

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 150.0.7871.47 Description A heap buffer overflow exists in the Chromecast component. A remote attacker who has already compromised the renderer process can potentially achieve a sandbox escape by inducing the...

9.6CVSS6.1AI score0.00413EPSS
Exploits0References442
Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.6 views

PT-2026-54020

Name of the Vulnerable Software and Affected Versions Ruby JSON versions 2.9.0 through 2.19.8 Description A heap buffer overflow occurs when the JSON generator processes an oversized streamed object. Specifically, when streaming to an IO, the JSON.dumpobj, io and JSON::Stategenerateobj, io...

3.7CVSS6.2AI score0.00301EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/06/29 9:25 p.m.5 views

Moderate: Red Hat Security Advisory: glibc security update

An update for glibc is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

9.8CVSS5.8AI score0.00451EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2026/06/29 8:26 p.m.5 views

glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

A flaw was found in glibc GNU C Library. This vulnerability occurs when an application uses the scanf family of functions with a %mc format specifier, which is used for dynamically allocating memory for character input, and provides an explicit width greater than 1024. This specific combination c...

9.8CVSS5.9AI score0.00451EPSS
Exploits1References7
Cvelist
Cvelist
added 2026/06/29 4:45 p.m.42 views

CVE-2026-13590 seladb PcapPlusPlus Modbus Protocol ModbusLayer.h getLength heap-based overflow

A security flaw has been discovered in seladb PcapPlusPlus 25.05. This impacts the function pcpp::ModbusLayer::getLength in the library Packet++/header/ModbusLayer.h of the component Modbus Protocol Handler. The manipulation of the argument length results in heap-based buffer overflow. The attack...

6.3CVSS0.00394EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2026/06/29 3:32 p.m.5 views

Moderate: Red Hat Security Advisory: coreutils security update

An update for coreutils is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

4.4CVSS5.8AI score0.00224EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/06/29 10:3 a.m.8 views

ImageMagick: ImageMagick: Heap buffer over-write via `magick -distribute-cache` service connection

A flaw was found in ImageMagick, a free and open-source software used for editing and manipulating digital images. A remote attacker, by connecting to a magick -distribute-cache service, can trigger a heap buffer over-write in the server process. This vulnerability can lead to a denial of service...

4.1CVSS5.9AI score0.00092EPSS
Exploits0References5
CVE
CVE
added 2026/06/29 12:0 a.m.10 views

CVE-2026-51218

The CVE-2026-51218 entry concerns snap7 v1.4.3 and a heap buffer overflow in TS7Worker::PerformFunctionWrite() located in /core/s7_server.cpp. Attackers can cause a Denial of Service by sending a crafted packet. Affected component is the write function within the S7 server implementation; impact ...

6.5CVSS6AI score0.00303EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/29 12:0 a.m.21 views

CVE-2026-51219

A heap buffer overflow in the HighPriorityASDUQueuehasUnconfirmedIMessages function of lib60870 v2.3.3 to v2.3.6 allows attackers to cause a Denial of Service DoS via a crafted payload...

0.00348EPSS
Exploits0References3
CVE
CVE
added 2026/06/29 12:0 a.m.9 views

CVE-2026-51219

CVE-2026-51219 affects lib60870 (versions 2.3.3–2.3.6) and arises from a heap buffer overflow in HighPriorityASDUQueue_hasUnconfirmedIMessages. The issue can allow a Denial of Service via a crafted payload. The connected documents identify the affected component and function, and specify the vuln...

6.5CVSS6AI score0.00348EPSS
Exploits0References3
Rows per page
Query Builder