Lucene search
K

220 matches found

Tenable Nessus
Tenable Nessus
added 2 days ago2 views

Ubuntu 22.04 LTS / 24.04 LTS / 26.04 LTS : LibreOffice vulnerabilities (USN-8534-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 26.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8534-1 advisory. It was discovered that LibreOffice incorrectly handled importing DXF drawings. An attacker could use this issue to cause...

7.8CVSS6.9AI score0.00171EPSS
Exploits0References7
EUVD
EUVD
added 2026/06/15 4:21 p.m.8 views

EUVD-2026-36735

A heap use-after-free existed when importing the blank-width characters of an ODF number format. A position value read from the document was not checked against the length of the format-code string, so a malformed number format could be processed against memory outside that string. In fixed...

6.9CVSS5.3AI score0.00114EPSS
Exploits0References1
CVE
CVE
added 2026/06/15 4:21 p.m.18 views

CVE-2026-6040

CVE-2026-6040 is a heap use‑after‑free vulnerability in LibreOffice related to parsing the blank‑width characters of an ODF number format. According to multiple connected disclosures, a memory access could occur when a position value read from the document is not checked against the length of the...

7.3CVSS5.3AI score0.00114EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/15 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-6040

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap use-after-free existed when importing the blank-width characters of an ODF number format. A position value read from the document was not checked against...

7.3CVSS6.1AI score0.00114EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/10 2:59 a.m.10 views

CVE-2025-55657

A NULL pointer dereference in the gfodfvvccfgwritebs function odf/descriptors.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

7.5CVSS5.5AI score0.00467EPSS
Exploits1References1
NVD
NVD
added 2026/06/09 7:17 p.m.14 views

CVE-2025-55657

A NULL pointer dereference in the gfodfvvccfgwritebs function odf/descriptors.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

7.5CVSS0.00467EPSS
Exploits1References2
OSV
OSV
added 2026/06/09 7:17 p.m.11 views

DEBIAN-CVE-2025-55657

A NULL pointer dereference in the gfodfvvccfgwritebs function odf/descriptors.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

7.5CVSS5.5AI score0.00467EPSS
Exploits1References1
OSV
OSV
added 2026/06/09 7:17 p.m.9 views

UBUNTU-CVE-2025-55657

A NULL pointer dereference in the gfodfvvccfgwritebs function odf/descriptors.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

7.5CVSS5.2AI score0.00467EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/06/09 12:0 a.m.21 views

PT-2026-48160

🚨 CVE-2025-55657 A NULL pointer dereference in the gf odf vvc cfg write bs function odf/descriptors.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file. 🎖@cveNotify...

7.5CVSS5.2AI score0.00467EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/06/09 12:0 a.m.39 views

CVE-2025-55657

A NULL pointer dereference in the gfodfvvccfgwritebs function odf/descriptors.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

0.00467EPSS
Exploits1References1
OSV
OSV
added 2026/06/09 12:0 a.m.2 views

CVE-2025-55657

A NULL pointer dereference in the gfodfvvccfgwritebs function odf/descriptors.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

7.5CVSS5.9AI score0.00467EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/06/09 12:0 a.m.10 views

CVE-2025-55657

A NULL pointer dereference in the gfodfvvccfgwritebs function odf/descriptors.c of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service DoS via supplying a crafted MP4 file...

5.5AI score0.00467EPSS
Exploits1References1
CVE
CVE
added 2026/06/09 12:0 a.m.28 views

CVE-2025-55657

GPAC MP4Box v2.4 is affected by a NULL pointer dereference in the gf_odf_vvc_cfg_write_bs function (odf/descriptors.c), leading to Denial of Service when processing a crafted MP4 file. The issue’s root cause is in the handling of ODF VVC descriptor writes; exploitation details are not provided in...

7.5CVSS5.5AI score0.00467EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.18 views

GPAC MP4Box 代码问题漏洞

GPAC MP4Box is a open-source multimedia packager from GPAC. It is primarily used for processing ISOBMF files such as MP4 and 3GP, but it can also be used for importing/exporting media from container files like AVI, MPG, MKV, and MPEG-2 TS. Version 2.4 of GPAC MP4Box has a code vulnerability cause...

7.5CVSS5.3AI score0.00467EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/06/02 4:3 a.m.18 views

CVE-2025-60481

A NULL pointer dereference in the gfodfac4cfgdsiv1 function /odf/descriptors.c of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service DoS via supplying a crafted AC4 file...

5.5CVSS5.8AI score0.00143EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/01 12:0 a.m.12 views

CVE-2025-60481

A NULL pointer dereference in the gfodfac4cfgdsiv1 function /odf/descriptors.c of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service DoS via supplying a crafted AC4 file...

5.8AI score0.00143EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in LibreOffice

LibreOffice supports digital signatures for ODF documents and macros within documents. It provides visual aids to indicate that the document has not been altered since the last signature, and that the signature is valid. A vulnerability in certificate validation in LibreOffice allowed attackers t...

7.5CVSS6.8AI score0.00685EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-23500

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Dolibarr is an enterprise resource planning ERP and customer relationship management CRM software package. In versions prior to 23.0.0 , the ODT to PDF conversi...

9.4CVSS6.6AI score0.00922EPSS
Exploits3References2
Vulnrichment
Vulnrichment
added 2026/04/17 8:25 p.m.6 views

CVE-2026-23500 Dolibarr: OS Command Injection (RCE) via MAIN_ODT_AS_PDF configuration

Dolibarr is an enterprise resource planning ERP and customer relationship management CRM software package. In versions prior to 23.0.0 , the ODT to PDF conversion process in odf.php concatenates the MAINODTASPDF configuration constant directly into a shell command passed to exec without...

9.4CVSS6.5AI score0.00922EPSS
Exploits3References2
EUVD
EUVD
added 2025/10/29 11:55 p.m.4 views

EUVD-2025-36886

Malicious code in esg-odf-common npm...

6.6AI score
Exploits0References1
Rows per page
Query Builder