Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

798 matches found

AstraLinux
AstraLinuxadded 5 days ago2 views

Astra Linux – Vulnerability in OpenCV

A issue was discovered in OpenCV prior to version 4.1.1. There is a NULL pointer dereferencing in the function cv::XMLParser::parse, located in modules/core/src/persistence.cpp...

7.5CVSS6.6AI score0.0337EPSS
Exploits1References2
AstraLinux
AstraLinuxadded 5 days ago4 views

Astra Linux – Vulnerability in OpenCV

A issue was discovered in OpenCV before versions 3.4.7 and 4.x before version 4.1.1. There is an out-of-bounds read/write operation in the function HaarEvaluator::OptFeature::calc in modules/objdetect/src/cascadedetect.hpp, which leads to a denial of service...

7.5CVSS6.5AI score0.0276EPSS
Exploits1References2
OSV
OSVadded 2026/06/05 3:18 p.m.4 views

JLSEC-2026-568

A vulnerability, which was classified as problematic, has been found in OpenCV wechatqrcode Module up to 4.7.0. Affected by this issue is the function DecodedBitStreamParser::decodeHanziSegment of the file qrcode/decoder/decodedbitstreamparser.cpp. The manipulation leads to memory leak. The attac...

7.5CVSS4.6AI score0.01303EPSS
Exploits0References8
OSV
OSVadded 2026/06/05 3:18 p.m.4 views

JLSEC-2026-567

A vulnerability classified as problematic was found in OpenCV wechatqrcode Module up to 4.7.0. Affected by this vulnerability is the function DecodedBitStreamParser::decodeByteSegment of the file qrcode/decoder/decodedbitstreamparser.cpp. The manipulation leads to null pointer dereference. The...

7.5CVSS4.4AI score0.01356EPSS
Exploits0References9
Positive Technologies
Positive Technologiesadded 2026/06/05 12:0 a.m.5 views

PT-2026-49251

A vulnerability, which was classified as problematic, has been found in OpenCV wechat qrcode Module up to 4.7.0. Affected by this issue is the function DecodedBitStreamParser::decodeHanziSegment of the file qrcode/decoder/decoded bit stream parser.cpp. The manipulation leads to memory leak. The...

4.5AI score
Exploits0References5
SUSE CVE
SUSE CVEadded 2026/05/27 11:14 a.m.4 views

SUSE CVE-2018-7713

The validateInputImageSize function in modules/imgcodecs/src/loadsave.cpp in OpenCV 3.4.1 allows remote attackers to cause a denial of service assertion failure because size.width = 120 may be false. Note: “OpenCV CVAssert is not an assertion C-like assert, it is regular C++ exception which can...

7.5CVSS7.1AI score0.0238EPSS
Exploits0References3
AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in OpenCV

A issue was discovered in OpenCV before versions 3.4.7 and 4.x before version 4.1.1. There is an out-of-bounds read in the function cv::predictOrdered in modules/objdetect/src/cascadedetect.hpp, which leads to a denial of service...

8.2CVSS6.5AI score0.02647EPSS
Exploits1References2
AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.6 views

Astra Linux – Vulnerability in OpenCV

A out-of-bounds read was discovered in OpenCV prior to version 4.1.1. Specifically, the variable coarsestscale is assumed to be greater than or equal to finestscale within the calc/oclcalc functions in disflow.cpp. However, this assumption is incorrect when dealing with small images, resulting in...

6.5CVSS6.1AI score0.01742EPSS
Exploits1References2
AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.3 views

Astra Linux – Vulnerability in OpenCV

In OpenCV 3.3.1, there is an issue of buffer over-reading based on a heap structure in the function cv::HdrDecoder::checkSignature in the modules/imgcodecs/src/grfmthdr.cpp...

7.5CVSS7.6AI score0.02313EPSS
Exploits0References2
Github Security Blog
Github Security Blogadded 2026/02/02 5:43 p.m.17 views

vLLM has RCE In Video Processing

Summary A chain of vulnerabilities in vLLM allow Remote Code Execution RCE: 1. Info Leak - PIL error messages expose memory addresses, bypassing ASLR 2. Heap Overflow - JPEG2000 decoder in OpenCV/FFmpeg has a heap overflow that lets us hijack code execution Result: Send a malicious video URL to...

9.8CVSS6.4AI score0.03279EPSS
Exploits0References6Affected Software1
EUVD
EUVDadded 2025/12/19 3:31 p.m.6 views

EUVD-2025-204541

Turms AI-Serving module v0.10.0-SNAPSHOT and earlier contains an image decompression bomb denial of service vulnerability. The ExtendedOpenCVImage class in ai/djl/opencv/ExtendedOpenCVImage.java loads images using OpenCV's imread function without validating dimensions or pixel count before...

7.5CVSS6.5AI score0.0046EPSS
Exploits1References4
NVD
NVDadded 2025/12/19 3:15 p.m.6 views

CVE-2025-66909

Turms AI-Serving module v0.10.0-SNAPSHOT and earlier contains an image decompression bomb denial of service vulnerability. The ExtendedOpenCVImage class in ai/djl/opencv/ExtendedOpenCVImage.java loads images using OpenCV's imread function without validating dimensions or pixel count before...

7.5CVSS0.0046EPSS
Exploits1References3
OSV
OSVadded 2025/12/19 3:15 p.m.5 views

CVE-2025-66909

Turms AI-Serving module v0.10.0-SNAPSHOT and earlier contains an image decompression bomb denial of service vulnerability. The ExtendedOpenCVImage class in ai/djl/opencv/ExtendedOpenCVImage.java loads images using OpenCV's imread function without validating dimensions or pixel count before...

7.5CVSS6.9AI score0.0046EPSS
Exploits1References3
CVE
CVEadded 2025/12/19 12:0 a.m.7 views

CVE-2025-66909

Turms AI-Serving module prior to v0.10.0 is affected by an image decompression bomb DoS. The ExtendedOpenCVImage class uses OpenCV imread() without validating image dimensions or pixel count before decompression, allowing a crafted compressed image (e.g., PNG) to expand to gigabytes in memory, ca...

7.5CVSS6.7AI score0.0046EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2025/12/19 12:0 a.m.24 views

CVE-2025-66909

Turms AI-Serving module v0.10.0-SNAPSHOT and earlier contains an image decompression bomb denial of service vulnerability. The ExtendedOpenCVImage class in ai/djl/opencv/ExtendedOpenCVImage.java loads images using OpenCV's imread function without validating dimensions or pixel count before...

0.0046EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2025/12/19 12:0 a.m.5 views

PT-2025-52452

Name of the Vulnerable Software and Affected Versions Turms AI-Serving module versions prior to v0.10.0 Description The software contains an image decompression bomb denial of service issue. The ExtendedOpenCVImage class in ai/djl/opencv/ExtendedOpenCVImage.java uses OpenCV’s imread function to...

7.5CVSS6.7AI score0.0046EPSS
Exploits1References6
Rosalinux
Rosalinuxadded 2025/10/14 2:33 p.m.24 views

Advisory ROSA-SA-2025-3034

software: opencv 4.10.0 AXIS: ROSA-CHROME affected versions: None CVE-ID: CVE-2025-53644 BDU-ID: None CVE-Crit: CRITICAL CVE-DESC.: A vulnerability in OpenCV 4.10.0 and 4.11.0 is the use of an uninitialized pointer when processing JPEGs, which can lead to arbitrary memory writes. CVE-STATUS: Not...

9.8CVSS7.1AI score0.00371EPSS
Exploits1
EUVD
EUVDadded 2025/10/07 12:30 a.m.6 views

EUVD-2021-2143

Malware in sbrugna...

8.8CVSS5.9AI score0.0197EPSS
Exploits0References12
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2021-2199

Malware in sbrugna...

8.8CVSS5.9AI score0.0197EPSS
Exploits0References12
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2021-2211

Malware in sbrugna...

5.9CVSS6.7AI score0.02351EPSS
Exploits1References10
Rows per page
Query Builder