CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

OSV•added 2025/12/19 10:9 a.m.•2 views

CLSA-2025-1766135952 libpng: Fix of CVE-2025-64505

CVE-2025-64505: fix heap buffer over-read vulnerability in pngdoquantize function by validating palettelookup array bounds...

6.1CVSS6.2AI score0.00014EPSS

Exploits2References1

SUSE CVE•added 2023/02/15 4:43 a.m.•3 views

SUSE CVE-2017-10687

In LibSass 3.4.5, there is a heap-based buffer over-read in the function jsonmkstream in sasscontext.cpp. A crafted input will lead to a remote denial of service attack...

7.5CVSS7AI score0.00666EPSS

Exploits0References3

OSV•added 2022/11/07 12:15 a.m.•0 views

UBUNTU-CVE-2022-42905

In wolfSSL before 5.5.2, if callback functions are enabled via the WOLFSSLCALLBACKS flag, then a malicious TLS 1.3 client or network attacker can trigger a buffer over-read on the heap of 5 bytes. WOLFSSLCALLBACKS is only intended for debugging...

9.1CVSS6AI score0.06018EPSS

Exploits2References4

OSV•added 2022/05/18 11:15 a.m.•0 views

UBUNTU-CVE-2022-30976

GPAC 2.0.0 misuses a certain Unicode utf8wcslen renamed gfutf8wcslen function in utils/utf.c, resulting in a heap-based buffer over-read, as demonstrated by MP4Box...

7.1CVSS7.5AI score0.00239EPSS

Exploits1References4

OSV•added 2021/09/07 8:15 p.m.•0 views

UBUNTU-CVE-2020-19750

An issue was discovered in gpac 0.8.0. The strdup function in boxcodebase.c has a heap-based buffer over-read...

7.5CVSS6AI score0.00335EPSS

Exploits1References3

OSV•added 2021/04/21 6:15 p.m.•1 views

DEBIAN-CVE-2020-23928

An issue was discovered in gpac before 1.0.1. The abstboxread function in boxcodeadobe.c has a heap-based buffer over-read...

7.1CVSS7.7AI score0.00293EPSS

Exploits0References1

OSV•added 2020/01/21 11:15 p.m.•1 views

DEBIAN-CVE-2019-20387

repodataschema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input schema...

7.5CVSS7.8AI score0.0023EPSS

Exploits0References1

CNVD•added 2019/11/22 12:0 a.m.•1 views

Oniguruma Heap Buffer Over Read Vulnerability

Oniguruma is an open source regular expression library. A heap buffer over-read vulnerability exists in the 'gb18030mbcenclen' function of the gb18030.c file in versions 6.x prior to Oniguruma 6.9.4rc2. The vulnerability stems from a networked system or product performing operations in memory...

7.5CVSS7.9AI score0.00649EPSS

Exploits1References1

OSV•added 2019/02/27 2:29 p.m.•1 views

AZL-7167 CVE-2019-9210 affecting package advancecomp for versions less than 2.1-14

In AdvanceCOMP 2.1, pngcompress in pngex.cc in advpng has an integer overflow upon encountering an invalid PNG size, which results in an attempted memcpy to write into a buffer that is too small. There is also a heap-based buffer over-read...

7.8CVSS6.4AI score0.00312EPSS

Exploits1References1

CNVD•added 2018/05/25 12:0 a.m.•2 views

JerryScript Heap Buffer Over Read Vulnerability

JerryScript is a lightweight JavaScript engine designed to run on very constrained devices such as microcontrollers. A heap buffer overread vulnerability exists in the litreadcodeunitfromhex function in JerryScript 1.0 related to reparsecharclass in parser/regexp/re-parser.c. An attacker can...

9.8CVSS9.3AI score0.00376EPSS

Exploits1References1

OSV•added 2017/04/19 3:59 p.m.•1 views

ALPINE-CVE-2017-7960

The crinputnewfromuri function in cr-input.c in libcroco 0.6.11 and 0.6.12 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted CSS file...

5.5CVSS6.9AI score0.00393EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by