CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

36 matches found

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2018-13798

Malware in sbrugna...

9.8CVSS9.3AI score0.01737EPSS

Exploits0References4

Tenable Nessus•added 2025/08/27 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2018-25017

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RawSpeed aka librawspeed 3.1 has a heap-based buffer overflow in TableLookUp::setTable. CVE-2018-25017 Note that Nessus relies on the presence of the package as...

9.8CVSS8.5AI score0.01737EPSS

Exploits0References2

RedhatCVE•added 2025/05/22 7:20 a.m.•9 views

CVE-2018-25017

RawSpeed aka librawspeed 3.1 has a heap-based buffer overflow in TableLookUp::setTable...

9.8CVSS7.3AI score0.01737EPSS

Exploits0References1

Positive Technologies•added 2023/12/25 12:0 a.m.•4 views

PT-2023-35668 · Rawspeed · Rawspeed

Name of the Vulnerable Software and Affected Versions: rawspeed affected versions not specified Description: The issue is related to a heap-buffer-overflow read error. Technical details about the crash include the parseWhiteBalance function within DngDecoder, which is part of the rawspeed library...

6.8AI score

Exploits0References2

OSV•added 2023/08/28 2:2 p.m.•14 views

OSV-2023-756 Heap-buffer-overflow in rawspeed::DngDecoder::decodeMetaDataInternal

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=61800 Crash type: Heap-buffer-overflow READ 4 Crash state: rawspeed::DngDecoder::decodeMetaDataInternal rawspeed::RawDecoder::decodeMetaData...

7.2AI score

Exploits0References1

Positive Technologies•added 2023/08/28 12:0 a.m.•3 views

PT-2023-35982 · Rawspeed · Rawspeed

Name of the Vulnerable Software and Affected Versions: rawspeed affected versions not specified Description: The issue is related to a heap-buffer-overflow read error. Technical details about the crash indicate it occurs in the rawspeed::DngDecoder::decodeMetaDataInternal and...

6.7AI score

Exploits0References2

OSV•added 2022/11/23 1:2 p.m.•11 views

OSV-2022-1199 Use-of-uninitialized-value in rawspeed::RawImageData::checkRowIsInitialized

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=53618 Crash type: Use-of-uninitialized-value Crash state: rawspeed::RawImageData::checkRowIsInitialized rawspeed::RawImageData::checkMemIsInitialized rawspeed::RawDecoder::decodeRaw...

7.2AI score

Exploits0References1

Positive Technologies•added 2022/11/23 12:0 a.m.•7 views

PT-2022-36783 · Rawspeed · Rawspeed

Name of the Vulnerable Software and Affected Versions: rawspeed affected versions not specified Description: The issue is related to a crash caused by the use of an uninitialized value. The crash occurs in the checkRowIsInitialized and checkMemIsInitialized functions of the RawImageData class,...

6.8AI score

Exploits0References2

Positive Technologies•added 2022/11/02 12:0 a.m.•9 views

PT-2022-36734 · Rawspeed · Rawspeed

Name of the Vulnerable Software and Affected Versions: rawspeed affected versions not specified Description: A heap buffer overflow read issue has been identified. The crash occurs in the applyOP function of DngOpcodes::PixelOpcode when handling metadata in DngDecoder. Technical details include t...

7.5AI score

Exploits0References2

BDU FSTEC•added 2022/04/01 12:0 a.m.•5 views

The vulnerability of the TableLookUp::setTable function in the RawSpeed library of the Darktable application allows a hacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the TableLookUp::setTable function in the RawSpeed library of the Darktable application relates to writing beyond the buffer boundaries. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

9.8CVSS7.9AI score0.01737EPSS

Exploits0References6Affected Software2

CNVD•added 2021/07/02 12:0 a.m.•7 views

RawSpeed Buffer Overflow Vulnerability

RawSpeed is a full-line solution for Internet users to upload and download large files. A buffer overflow vulnerability exists in RawSpeed, which stems from an out-of-bounds read/write operation occurring due to a failure to validate memory boundaries during a call to the TableLookUp::setTable...

9.8CVSS7.1AI score0.01737EPSS

Exploits0References1

OSV•added 2021/07/01 3:15 a.m.•17 views

CVE-2018-25017

RawSpeed aka librawspeed 3.1 has a heap-based buffer overflow in TableLookUp::setTable...

9.8CVSS7.4AI score

Exploits0References3

NVD•added 2021/07/01 3:15 a.m.•40 views

CVE-2018-25017

RawSpeed aka librawspeed 3.1 has a heap-based buffer overflow in TableLookUp::setTable...

9.8CVSS0.01737EPSS

Exploits0References3

OSV•added 2021/07/01 3:15 a.m.•2 views

DEBIAN-CVE-2018-25017

RawSpeed aka librawspeed 3.1 has a heap-based buffer overflow in TableLookUp::setTable...

9.8CVSS8.9AI score0.01737EPSS

Exploits0References1

Prion•added 2021/07/01 3:15 a.m.•14 views

Heap overflow

RawSpeed aka librawspeed 3.1 has a heap-based buffer overflow in TableLookUp::setTable...

7.5CVSS9.7AI score0.01737EPSS

Exploits0References3Affected Software1

UbuntuCve•added 2021/07/01 3:15 a.m.•27 views

CVE-2018-25017

RawSpeed aka librawspeed 3.1 has a heap-based buffer overflow in TableLookUp::setTable...

9.8CVSS7.4AI score0.01737EPSS

Exploits0References4

OSV•added 2021/07/01 3:15 a.m.•1 views

UBUNTU-CVE-2018-25017

RawSpeed aka librawspeed 3.1 has a heap-based buffer overflow in TableLookUp::setTable...

9.8CVSS7.5AI score0.01737EPSS

Exploits0References5

CVE•added 2021/07/01 2:53 a.m.•85 views

CVE-2018-25017

RawSpeed (aka librawspeed) 3.1 contains a heap-based buffer overflow in TableLookUp::setTable. The CVE-2018-25017 entry applies to this library and is corroborated across multiple sources in connected documents (e.g., Debian, Ubuntu, Red Hat, OSV, CNVD, etc.). Documented impact indicates high sev...

9.8CVSS9.7AI score0.01737EPSS

Exploits0References3Affected Software1