CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

33 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-6414

Malware in sbrugna...

6.5CVSS7AI score0.00299EPSS

Exploits1References17

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-6006

Malware in sbrugna...

8.1CVSS6.7AI score0.00497EPSS

Exploits1References13

RedHat Linux•added 2025/05/14 2:4 a.m.•6 views

libjpeg-turbo: heap-based buffer over-read in get_rgb_row() in rdppm.c

A vulnerability was found in libjpeg-turbo, where a heap-based buffer over-read in getrgbrow in rdppm.c via a malformed PPM input file...

8.1CVSS6.8AI score0.00497EPSS

Exploits1References4

SUSE CVE•added 2023/02/15 4:25 a.m.•1 views

SUSE CVE-2018-14498

get8bitrow in rdbmp.c in libjpeg-turbo through 1.5.90 and MozJPEG through 3.3.1 allows attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted 8-bit BMP in which one or more of the color indices is out of range for the number of palette entries...

3.3CVSS6.9AI score0.00299EPSS

Exploits1References9

SUSE CVE•added 2023/02/15 3:58 a.m.•1 views

SUSE CVE-2020-13790

libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in getrgbrow in rdppm.c via a malformed PPM input file...

5.3CVSS8.8AI score0.00497EPSS

Exploits1References12

Github Security Blog•added 2022/09/16 9:3 p.m.•18 views

mozjpeg DecompressScanlines::read_scanlines is Unsound

This issue and vector is similar to RUSTSEC-2020-0029 of rgb crate which mozjpeg depends on. Affected versions of mozjpeg crate allow creating instances of any type T from bytes, and do not correctly constrain T to the types for which it is safe to do so. Examples of safety violation possible for...

3.1AI score

Exploits0References3Affected Software1

Tenable Nessus•added 2020/11/17 12:0 a.m.•18 views

FreeBSD : mozjpeg -- heap-based buffer over-read in get_rgb_row() in rdppm.c via a malformed PPM input file (040707f9-0b2a-11eb-8834-00155d01f202)

NIST reports : - Heap-based buffer over-read in getrgbrow in rdppm.c via a malformed PPM input file. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2020 Jacques Vidrine and contributors...

8.1CVSS6.9AI score0.00497EPSS

Exploits1References2

The Hacker News•added 2020/09/24 10:11 a.m.•118 views

Major Instagram App Bug Could've Given Hackers Remote Access to Your Phone

Ever wonder how hackers can hack your smartphone remotely? In a report shared with The Hacker News today, Check Point researchers disclosed details about a critical vulnerability in Instagram's Android app that could have allowed remote attackers to take control over a targeted device just by...

7.8CVSS0.2AI score0.00473EPSS

Exploits0

Veracode•added 2020/08/06 9:33 p.m.•30 views

Arbtirary Code Execution

libjpeg-turbo and mozjpeg is vulnerable to arbitrary code execution. A heap-based buffer over-read in getrgbrow in rdppm.c allows an attacker to execute arbitrary code on the host OS via a malicious PPM input file...

8.1CVSS5.5AI score0.00497EPSS

Exploits1References11Affected Software1

OSV•added 2020/07/04 12:0 p.m.•6 views

RUSTSEC-2020-0165 mozjpeg DecompressScanlines::read_scanlines is Unsound

7.3AI score

Exploits0References5

RustSec•added 2020/07/04 12:0 p.m.•7 views

mozjpeg DecompressScanlines::read_scanlines is Unsound

3.1AI score

Exploits0Affected Software1

RedhatCVE•added 2020/06/15 7:24 p.m.•26 views

CVE-2020-13790

libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in getrgbrow in rdppm.c via a malformed PPM input file...

5.8CVSS3.7AI score0.00497EPSS

Exploits1References3

OSV•added 2020/06/03 7:15 p.m.•1 views

ALPINE-CVE-2020-13790

libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in getrgbrow in rdppm.c via a malformed PPM input file...

8.1CVSS7.2AI score0.00497EPSS

Exploits1References1

OSV•added 2020/06/03 7:15 p.m.•19 views

CVE-2020-13790

libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in getrgbrow in rdppm.c via a malformed PPM input file...

8.1CVSS7.3AI score

Exploits0References9

Prion•added 2020/06/03 7:15 p.m.•18 views

Heap overflow

libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in getrgbrow in rdppm.c via a malformed PPM input file...

5.8CVSS7.8AI score0.00497EPSS

Exploits1References9Affected Software2

UbuntuCve•added 2020/06/03 7:15 p.m.•20 views

CVE-2020-13790

libjpeg-turbo 2.0.4, and mozjpeg 4.0.0, has a heap-based buffer over-read in getrgbrow in rdppm.c via a malformed PPM input file...

8.1CVSS6.9AI score0.00497EPSS

Exploits1References2

CVE•added 2020/06/03 6:56 p.m.•341 views

CVE-2020-13790

CVE-2020-13790 affects libjpeg-turbo (2.0.4) and mozjpeg (4.0.0) with a heap-based buffer over-read in get_rgb_row() in rdppm.c triggered by a malformed PPM input file. Public advisories document this as a validated vulnerability with partial confidentiality and partial availability impact (NVD C...

8.1CVSS7.8AI score0.00497EPSS

Exploits1References9Affected Software2