CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

441 matches found

CNNVD•added 2026/02/21 12:0 a.m.•4 views

SAIL 安全漏洞

SAIL is an open-source image decoding library developed by SAIL. SAIL has a security vulnerability that stems from the XWD parser’s use of the bytesperline value. This value is read directly from the file and used as the reading size, but it is not compared with the actual size of the target...

9.8CVSS6AI score0.00071EPSS

Exploits1References1

Packet Storm•added 2026/02/18 12:0 a.m.•123 views

📄 Samsung Malformed DNG ColorMatrix2 Out-Of-Bounds Read

A memory safety vulnerability was identified in Samsung’s image decoding library libimagecodec.quram.so, affecting the handling of DNG Digital Negative image files. The issue stems from improper bounds validation when parsing the ColorMatrix2 0xC622 tag within DNG metadata. By supplying a crafted...

9.1CVSS5.5AI score0.00024EPSS

Exploits2

Fedora•added 2026/02/11 12:59 a.m.•3 views

[SECURITY] Fedora 42 Update: glycin-1.2.3-6.fc42

Sandboxed and extendable image decoding...

7.5CVSS5.4AI score0.0004EPSS

Exploits1

Fedora•added 2026/02/10 1:34 a.m.•4 views

[SECURITY] Fedora 43 Update: glycin-2.0.5-4.fc43

Sandboxed and extendable image decoding...

7.5CVSS5.4AI score0.0004EPSS

Exploits1

RedhatCVE•added 2026/01/28 9:17 a.m.•2 views

CVE-2026-24823

Out-of-bounds Write, Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in FASTSHIFT X-TRACK Software/X-Track/USER/App/Utils/lvimgpng/PNGdec/src modules. This vulnerability is associated with program files inflate.C. This issue affects X-TRACK: through v2.7...

10CVSS5.9AI score0.00082EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:44 a.m.•6 views

CVE-2022-23584

Tensorflow is an Open Source Machine Learning Framework. A malicious user can cause a use after free behavior when decoding PNG images. After png::CommonFreeDecode gets called, the values of decode.width and decode.height are in an unspecified state. The fix will be included in TensorFlow 2.8.0. ...

7.6CVSS6.7AI score0.00252EPSS

Exploits1References1

Packet Storm•added 2025/12/04 12:0 a.m.•244 views

📄 Samsung QuramDng Out-Of-Bounds Write

Samsung QuramDng has an invalid LossyJpeg component assumption that leads to an out-of-bounds write. BACKGROUND Samsung Android uses an internal DNG decoding library, QuramDng in libimagecodec.quram.so, to decode images in com.samsung.ipservice and com.samsung.gallery3d. Samsung Gallery will deco...

10CVSS6.9AI score0.04417EPSS

Exploits9

GithubExploit•added 2025/11/25 11:34 p.m.•140 views

Exploit for Use of Uninitialized Resource in Microsoft

Proof-of-Concept exploit for the Untrusted Pointer Dereferenc...

9.8CVSS8.1AI score0.11243EPSS

Exploits6

EUVD•added 2025/10/22 9:36 p.m.•2 views

EUVD-2025-35625

pypdf is a free and open-source pure-python PDF library. Prior to version 6.1.3, an attacker who uses this vulnerability can craft a PDF which leads to an infinite loop. This requires parsing the content stream of a page which has an inline image using the DCTDecode filter. This has been fixed in...

8.7CVSS6.3AI score0.00051EPSS

Exploits0References5

RedhatCVE•added 2025/10/11 7:23 a.m.•2 views

CVE-2025-21052

Out-of-bounds write under specific condition in the pre-processing of JPEG decoding in libpadm.so prior to SMR Oct-2025 Release 1 allows local attackers to cause memory corruption...

4CVSS6.5AI score0.0002EPSS

Exploits0References1

RedhatCVE•added 2025/10/11 7:23 a.m.•1 views

CVE-2025-21051

Out-of-bounds write in the pre-processing of JPEG decoding in libpadm.so prior to SMR Oct-2025 Release 1 allows local attackers to write out-of-bounds memory...

4CVSS6.5AI score0.00017EPSS

Exploits0References1

RedhatCVE•added 2025/10/11 7:23 a.m.•1 views

CVE-2025-21053

Out-of-bounds write in the parsing header for JPEG decoding in libpadm.so prior to SMR Oct-2025 Release 1 allows local attackers to cause memory corruption...

4CVSS6.5AI score0.0002EPSS

Exploits0References1

NVD•added 2025/10/10 7:15 a.m.•4 views

CVE-2025-21052

Out-of-bounds write under specific condition in the pre-processing of JPEG decoding in libpadm.so prior to SMR Oct-2025 Release 1 allows local attackers to cause memory corruption...

7.8CVSS0.0002EPSS

Exploits0References1

EUVD•added 2025/10/10 6:33 a.m.•1 views

EUVD-2025-33678

Out-of-bounds read in the parsing header for JPEG decoding in libpadm.so prior to SMR Oct-2025 Release 1 allows local attackers to potentially access out-of-bounds memory...

4CVSS6AI score0.00018EPSS

Exploits0References2

EUVD•added 2025/10/10 6:33 a.m.•2 views

EUVD-2025-33680

Out-of-bounds write under specific condition in the pre-processing of JPEG decoding in libpadm.so prior to SMR Oct-2025 Release 1 allows local attackers to cause memory corruption...

4CVSS6AI score0.0002EPSS

Exploits0References2

Positive Technologies•added 2025/10/10 12:0 a.m.•2 views

PT-2025-41514

Name of the Vulnerable Software and Affected Versions libpadm.so versions prior to SMR Oct-2025 Release 1 Description An out-of-bounds write exists in the parsing header for JPEG decoding. This issue can lead to memory corruption for local attackers. The vulnerable component is libpadm.so...

4CVSS6.6AI score0.0002EPSS

Exploits0References5

CNNVD•added 2025/10/10 12:0 a.m.•1 views

SAMSUNG Mobile devices 安全漏洞

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices versions prior to SMR Oct-2025 Release 1, which originates from an out-of-bounds write in JP...

7.8CVSS6.7AI score0.00017EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-10378

Malware in sbrugna...

6.5CVSS7.1AI score0.01771EPSS

Exploits1References10

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2015-1368

Malware in sbrugna...

7.5CVSS9.3AI score0.01018EPSS

Exploits0References13