Lucene search
K

594 matches found

NVD
NVD
added 2026/06/12 9:16 p.m.10 views

CVE-2026-54394

MISP contains a path traversal vulnerability in OrganisationsController::getOrgLogo. The vulnerable code builds organisation logo file paths using organisation-controlled fields such as id, name, and uuid without ensuring that the resolved file remains inside the intended APP/files/img/orgs/...

5.3CVSS0.00319EPSS
Exploits0References1
NVD
NVD
added 2026/02/24 3:21 p.m.11 views

CVE-2026-3102

A vulnerability was determined in exiftool up to 13.49 on macOS. This issue affects the function SetMacOSTags of the file lib/Image/ExifTool/MacOS.pm of the component PNG File Parser. This manipulation of the argument DateTimeOriginal causes os command injection. The attack is possible to be...

8.8CVSS0.03411EPSS
Exploits2References7
Vulnrichment
Vulnrichment
added 2026/02/24 2:32 p.m.6 views

CVE-2026-3102 exiftool PNG File MacOS.pm SetMacOSTags os command injection

A vulnerability was determined in exiftool up to 13.49 on macOS. This issue affects the function SetMacOSTags of the file lib/Image/ExifTool/MacOS.pm of the component PNG File Parser. This manipulation of the argument DateTimeOriginal causes os command injection. The attack is possible to be...

7.5CVSS6.3AI score0.03411EPSS
Exploits2References7
EUVD
EUVD
added 2026/02/24 2:32 p.m.7 views

EUVD-2026-8471

A vulnerability was determined in exiftool up to 13.49 on macOS. This issue affects the function SetMacOSTags of the file lib/Image/ExifTool/MacOS.pm of the component PNG File Parser. This manipulation of the argument DateTimeOriginal causes os command injection. The attack is possible to be...

7.5CVSS6.2AI score0.03411EPSS
Exploits2References7
Positive Technologies
Positive Technologies
added 2026/02/24 12:0 a.m.12 views

PT-2026-21764

Name of the Vulnerable Software and Affected Versions exiftool versions prior to 13.50 Description An OS command injection issue exists in the PNG File Parser component of exiftool on macOS. The flaw is located in the SetMacOSTags function within the lib/Image/ExifTool/MacOS.pm file. A remote...

8.8CVSS7.4AI score0.03411EPSS
Exploits2References39
RedhatCVE
RedhatCVE
added 2026/01/09 9:35 a.m.8 views

CVE-2024-41439

A heap buffer overflow in the function cpblock /vendor/cutepng.h of hicolor v0.5.0 allows attackers to cause a Denial of Service DoS via a crafted PNG file...

5.5CVSS7.3AI score0.00373EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:35 a.m.9 views

CVE-2024-41440

A heap buffer overflow in the function pngquantize of hicolor v0.5.0 allows attackers to cause a Denial of Service DoS via a crafted PNG file...

6.2CVSS7.3AI score0.00761EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/23 6:59 a.m.22 views

CVE-2025-41720

A low privileged remote attacker can upload arbitrary data masked as a png file to the affected device using the webserver API because only the file extension is verified...

4.3CVSS7.1AI score0.00165EPSS
Exploits0References1
OSV
OSV
added 2025/10/07 5:4 p.m.6 views

CLSA-2025-1759856673 Fix CVE(s): CVE-2025-55154

SECURITY UPDATE: memory corruption vulnerability from unsafe magnified size calculations in ReadOneMNGIMage - debian/patches/CVE-2025-55154.patch: Fix type mismatch issue in png.c causing incorrect image dimensions calculation - CVE-2025-55154...

8.8CVSS6AI score0.00933EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-9475

Malware in sbrugna...

7.5CVSS6.7AI score0.04892EPSS
Exploits1References13
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-27229

Malware in sbrugna...

9.8CVSS9.3AI score0.03597EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-27351

Malware in sbrugna...

7.8CVSS7.6AI score0.00242EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-3403

Malware in sbrugna...

7.8CVSS6.4AI score0.03172EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-26181

Malware in sbrugna...

9.3CVSS7.6AI score0.01697EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2012-3404

Malware in sbrugna...

4.3CVSS6.7AI score0.02754EPSS
Exploits0References13
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-2566

Malware in sbrugna...

8.8CVSS8.6AI score0.02216EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-4657

Malware in sbrugna...

6.5CVSS7.3AI score0.01514EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2010-1543

Malware in sbrugna...

9.3CVSS6.1AI score0.03472EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-16266

Malware in sbrugna...

7.8CVSS7.7AI score0.0116EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2012-3405

Malware in sbrugna...

4.3CVSS7.3AI score0.02468EPSS
Exploits1References9
Rows per page
Query Builder