Lucene search
K

44 matches found

EUVD
EUVD
added 2026/06/30 6:48 p.m.7 views

EUVD-2025-31200

Open Babel has Use-after-free in GAMESS GAMESSOutputFormat::ReadMolecule...

7.8CVSS6.3AI score0.00196EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2026/05/24 12:0 a.m.13 views

PT-2026-45893

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=515663946 Crash type: Container-overflow READ 1 Crash state: OpenBabel::MDLFormat::ReadV3000Block OpenBabel::MDLFormat::ReadMolecule OpenBabel::OBConversion::Read...

5.8AI score
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/02/04 3:15 a.m.6 views

CVE-2025-70560

Boltz 2.0.0 contains an insecure deserialization vulnerability in its molecule loading functionality. The application uses Python pickle to deserialize molecule data files without validation. An attacker with the ability to place a malicious pickle file in a directory processed by boltz can achie...

8.4CVSS6.3AI score0.00143EPSS
Exploits0References1
OSV
OSV
added 2026/02/03 6:30 p.m.4 views

GHSA-FJM6-8XP2-4FWC Boltz contains an insecure deserialization vulnerability in its molecule loading functionality

Boltz 2.0.0 contains an insecure deserialization vulnerability in its molecule loading functionality. The application uses Python pickle to deserialize molecule data files without validation. An attacker with the ability to place a malicious pickle file in a directory processed by boltz can achie...

8.4CVSS6.4AI score0.00143EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/02/03 6:30 p.m.10 views

Boltz contains an insecure deserialization vulnerability in its molecule loading functionality

Boltz 2.0.0 contains an insecure deserialization vulnerability in its molecule loading functionality. The application uses Python pickle to deserialize molecule data files without validation. An attacker with the ability to place a malicious pickle file in a directory processed by boltz can achie...

8.4CVSS6.4AI score0.00143EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2026/02/03 6:16 p.m.7 views

CVE-2025-70560

Boltz 2.0.0 contains an insecure deserialization vulnerability in its molecule loading functionality. The application uses Python pickle to deserialize molecule data files without validation. An attacker with the ability to place a malicious pickle file in a directory processed by boltz can achie...

8.4CVSS0.00143EPSS
Exploits0References3
EUVD
EUVD
added 2026/02/03 12:0 a.m.5 views

EUVD-2025-206702

Boltz 2.0.0 contains an insecure deserialization vulnerability in its molecule loading functionality. The application uses Python pickle to deserialize molecule data files without validation. An attacker with the ability to place a malicious pickle file in a directory processed by boltz can achie...

8.4CVSS6.4AI score0.00143EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/03 12:0 a.m.4 views

CVE-2025-70560

Boltz 2.0.0 contains an insecure deserialization vulnerability in its molecule loading functionality. The application uses Python pickle to deserialize molecule data files without validation. An attacker with the ability to place a malicious pickle file in a directory processed by boltz can achie...

6.4AI score0.00143EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.7 views

PT-2026-6414

Boltz 2.0.0 contains an insecure deserialization vulnerability in its molecule loading functionality. The application uses Python pickle to deserialize molecule data files without validation. An attacker with the ability to place a malicious pickle file in a directory processed by boltz can achie...

8.4CVSS6.5AI score0.00143EPSS
Exploits0References5
CVE
CVE
added 2026/02/03 12:0 a.m.19 views

CVE-2025-70560

Boltz 2.0.0 is affected by an insecure deserialization vulnerability in the molecule loading code path. The software uses Python pickle to deserialize molecule data files without validation, allowing an attacker who can place a crafted pickle in a directory processed by Boltz to achieve arbitrary...

8.4CVSS6.4AI score0.00143EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/02/03 12:0 a.m.28 views

CVE-2025-70560

Boltz 2.0.0 contains an insecure deserialization vulnerability in its molecule loading functionality. The application uses Python pickle to deserialize molecule data files without validation. An attacker with the ability to place a malicious pickle file in a directory processed by boltz can achie...

0.00143EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.7 views

PT-2026-5985

Name of the Vulnerable Software and Affected Versions Boltz version 2.0.0 Description The software contains an insecure deserialization issue in its molecule loading functionality. It utilizes Python pickle to deserialize molecule data files without proper validation. An attacker capable of placi...

8.4CVSS6.3AI score0.00143EPSS
Exploits0References12
ATTACKERKB
ATTACKERKB
added 2026/02/03 12:0 a.m.5 views

CVE-2025-70560

Boltz 2.0.0 contains an insecure deserialization vulnerability in its molecule loading functionality. The application uses Python pickle to deserialize molecule data files without validation. An attacker with the ability to place a malicious pickle file in a directory processed by boltz can achie...

6.4AI score0.00143EPSS
Exploits0References3
OSV
OSV
added 2026/02/03 12:0 a.m.5 views

CVE-2025-70560

Boltz 2.0.0 contains an insecure deserialization vulnerability in its molecule loading functionality. The application uses Python pickle to deserialize molecule data files without validation. An attacker with the ability to place a malicious pickle file in a directory processed by boltz can achie...

8.4CVSS6.5AI score0.00143EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-0483

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.01318EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/09/26 3:32 a.m.13 views

CVE-2025-11000 Open Babel PQSformat.cpp ReadMolecule null pointer dereference

A vulnerability was determined in Open Babel up to 3.1.1. This affects the function PQSFormat::ReadMolecule of the file /src/formats/PQSformat.cpp. This manipulation causes null pointer dereference. The attack is restricted to local execution. The exploit has been publicly disclosed and may be...

4.8CVSS0.00189EPSS
Exploits1References5
OSV
OSV
added 2025/09/26 2:15 a.m.6 views

UBUNTU-CVE-2025-10994

A weakness has been identified in Open Babel up to 3.1.1. This affects the function GAMESSOutputFormat::ReadMolecule of the file gamessformat.cpp. This manipulation causes use after free. It is possible to launch the attack on the local host. The exploit has been made available to the public and...

7.8CVSS5.7AI score0.00196EPSS
Exploits1References7
Cvelist
Cvelist
added 2025/09/26 2:2 a.m.14 views

CVE-2025-10994 Open Babel gamessformat.cpp ReadMolecule use after free

A weakness has been identified in Open Babel up to 3.1.1. This affects the function GAMESSOutputFormat::ReadMolecule of the file gamessformat.cpp. This manipulation causes use after free. It is possible to launch the attack on the local host. The exploit has been made available to the public and...

5.3CVSS0.00196EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/09/26 12:0 a.m.6 views

openbabel 资源管理错误漏洞

openbabel is a chemistry toolkit software from Open Babel open source. A resource management error vulnerability exists in openbabel 3.1.1 and earlier versions, which stems from a post-release reuse issue in the GAMESSOutputFormat::ReadMolecule function in the file gamessformat.cpp, which could...

7.8CVSS5.1AI score0.00196EPSS
Exploits1References5
OSV
OSV
added 2025/08/14 6:52 p.m.4 views

MAL-2025-23211 Malicious code in infinity_jbre7_244gf_molecule (npm)

The package infinityjbre7244gfmolecule was found to contain malicious code...

7.2AI score
Exploits0
Rows per page
Query Builder