Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

OPENSUSE Linux
OPENSUSE Linuxadded 2026/05/19 12:0 a.m.5 views

Security update for openexr (important)

openSUSE security update: security update for openexr ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20755-1 Rating: important References: bsc1264353 bsc1264354 bsc1264356 Cross-References: CVE-2026-41142 CVE-2026-42216 CVE-2026-42217 CVSS scores:...

9.2CVSS5.8AI score0.00393EPSS
Exploits3References3
OSV
OSVadded 2026/05/15 8:16 a.m.5 views

SUSE-SU-2026:21796-1 Security update for openexr

This update for openexr fixes the following issues - CVE-2026-41142: integer overflow in ImageChannel: resize can lead to a heap out-of-bounds write via OpenEXRUtil public API bsc1264356. - CVE-2026-42216: missing checks in IDManifest: init can lead to out-of-bounds read during prefix expansion...

9.8CVSS5.9AI score0.00393EPSS
Exploits3References7
Snyk
Snykadded 2026/05/07 5:55 a.m.4 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read in the IDManifest::init process during prefix expansion. An attacker can trigger an out-of-bounds read by providing a crafted prefix-compressed string where the code attempts to access bytes that do not exist in the...

9.1CVSS5.9AI score0.00374EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2026/05/07 4:1 a.m.3 views

CVE-2026-42216 OpenEXR: Out-of-bounds read in `IDManifest::init()` during prefix expansion

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From versions 3.0.0 to before 3.2.9, 3.3.0 to before 3.3.11, and 3.4.0 to before 3.4.11, IDManifest::init reconstructs strings from a prefix-compressed...

8.8CVSS5.8AI score0.00374EPSS
Exploits1References1
CVE
CVEadded 2026/05/07 4:1 a.m.21 views

CVE-2026-42216

CVE-2026-42216 affects OpenEXR: an out-of-bounds read in IDManifest::init() during prefix expansion. In affected ranges (3.0.0–before 3.2.9, 3.3.0–before 3.3.11, and 3.4.0–before 3.4.11), the code reads stringList[i][0] and stringList[i][1] without ensuring the current string has two bytes. This ...

9.1CVSS5.8AI score0.00374EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2026/05/07 4:1 a.m.33 views

CVE-2026-42216 OpenEXR: Out-of-bounds read in `IDManifest::init()` during prefix expansion

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From versions 3.0.0 to before 3.2.9, 3.3.0 to before 3.3.11, and 3.4.0 to before 3.4.11, IDManifest::init reconstructs strings from a prefix-compressed...

8.8CVSS0.00374EPSS
Exploits1References1
Rows per page
Query Builder