CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c. CVE-2020-10177 Note that Nessus relies on the presence of the package as reporte...

5.5CVSS6.7AI score0.00319EPSS

Exploits0References3

OSV•added 2024/03/06 11:7 a.m.•15 views

BIT-PILLOW-2020-10378

In libImaging/PcxDecode.c in Pillow before 7.1.0, an out-of-bounds read can occur when reading PCX files where state-shuffle is instructed to read beyond state-buffer...

5.5CVSS6.2AI score0.00319EPSS

Exploits0References9

OSV•added 2024/03/06 11:7 a.m.•17 views

BIT-PILLOW-2020-10379

In Pillow before 7.1.0, there are two Buffer Overflows in libImaging/TiffDecode.c...

7.8CVSS6.5AI score0.0036EPSS

Exploits0References8

OSV•added 2024/03/06 11:6 a.m.•19 views

BIT-PILLOW-2020-10994

In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multiple out-of-bounds reads via a crafted JP2 file...

5.5CVSS6.2AI score0.00424EPSS

Exploits0References10

OSV•added 2024/03/06 11:6 a.m.•19 views

BIT-PILLOW-2020-5310

libImaging/TiffDecode.c in Pillow before 6.2.2 has a TIFF decoding integer overflow, related to realloc...

8.8CVSS7.2AI score0.00608EPSS

Exploits0References6

Tenable Nessus•added 2023/11/06 12:0 a.m.•23 views

Rocky Linux 8 : python-pillow (RLSA-2020:3185)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2020:3185 advisory. - In libImaging/SgiRleDecode.c in Pillow through 7.0.0, a number of out-of-bounds reads exist in the parsing of SGI image files, a different issue than...

9.8CVSS6.9AI score0.01146EPSS

Exploits0References5

SUSE CVE•added 2023/02/15 4:3 a.m.•0 views

SUSE CVE-2020-5311

libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow...

8.8CVSS7.2AI score0.01146EPSS

Exploits0References5

SUSE CVE•added 2023/02/15 4:3 a.m.•1 views

SUSE CVE-2020-5313

libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow...

8.8CVSS7.2AI score0.00551EPSS

Exploits0References7

SUSE CVE•added 2023/02/15 4:3 a.m.•1 views

SUSE CVE-2020-5312

libImaging/PcxDecode.c in Pillow before 6.2.2 has a PCX P mode buffer overflow...

8.8CVSS7.2AI score0.01753EPSS

Exploits0References7

SUSE CVE•added 2023/02/15 4:0 a.m.•1 views

SUSE CVE-2020-10177

Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c...

5.5CVSS7.9AI score0.00319EPSS

Exploits0References7

SUSE CVE•added 2023/02/15 4:0 a.m.•2 views

SUSE CVE-2020-10994

In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multiple out-of-bounds reads via a crafted JP2 file...

6.5CVSS7.5AI score0.00424EPSS

Exploits0References7

Tenable Nessus•added 2022/09/01 12:0 a.m.•39 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-5.15.1)

The version of AOS installed on the remote host is prior to 5.15.1. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-5.15.1 advisory. - rtlp2pnoaie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel through 5.3.6 lacks a certain upper-bound check,...

9.8CVSS7.7AI score0.03942EPSS

Exploits4References12

OSV•added 2022/05/25 12:15 p.m.•24 views

CVE-2022-30595

libImaging/TgaRleDecode.c in Pillow 9.1.0 has a heap buffer overflow in the processing of invalid TGA image files...

9.8CVSS9.7AI score

Exploits0References2