Lucene search
K

17 matches found

EUVD
EUVD
added 2026/06/13 12:34 a.m.10 views

EUVD-2026-36631

Heap buffer out-of-bounds write vulnerability in Avira Antivirus engine when scanning a malformed POSIX tar archive may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before...

7.8CVSS5.6AI score0.00122EPSS
Exploits0References2
NVD
NVD
added 2026/06/12 11:16 p.m.13 views

CVE-2026-6676

Heap buffer out-of-bounds write vulnerability in Avira Antivirus engine when scanning a malformed POSIX tar archive may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before...

7.8CVSS0.00122EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/12 10:16 p.m.7 views

CVE-2026-6676 Avira antivirus engine heap buffer OOB write when scanning a malformed POSIX tar archive

Heap buffer out-of-bounds write vulnerability in Avira Antivirus engine when scanning a malformed POSIX tar archive may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before...

7.8CVSS5.7AI score0.00122EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/12 10:16 p.m.30 views

CVE-2026-6676 Avira antivirus engine heap buffer OOB write when scanning a malformed POSIX tar archive

Heap buffer out-of-bounds write vulnerability in Avira Antivirus engine when scanning a malformed POSIX tar archive may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before...

7.8CVSS0.00122EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/12 12:0 a.m.13 views

PT-2026-49050

Name of the Vulnerable Software and Affected Versions Avira Antivirus versions prior to 8.3.27.12 Description A heap buffer out-of-bounds write occurs in the Avira Antivirus engine when scanning a malformed POSIX tar archive. This flaw may allow local execution of code or a denial-of-service of t...

7.8CVSS5.7AI score0.00122EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-2965

Malware in sbrugna...

7.8CVSS6.4AI score0.03438EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-0294

Malicious code in bioql PyPI...

7.5CVSS6.5AI score0.00636EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2025/09/04 1:7 a.m.4 views

Apache Commons Compress: Denial of service via CPU consumption for malformed TAR file

...

5.5CVSS7AI score0.00489EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/05 11:13 a.m.8 views

CVE-2024-21651

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. A user able to attach a file to a page can post a malformed TAR file by manipulating file modification times headers, which when parsed by Tika, could cause a denial of service issue via CPU...

7.5CVSS6.6AI score0.00636EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2024/07/01 8:20 p.m.34 views

CVE-2023-42503

A flaw was found in Apache Commons Compress, where it would permit the creation of a malformed TAR file by manipulating file modification time headers. This issue can lead to excessive CPU consumption and a denial of service, affecting the availability...

5.5CVSS5.4AI score0.00489EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2024/01/08 4:39 p.m.28 views

XWiki vulnerable to Denial of Service attack through attachments

Impact A user able to attach a file to a page can post a malformed TAR file by manipulating file modification times headers, which when parsed by Tika, could cause a denial of service issue via CPU consumption. Patches This vulnerability has been patched in XWiki 14.10.18, 15.5.3 and 15.8 RC1...

7.5CVSS6.9AI score0.00636EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2024/01/08 12:0 a.m.7 views

PT-2024-18999 · Xwiki +1 · Xwiki Platform +2

Name of the Vulnerable Software and Affected Versions: XWiki Platform versions prior to 14.10.18 XWiki Platform versions prior to 15.5.3 XWiki Platform versions prior to 15.8 RC1 Description: A user able to attach a file to a page can post a malformed TAR file by manipulating file modification...

7.5CVSS6.3AI score0.00636EPSS
Exploits0References12
Github Security Blog
Github Security Blog
added 2023/09/14 9:30 a.m.39 views

Apache Commons Compress denial of service vulnerability

Improper Input Validation, Uncontrolled Resource Consumption vulnerability in Apache Commons Compress in TAR parsing.This issue affects Apache Commons Compress: from 1.22 before 1.24.0. Users are recommended to upgrade to version 1.24.0, which fixes the issue. A third party can create a malformed...

5.5CVSS6.6AI score0.00489EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2023/09/14 7:45 a.m.29 views

CVE-2023-42503 Apache Commons Compress: Denial of service via CPU consumption for malformed TAR file

Improper Input Validation, Uncontrolled Resource Consumption vulnerability in Apache Commons Compress in TAR parsing.This issue affects Apache Commons Compress: from 1.22 before 1.24.0. Users are recommended to upgrade to version 1.24.0, which fixes the issue. A third party can create a malformed...

6.7AI score0.00489EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2023/09/14 12:0 a.m.63 views

CVE-2023-42503

Improper Input Validation, Uncontrolled Resource Consumption vulnerability in Apache Commons Compress in TAR parsing.This issue affects Apache Commons Compress: from 1.22 before 1.24.0. Users are recommended to upgrade to version 1.24.0, which fixes the issue. A third party can create a malformed...

5.5CVSS6.8AI score0.00489EPSS
Exploits0References1
Cvelist
Cvelist
added 2004/09/01 4:0 a.m.22 views

CVE-2002-1109

securetar, as used in AMaViS shell script 0.2.1 and earlier, allows users to cause a denial of service CPU consumption via a malformed TAR file, possibly via an incorrect file size parameter...

6.5AI score0.00357EPSS
Exploits0References3
NVD
NVD
added 2002/10/04 4:0 a.m.12 views

CVE-2002-1109

securetar, as used in AMaViS shell script 0.2.1 and earlier, allows users to cause a denial of service CPU consumption via a malformed TAR file, possibly via an incorrect file size parameter...

2.1CVSS6.5AI score0.00357EPSS
Exploits0References3
Rows per page
Query Builder