CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1123 matches found

CVE-2026-42311

Pillow is a Python imaging library. From version 10.3.0 to before version 12.2.0, processing a malicious PSD file could lead to memory corruption, potentially resulting in a crash or arbitrary code execution. This issue has been patched in version 12.2.0...

8.6CVSS7.4AI score0.0002EPSS

Exploits0References1

IBM Security Bulletins•added 2026/05/27 3:1 p.m.•9 views

Security Bulletin: IBM Maximo Application Suite - Visual Inspection component uses pillow-11.3.0 which is vulnerable to CVE-2026-25990

Summary IBM Maximo Application Suite - Visual Inspection component uses pillow-11.3.0 which is vulnerable to CVE-2026-25990, This bulletin contains information regarding the vulnerability and its remediation. Vulnerability Details CVEID:CVE-2026-25990 DESCRIPTION: Pillow is a Python imaging...

8.6CVSS6.7AI score0.00014EPSS

Exploits1Affected Software1

RedHat Linux•added 2026/05/26 3:26 a.m.•9 views

Important: Red Hat Security Advisory: gimp:2.8 security update

An update for the gimp:2.8 module is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Important. A Common...

7.8CVSS7.4AI score0.00074EPSS

Exploits1References5

Tenable Nessus•added 2026/05/26 12:0 a.m.•7 views

RHEL 9 : gimp (RHSA-2026:20691)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:20691 advisory. The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox,...

7.8CVSS7.5AI score0.00074EPSS

Exploits1References12

Tenable Nessus•added 2026/05/25 12:0 a.m.•7 views

MiracleLinux 8 : gimp:2.8 (AXSA:2026-712:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-712:01 advisory. gimp: GIMP:Memory disclosure and denial of service via specially crafted PCX image CVE-2026-4887 gimp: GIMP: Remote Code Execution via XPM File Parsi...

7.8CVSS7.6AI score0.00074EPSS

Exploits1References5

Tenable Nessus•added 2026/05/25 12:0 a.m.•9 views

Alibaba Cloud Linux 3 : 0132: gimp:2.8 (ALINUX3-SA-2026:0132)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2026:0132 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2026-4150: GIMP PSD File Parsing Integ...

7.8CVSS6.5AI score0.00074EPSS

Exploits1References5

OSV•added 2026/05/22 1:21 p.m.•1 views

OESA-2026-2428 python-pillow security update

Pillow is the friendly PIL fork by Alex Clark and Contributors. PIL is the Python Imaging \ Library by Fredrik Lundh and Contributors. As of 2019, Pillow development is supported by Tidelift. of CVE-2022-22815,CVE-2022-22816 Security Fixes: Pillow is a Python imaging library. From version 10.3.0 ...

8.6CVSS6AI score0.0002EPSS

Exploits0References2

Tenable Nessus•added 2026/05/22 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2026-45031

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ubuntu Linux - Unknown description CVE-2026-45031 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL 80900 C Tenabl...

5.8AI score

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в gimp

GIMP PSD File Parsing: Heap-Based Buffer Overflow and Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability, as the target must visit a malicious page ...

7.8CVSS7.6AI score0.58322EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•5 views

Astra Linux - уязвимость в openimageio

There is a heap out-of-bounds read vulnerability in the OpenImageIO master-branch-9aeece7a when parsing the image file directory part of a PSD image file. A specially crafted .psd file can cause a read of arbitrary memory addresses, leading to a denial of service attack. An attacker can provide a...

7.5CVSS6.9AI score0.00106EPSS

Exploits1References2

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в exiv2

In Exiv2 0.26, the Exiv2::IptcParser::decode function in iptc.cpp called from psdimage.cpp in the PSD image reader may experience a denial of service attack due to a heap-based buffer overflow, caused by an integer overflow occurring through a specially crafted PSD image file...

6.5CVSS6.8AI score0.02159EPSS

Exploits0References2