CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2022-1484

Malicious code in bioql PyPI...

5.5CVSS6.5AI score0.00049EPSS

Exploits0References5

IBM Security Bulletins•added 2025/08/29 2:38 p.m.•5 views

Security Bulletin: A shortcoming in the HMEF package of poi-scratchpad (Apache POI) allows an attacker to cause an Out of Memory exception, which affects IBM watsonx.data

Summary A shortcoming in the HMEF package of poi-scratchpad Apache POI allows an attacker to cause an Out of Memory exception. This package is used to read TNEF files Microsoft Outlook and Microsoft Exchange Server. If an application uses poi-scratchpad to parse TNEF files and the application...

5.5CVSS7.3AI score0.00049EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/02/07 1:51 p.m.•66 views

Security Bulletin: Apache POI is vulnerable to a denial of service, caused by an out of memory exception flaw in the HMEF package(CVE-2022-26336)

Summary Apache POI is vulnerable to a denial of service, caused by an out of memory exception flaw in the HMEF package. By persuading a victim to open a specially-crafted TNEF file, a remote attacker could exploit this vulnerability to cause the server to crashCVE-2022-26336 Vulnerability Details...

5.5CVSS5.5AI score0.00049EPSS

Exploits0Affected Software1

RedHat Linux•added 2022/07/07 2:19 p.m.•0 views

poi-scratchpad: A carefully crafted TNEF file can cause an out of memory exception

A shortcoming in the HMEF package of poi-scratchpad Apache POI allows an attacker to cause an Out of Memory exception. This package is used to read TNEF files Microsoft Outlook and Microsoft Exchange Server. If an application uses poi-scratchpad to parse TNEF files and the application allows...

5.5CVSS7.3AI score0.00049EPSS

Exploits0References4

IBM Security Bulletins•added 2022/07/04 7:16 p.m.•31 views

Security Bulletin: A security vulnerability has been identified in Apache poi-scratchpad shipped with IBM Tivoli Netcool Impact (CVE-2022-26336)

Summary Apache poi-scratchpad is shipped with IBM Tivoli Netcool Impact. Information about a security vulnerability affecting Apache poi-scratchpad has been published in a security bulletin. Vulnerability Details CVEID: CVE-2022-26336 DESCRIPTION: Apache POI is vulnerable to a denial of service,...

5.5CVSS1.3AI score0.00049EPSS

Exploits0Affected Software1

RedhatCVE•added 2022/03/11 6:14 p.m.•48 views

CVE-2022-26336

5.5CVSS3.7AI score0.00049EPSS

Exploits0References3

OSV•added 2022/03/05 12:0 a.m.•1 views

GHSA-MQVP-7RRG-9JXC Improper Input Validation and Allocation of Resources Without Limits or Throttling in poi-scratchpad

5.5CVSS7AI score0.00049EPSS

Exploits0References3

Github Security Blog•added 2022/03/05 12:0 a.m.•169 views

Improper Input Validation and Allocation of Resources Without Limits or Throttling in poi-scratchpad

5.5CVSS3.5AI score0.00049EPSS

Exploits0References4Affected Software1

OSV•added 2022/03/04 4:15 p.m.•27 views

CVE-2022-26336

5.5CVSS5.2AI score

Exploits0References2

NVD•added 2022/03/04 4:15 p.m.•13 views

CVE-2022-26336

5.5CVSS0.00049EPSS

Exploits0References2

UbuntuCve•added 2022/03/04 4:15 p.m.•33 views

CVE-2022-26336

5.5CVSS6.8AI score0.00049EPSS

Exploits0References2

ATTACKERKB•added 2022/03/04 4:15 p.m.•1 views

CVE-2022-26336

5.5CVSS6.8AI score0.00049EPSS

Exploits0References3

CVE•added 2022/03/04 12:0 a.m.•202 views

CVE-2022-26336

CVE-2022-26336 affects the poi-scratchpad HMEF package in Apache POI used to read TNEF files. The issue can trigger an Out of Memory exception when parsing untrusted TNEF inputs, impacting poi-scratchpad versions up to 5.2.0. The publicly recommended remediation is to upgrade to poi-scratchpad 5....

5.5CVSS5.4AI score0.00049EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by