Lucene search
K

12 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in libraw

In LibRaw, there is an out-of-bounds write vulnerability within the "newnode" function libraw\src\x3f\x3futilspatched.cpp that can be triggered via a crafted X3F file...

5.5CVSS6AI score0.00369EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-53340

Malicious code in bioql PyPI...

5.5CVSS7.3AI score0.00201EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2024-48425

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A segmentation fault SEGV was detected in the Assimp::SplitLargeMeshesProcessTriangle::UpdateNode function within the Assimp library during fuzz testing using...

5.5CVSS6.5AI score0.00239EPSS
Exploits1References3
OSV
OSV
added 2025/07/04 6:15 p.m.8 views

AZL-65208 CVE-2025-7067 affecting package hdf5 for versions less than 1.14.6-1

A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5FSsinfoserializenodecb of the file src/H5FScache.c. The manipulation leads to heap-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed ...

5.5CVSS5AI score0.00215EPSS
Exploits1References1
OSV
OSV
added 2025/06/19 5:15 p.m.3 views

DEBIAN-CVE-2025-6270

A vulnerability, which was classified as critical, has been found in HDF5 up to 1.14.6. Affected by this issue is the function H5FSsectfindnode of the file H5FSsection.c. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has...

4.8CVSS5.1AI score0.00204EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2024/12/28 9:46 a.m.11 views

CVE-2024-56692

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on node blkaddr in truncatenode syzbot reports a f2fs bug as below: ------------ cut here ------------ kernel BUG at fs/f2fs/segment.c:2534! RIP: 0010:f2fsinvalidateblocks+0x35f/0x370...

5.5CVSS5.6AI score0.00201EPSS
Exploits0
OSV
OSV
added 2024/10/24 9:15 p.m.3 views

UBUNTU-CVE-2024-48425

A segmentation fault SEGV was detected in the Assimp::SplitLargeMeshesProcessTriangle::UpdateNode function within the Assimp library during fuzz testing using AddressSanitizer. The crash occurs due to a read access violation at address 0x000000000460, which points to the zero page, indicating a...

5.5CVSS6.6AI score0.00239EPSS
Exploits1References2
Microsoft CVE
Microsoft CVE
added 2024/06/30 2:0 p.m.5 views

SQLite3 from 3.6.0 to and including 3.27.2 is vulnerable to heap out-of-bound read in the rtreenode() function when handling invalid rtree tables.

...

9.8CVSS7.8AI score0.45426EPSS
Exploits0
NVD
NVD
added 2023/02/17 4:15 p.m.11 views

CVE-2023-23007

An issue was discovered in ESPCMS P8.21120101 after logging in to the background, there is a SQL injection vulnerability in the function node where members are added...

7.2CVSS7.2AI score0.00634EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2020/09/01 12:0 a.m.5 views

PT-2020-6802 · Libraw +3 · Libraw +3

Name of the Vulnerable Software and Affected Versions: LibRaw affected versions not specified Description: The issue is related to an out-of-bounds write vulnerability within the new node function in the LibRaw library, which can be triggered via a crafted X3F file. This vulnerability may allow a...

7.8CVSS6.4AI score0.03672EPSS
Exploits6References67
CNVD
CNVD
added 2017/11/01 12:0 a.m.2 views

SolarWinds Network Performance Monitor Cross-Site Scripting Vulnerability

SolarWinds Network Performance Monitor NPM is a network performance monitor from SolarWinds, Inc. that provides monitoring and reporting, tracking of up/down status, real-time analytics, and network performance statistics for routers, virtualized environments, and other devices. A cross-site...

4.8CVSS6.5AI score0.02822EPSS
Exploits2References1
OSV
OSV
added 2017/10/03 1:29 a.m.4 views

CVE-2017-9537

Persistent cross-site scripting XSS in the Add Node function of SolarWinds Network Performance Monitor version 12.0.15300.90 allows remote attackers to introduce arbitrary JavaScript into various vulnerable parameters...

4.8CVSS5.8AI score0.02822EPSS
Exploits2References2
Rows per page
Query Builder