Lucene search
+L

408 matches found

osv
osv
added 2026/07/07 2:34 p.m.5 views

PYSEC-2026-1708 OpenStack Cinder, Glance, and Nova vulnerable to arbitrary file access

An issue was discovered in OpenStack Cinder through 24.0.0, Glance before 28.0.2, and Nova before 29.0.3. Arbitrary file access can occur via custom QCOW2 external data. By supplying a crafted QCOW2 image that references a specific data file path, an authenticated user may convince systems to...

7.1CVSS6.7AI score0.00835EPSS
Exploits0References17
cnnvd
cnnvd
added 2026/06/10 12:0 a.m.16 views

sharp 安全漏洞

Sharp is a personal development tool by Lovell, designed to convert large images in common formats into smaller, web-friendly JPEG, PNG, WebP, GIF, and AVIF images. Versions of Sharp prior to 9.22.0 contained a security vulnerability. This vulnerability stemmed from the general download endpoint...

7.7CVSS5.4AI score0.00262EPSS
Exploits0References1
euvd
euvd
added 2026/04/05 9:30 p.m.6 views

EUVD-2019-20050

AnyBurn 4.3 x86 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string to the image conversion function. Attackers can paste a large buffer into the source or destination image file fields and click Convert Now to...

6.8CVSS6AI score0.00189EPSS
Exploits1References4
nvd
nvd
added 2026/04/05 9:16 p.m.7 views

CVE-2019-25657

AnyBurn 4.3 x86 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string to the image conversion function. Attackers can paste a large buffer into the source or destination image file fields and click Convert Now to...

6.8CVSS0.00189EPSS
Exploits1References3
attackerkb
attackerkb
added 2026/04/05 8:45 p.m.5 views

CVE-2019-25657

AnyBurn 4.3 x86 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string to the image conversion function. Attackers can paste a large buffer into the source or destination image file fields and click Convert Now to...

6.8CVSS6AI score0.00189EPSS
Exploits1References3
vulnrichment
vulnrichment
added 2026/04/05 8:45 p.m.4 views

CVE-2019-25657 AnyBurn 4.3 x86 Denial of Service via Image Conversion

AnyBurn 4.3 x86 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string to the image conversion function. Attackers can paste a large buffer into the source or destination image file fields and click Convert Now to...

6.8CVSS6AI score0.00189EPSS
Exploits1References3
cvelist
cvelist
added 2026/04/05 8:45 p.m.23 views

CVE-2019-25657 AnyBurn 4.3 x86 Denial of Service via Image Conversion

AnyBurn 4.3 x86 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string to the image conversion function. Attackers can paste a large buffer into the source or destination image file fields and click Convert Now to...

6.8CVSS0.00189EPSS
Exploits1References3
cve
cve
added 2026/04/05 8:45 p.m.10 views

CVE-2019-25657

CVE-2019-25657 affects AnyBurn 4.3 x86. The vulnerability is a denial-of-service caused by an excessively long string in the image conversion function, which can crash the application if a large buffer is pasted into the source or destination image file fields and Convert Now is pressed. This is ...

6.8CVSS6AI score0.00189EPSS
Exploits1References3Affected Software1
ptsecurity
ptsecurity
added 2026/04/05 12:0 a.m.7 views

PT-2026-30466

AnyBurn 4.3 x86 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string to the image conversion function. Attackers can paste a large buffer into the source or destination image file fields and click Convert Now to...

6.8CVSS6AI score0.00189EPSS
Exploits1References4
cnnvd
cnnvd
added 2026/04/05 12:0 a.m.12 views

AnyBurn 安全漏洞

AnyBurn is a disc burning and image processing tool developed by AnyBurn Corporation. The AnyBurn 4.3 x86 version contains a security vulnerability. This vulnerability stems from a denial-of-service vulnerability in the image conversion function, which could allow local attackers to cause the...

6.8CVSS5.8AI score0.00189EPSS
Exploits1References3
cnnvd
cnnvd
added 2026/01/30 12:0 a.m.8 views

Active Storage security vulnerability

Active Storage is a plugin that allows for file uploads to various cloud storage services and attaches files to Active Record objects. There is a security vulnerability in Active Storage, which stems from the use of potentially insecure image conversion methods, potentially leading to command...

9.2CVSS6AI score0.02388EPSS
Exploits0References2
cvelist
cvelist
added 2026/01/23 2:28 p.m.35 views

CVE-2026-24530 WordPress WebP Conversion plugin <= 2.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in sheepfish WebP Conversion webp-conversion allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WebP Conversion: from n/a through = 2.2...

5.3CVSS0.00372EPSS
Exploits0References1
nessus
nessus
added 2025/11/20 12:0 a.m.10 views

TencentOS Server 4: openstack-glance (TSSA-2025:0076)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0076 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

6.5CVSS6.6AI score0.00835EPSS
Exploits0References2
fedora
fedora
added 2025/11/17 3:36 a.m.29 views

[SECURITY] Fedora 41 Update: xmedcon-0.25.3-1.fc41

This project stands for Medical Image Conversion and is released under the GNU's LGPL license. It bundles the C source code, a library, a flexible command-line utility and a graphical front-end based on the amazing Gtk+ toolkit. Its main purpose is image conversion while preserving valuable medic...

7.5CVSS4.8AI score0.00563EPSS
Exploits0
fedora
fedora
added 2025/11/17 2:59 a.m.11 views

[SECURITY] Fedora 42 Update: xmedcon-0.25.3-1.fc42

This project stands for Medical Image Conversion and is released under the GNU's LGPL license. It bundles the C source code, a library, a flexible command-line utility and a graphical front-end based on the amazing Gtk+ toolkit. Its main purpose is image conversion while preserving valuable medic...

7.5CVSS4.8AI score0.00563EPSS
Exploits0
fedora
fedora
added 2025/11/17 2:47 a.m.30 views

[SECURITY] Fedora 43 Update: xmedcon-0.25.3-1.fc43

This project stands for Medical Image Conversion and is released under the GNU's LGPL license. It bundles the C source code, a library, a flexible command-line utility and a graphical front-end based on the amazing Gtk+ toolkit. Its main purpose is image conversion while preserving valuable medic...

7.5CVSS4.8AI score0.00563EPSS
Exploits0
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-16674

Malware in sbrugna...

6.5CVSS7.6AI score0.10992EPSS
Exploits0References4
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-2896

Malware in sbrugna...

9.3CVSS9.1AI score0.06918EPSS
Exploits1References4
euvd
euvd
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-12183

Malware in sbrugna...

9.3CVSS8.5AI score0.14452EPSS
Exploits0References4
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2005-2978

Malware in sbrugna...

7.5CVSS6AI score0.04873EPSS
Exploits1References20
Rows per page
Query Builder