Lucene search
+L

34 matches found

Positive Technologies
Positive Technologies
added 2026/02/25 12:0 a.m.7 views

PT-2026-22058

Name of the Vulnerable Software and Affected Versions psd-tools versions prior to 1.12.2 Description psd-tools, a Python package for working with Adobe Photoshop PSD files, contains multiple issues. A lack of a length cap on zlib.decompress can lead to denial-of-service or out-of-memory crashes...

9.1CVSS5.9AI score0.0041EPSS
Exploits1References14
RedhatCVE
RedhatCVE
added 2026/01/09 9:51 a.m.7 views

CVE-2020-10571

An issue was discovered in psd-tools before 1.9.4. The Cython implementation of RLE decoding did not check for malicious data...

9.8CVSS6.8AI score0.01736EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-0150

Malware in sbrugna...

9.8CVSS9.2AI score0.01736EPSS
Exploits0References8
CNVD
CNVD
added 2020/03/18 12:0 a.m.1 views

psd-tools code issue vulnerability

psd-tools is a Python package for reading Adobe Photoshop PSD files. A code issue vulnerability exists in versions of psd-tools prior to 1.9.4, no details of the vulnerability are provided at this time...

9.8CVSS7AI score0.01736EPSS
Exploits0References1
OSV
OSV
added 2020/03/16 10:46 p.m.75 views

GHSA-22JR-VC7J-G762 Potential buffer overflow in psd-tools

Impact An issue was discovered in psd-tools before 1.9.4. The Cython implementation of RLE decoding did not check for malformed PSD input data during decoding to the PIL.Image or NumPy format, leading to a Buffer Overflow. Patches Users of psd-tools version v1.8.37 to v1.9.3 should upgrade to...

9.8CVSS9.7AI score0.01736EPSS
Exploits0References7
vulnersOsv
vulnersOsv
added 2020/03/16 10:46 p.m.4 views

aoirint-psdlayer2dirpy (>=20220819.1.0 <=20220819.2.0), hacktools (>=0.8.0 <=0.26.0) +1 more potentially affected by CVE-2020-10571 via psd-tools (>=1.8.38 <=1.9.28)

psd-tools PYPI version =1.8.38, =20220819.1.0, =0.8.0, =0.1.0, =0.5.1 Source cves: CVE-2020-10571 Source advisory: OSV:GHSA-22JR-VC7J-G762...

9.8CVSS7.2AI score0.01736EPSS
Exploits0
Github Security Blog
Github Security Blog
added 2020/03/16 10:46 p.m.88 views

Potential buffer overflow in psd-tools

Impact An issue was discovered in psd-tools before 1.9.4. The Cython implementation of RLE decoding did not check for malformed PSD input data during decoding to the PIL.Image or NumPy format, leading to a Buffer Overflow. Patches Users of psd-tools version v1.8.37 to v1.9.3 should upgrade to...

9.8CVSS9.3AI score0.01736EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2020/03/14 6:15 p.m.43 views

CVE-2020-10571

An issue was discovered in psd-tools before 1.9.4. The Cython implementation of RLE decoding did not check for malicious data...

9.8CVSS9.5AI score0.01736EPSS
Exploits0References2
OSV
OSV
added 2020/03/14 6:15 p.m.18 views

CVE-2020-10571

An issue was discovered in psd-tools before 1.9.4. The Cython implementation of RLE decoding did not check for malicious data...

9.8CVSS9.5AI score
Exploits0References2
Prion
Prion
added 2020/03/14 6:15 p.m.10 views

Design/Logic Flaw

An issue was discovered in psd-tools before 1.9.4. The Cython implementation of RLE decoding did not check for malicious data...

7.5CVSS9.4AI score0.01736EPSS
Exploits0References2Affected Software1
vulnersOsv
vulnersOsv
added 2020/03/14 6:15 p.m.7 views

add-psd-layer (=0.1.0), agkit (=0.27.0) +38 more potentially affected by CVE-2020-10571 via psd-tools (>=1.10.2 <=1.9.28)

psd-tools PYPI version =1.10.2, =0.1.2, =0.1.1, =0.1.0, =2.0.0, =4.1.0, =0.8.0, =0.1.0, =0.1.6, =2023.0.0, =1.1.0, =2024.0.0, =2024.0.1 and more Source cves: CVE-2020-10571 Source advisory: OSV:PYSEC-2020-91...

9.8CVSS7.2AI score0.01736EPSS
Exploits0
OSV
OSV
added 2020/03/14 6:15 p.m.27 views

PYSEC-2020-91

An issue was discovered in psd-tools before 1.9.4. The Cython implementation of RLE decoding did not check for malicious data...

9.8CVSS2.2AI score0.01736EPSS
Exploits0References3
PyPA
PyPA
added 2020/03/14 6:15 p.m.6 views

PYSEC-2020-91

An issue was discovered in psd-tools before 1.9.4. The Cython implementation of RLE decoding did not check for malicious data...

9.8CVSS7AI score0.01736EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2020/03/14 5:23 p.m.150 views

CVE-2020-10571

The CVE-2020-10571 issue affects psd-tools prior to v1.9.4, where the Cython implementation of RLE decoding fails to validate input data. This can be triggered by malicious or malformed PSD input, with documented advisories describing a related buffer overflow scenario when the Cython path is use...

9.8CVSS9.4AI score0.01736EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder