CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux - уязвимость в p7zip

7-Zip 22.01 does not report an error for certain invalid xz files that involve block flags and reserved bits. Some later versions are unaffected...

3.3CVSS5.8AI score0.00087EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-10107

Malware in sbrugna...

7.5CVSS7.6AI score0.01653EPSS

Exploits1References6

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-49846

Malicious code in bioql PyPI...

7.8CVSS7.5AI score0.00039EPSS

Exploits1References1

Amazon•added 2024/01/08 12:0 a.m.•7 views

Medium: p7zip

Issue Overview: p7zip 16.02 was discovered to contain a heap-buffer-overflow vulnerability via the function NArchive::NZip::CInArchive::FindCdbool at CPP/7zip/Archive/Zip/ZipIn.cpp. CVE-2022-47069 Affected Packages: p7zip Issue Correction: Run dnf update p7zip --releasever 2023.3.20240108 to upda...

7.8CVSS7.3AI score0.00039EPSS

Exploits1

OSV•added 2023/08/22 7:16 p.m.•22 views

CVE-2022-47069

p7zip 16.02 was discovered to contain a heap-buffer-overflow vulnerability via the function NArchive::NZip::CInArchive::FindCdbool at CPP/7zip/Archive/Zip/ZipIn.cpp. NOTE: the Supplier has found that this is not a buffer overflow; at most an out-of-bounds read can occur...

7.8CVSS7.3AI score

Exploits0References1

OSV•added 2018/01/30 4:29 p.m.•0 views

AZL-35092 CVE-2017-17969 affecting package p7zip for versions less than 16.02-23

Heap-based buffer overflow in the NCompress::NShrink::CDecoder::CodeReal method in 7-Zip before 18.00 and p7zip allows remote attackers to cause a denial of service out-of-bounds write or potentially execute arbitrary code via a crafted ZIP archive...

7.8CVSS7.8AI score0.01822EPSS

Exploits1References1

OSV•added 2016/11/12 2:59 a.m.•6 views

CVE-2016-9296

A null pointer dereference bug affects the 16.02 and many old versions of p7zip. A lack of null pointer check for the variable folders.PackPositions in function CInArchive::ReadAndDecodePackedStreams in CPP/7zip/Archive/7z/7zIn.cpp, as used in the 7z.so library and in 7z applications, will cause ...

7.5CVSS6.6AI score

Exploits0References4

CVE•added 2016/11/12 2:19 a.m.•80 views

CVE-2016-9296

The CVE-2016-9296 issue affects p7zip 16.02 and older, caused by a null pointer dereference in CInArchive::ReadAndDecodePackedStreams (CPP/7zip/Archive/7z/7zIn.cpp) used by the 7z.so library and 7z apps. This can crash and trigger a denial of service when decoding malformed 7z files. Remediation ...

7.5CVSS7.2AI score0.01653EPSS

Exploits1References4Affected Software1