CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

Amazon Linux 2023 : heif-pixbuf-loader, libheif, libheif-devel (ALAS2023-2026-1814)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1814 advisory. libheif is a HEIF and AVIF file format decoder and encoder. Versions 1.21.2 and prior contain a heap- buffer-overflow write vulnerability in the grid tile compositing, allowing an attacker to...

8.8CVSS5.8AI score0.00047EPSS

Exploits1References8

Amazon•added 6 days ago•5 views

Important: libheif

Issue Overview: libheif is a HEIF and AVIF file format decoder and encoder. Versions 1.21.2 and prior contain a heap-buffer-overflow write vulnerability in the grid tile compositing, allowing an attacker to write 64 bytes of fully attacker-controlled data past the end of a chroma plane heap...

8.8CVSS5.5AI score0.00047EPSS

Exploits1

Tenable Nessus•added 2026/05/22 12:0 a.m.•11 views

Linux Distros Unpatched Vulnerability : CVE-2026-32741

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libheif is a HEIF and AVIF file format decoder and encoder. Versions 1.21.2 and below contain a heap buffer overflow in MaskImageCodec::decodemaskimage. When...

7.1CVSS5.9AI score0.00037EPSS

Exploits0References3

SUSE CVE•added 2026/05/21 2:29 a.m.•11 views

SUSE CVE-2026-32741

libheif is a HEIF and AVIF file format decoder and encoder. Versions 1.21.2 and below contain a heap buffer overflow in MaskImageCodec::decodemaskimage. When decoding a HEIF file containing a mask image mski, the function copies the full iloc extent data into a pixel buffer using memcpydst,...

6.1CVSS5.9AI score0.00037EPSS

Exploits0References3

RedhatCVE•added 2026/05/19 11:9 p.m.•8 views

CVE-2026-32741

A flaw was found in libheif, a library for decoding and encoding HEIF High Efficiency Image File Format and AVIF files. A remote attacker could exploit a heap buffer overflow vulnerability in the MaskImageCodec::decodemaskimage function by providing a specially crafted HEIF file containing a mask...

7.1CVSS6AI score0.00037EPSS

Exploits0References5

Snyk•added 2026/05/19 9:51 p.m.•5 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the decodemaskimage function. An attacker can cause a heap buffer overflow by providing a crafted HEIF file containing a mask image where the iloc extent exceeds the allocated pixel buffer, leading to...

7.1CVSS6AI score0.00037EPSS

Exploits0References2

OSV•added 2026/05/19 9:16 p.m.•6 views

DEBIAN-CVE-2026-32741

7.1CVSS5.9AI score0.00037EPSS

Exploits0References1

NVD•added 2026/05/19 9:16 p.m.•9 views

CVE-2026-32741

7.1CVSS0.00037EPSS

Exploits0References2

UbuntuCve•added 2026/05/19 9:16 p.m.•6 views

CVE-2026-32741

7.1CVSS5.9AI score0.00037EPSS

Exploits0References3

OSV•added 2026/05/19 9:16 p.m.•2 views

UBUNTU-CVE-2026-32741

7.1CVSS5.9AI score0.00037EPSS

Exploits0References4

ATTACKERKB•added 2026/05/19 7:57 p.m.•4 views

CVE-2026-32741

7.1CVSS5.9AI score0.00037EPSS

Exploits0References3Affected Software1

Cvelist•added 2026/05/19 7:57 p.m.•27 views

CVE-2026-32741 libheif has a heap buffer overflow in decode_mask_image()

7.1CVSS0.00037EPSS

Exploits0References2

EUVD•added 2026/05/19 7:57 p.m.•9 views

EUVD-2026-30982

7.1CVSS5.9AI score0.00037EPSS

Exploits0References2

Debian CVE•added 2026/05/19 7:57 p.m.•6 views

CVE-2026-32741

7.1CVSS5.9AI score0.00037EPSS

Exploits0

CVE•added 2026/05/19 7:57 p.m.•22 views

CVE-2026-32741

CVE-2026-32741 affects libheif 1.21.2 and earlier. The heap buffer overflow occurs in MaskImageCodec::decode_mask_image() when decoding a HEIF file containing a mask image; the function copies data.size() bytes into a pixel buffer sized by image dimensions using a single memcpy without an upper-b...

7.1CVSS5.9AI score0.00037EPSS

Exploits0References2

CNNVD•added 2026/05/19 12:0 a.m.•5 views

libheif 安全漏洞

LibHEIF is a open-source decoder and encoder for the ISO/IEC 23008-12:2017 HEIF file format developed by Struktur. Versions of LibHEIF prior to 1.21.2 contain security vulnerabilities. These vulnerabilities stem from a heap buffer overflow in the MaskImageCodec::decodemaskimage function, where no...

7.1CVSS6AI score0.00037EPSS

Exploits0References2

Tenable Nessus•added 2025/08/27 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2018-4190

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTun...

8.8CVSS7.8AI score0.02751EPSS

Exploits0References2

SUSE CVE•added 2023/02/15 4:32 a.m.•1 views

SUSE CVE-2018-4190

An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. The issue involves the "WebKit" component. It allows remote...

8.8CVSS5.6AI score0.02751EPSS

Exploits0References7

OSV•added 2018/06/08 6:29 p.m.•1 views

DEBIAN-CVE-2018-4190

8.8CVSS8AI score0.02751EPSS

Exploits0References1

Cvelist•added 2018/06/08 6:0 p.m.•17 views

CVE-2018-4190

7.6AI score0.02751EPSS

Exploits0References8

Rows per page