CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

20 matches found

RedhatCVE•added 2026/05/26 6:59 a.m.•11 views

CVE-2026-9530

A flaw was found in GNU LibreDWG, specifically within the Dwgbmp Utility component. A local attacker could exploit an out-of-bounds read vulnerability in the read2004compressedsection function by manipulating a file. This could lead to a denial of service, making the application unavailable...

4.8CVSS5.7AI score0.00143EPSS

Exploits0References10

NVD•added 2026/05/26 5:16 a.m.•8 views

CVE-2026-9530

A weakness has been identified in GNU LibreDWG up to 0.14. The impacted element is the function read2004compressedsection of the file src/decode.c of the component Dwgbmp Utility. Executing a manipulation can lead to out-of-bounds read. The attack requires local access. The exploit has been made...

4.8CVSS0.00143EPSS

Exploits0References7

Vulnrichment•added 2026/05/26 4:30 a.m.•7 views

CVE-2026-9530 GNU LibreDWG Dwgbmp Utility decode.c read_2004_compressed_section out-of-bounds

4.8CVSS5.4AI score0.00143EPSS

Exploits0References7

Positive Technologies•added 2026/05/26 12:0 a.m.•8 views

PT-2026-43187

A weakness has been identified in GNU LibreDWG up to 0.14. The impacted element is the function read 2004 compressed section of the file src/decode.c of the component Dwgbmp Utility. Executing a manipulation can lead to out-of-bounds read. The attack requires local access. The exploit has been ma...

4.8CVSS5.4AI score0.00143EPSS

Exploits0References7

Cvelist•added 2026/05/25 8:15 p.m.•24 views

CVE-2026-9500 GNU LibreDWG Dwgread Utility decode.c read_2004_compressed_section heap-based overflow

A vulnerability was found in GNU LibreDWG up to 0.14. The affected element is the function read2004compressedsection of the file src/decode.c of the component Dwgread Utility. Performing a manipulation results in heap-based buffer overflow. The attack is only possible with local access. The explo...

5.3CVSS0.00153EPSS

Exploits0References6

Positive Technologies•added 2026/05/25 12:0 a.m.•7 views

PT-2026-43125

A vulnerability was found in GNU LibreDWG up to 0.14. The affected element is the function read 2004 compressed section of the file src/decode.c of the component Dwgread Utility. Performing a manipulation results in heap-based buffer overflow. The attack is only possible with local access. The...

5.3CVSS6AI score0.00153EPSS

Exploits0References6

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2020-14593

Malware in sbrugna...

7.8CVSS7.6AI score0.00981EPSS

Exploits1References5

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2020-14601

Malware in sbrugna...

6.5CVSS6.5AI score0.00865EPSS

Exploits1References4

RedhatCVE•added 2025/05/22 4:6 p.m.•7 views

CVE-2020-21827

A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read2004compressedsection ../../src/decode.c:2379...

7.8CVSS7.4AI score0.00981EPSS

Exploits1

RedhatCVE•added 2025/05/22 3:56 p.m.•5 views

CVE-2020-21831

A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read2004sectionhandles ../../src/decode.c:2637...

8.8CVSS7.4AI score0.01231EPSS

Exploits1

RedhatCVE•added 2025/05/22 3:48 p.m.•6 views

CVE-2020-21842

A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read2004sectionrevhistory ../../src/decode.c:3051...

8.8CVSS7.4AI score0.01232EPSS

Exploits1

RedhatCVE•added 2025/05/22 3:18 p.m.•6 views

CVE-2020-21838

A heap based buffer overflow vulnerability exits in GNU LibreDWG 0.10 via: read2004sectionappinfo ../../src/decode.c:2842...

8.8CVSS7.4AI score0.01372EPSS

Exploits1

SUSE CVE•added 2023/02/15 3:54 a.m.•1 views

SUSE CVE-2020-21831

A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read2004sectionhandles ../../src/decode.c:2637...

8.8CVSS8.9AI score0.01231EPSS

Exploits1References3

SUSE CVE•added 2023/02/15 3:54 a.m.•4 views

SUSE CVE-2020-21835

A null pointer deference issue exists in GNU LibreDWG 0.10 via read2004compressedsection ../../src/decode.c:2337...

6.5CVSS6.6AI score0.00865EPSS

Exploits1References3

SUSE CVE•added 2023/02/15 3:54 a.m.•3 views

SUSE CVE-2020-21844

GNU LibreDWG 0.10 is affected by: memcpy-param-overlap. The impact is: execute arbitrary code remote. The component is: read2004sectionheader ../../src/decode.c:2580...

8.8CVSS9AI score0.01543EPSS

Exploits1References3

NVD•added 2021/05/17 10:15 p.m.•14 views

CVE-2020-21842

A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read2004sectionrevhistory ../../src/decode.c:3051...

8.8CVSS0.01232EPSS

Exploits1References2

Cvelist•added 2021/05/17 8:20 p.m.•19 views

CVE-2020-21832

A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read2004compressedsection ../../src/decode.c:2417...

8.9AI score0.01232EPSS

Exploits1References2

Cvelist•added 2021/05/17 7:46 p.m.•21 views

CVE-2020-21827

A heap based buffer overflow vulnerability exists in GNU LibreDWG 0.10 via read2004compressedsection ../../src/decode.c:2379...

7.8AI score0.00981EPSS

Exploits1References3

CNNVD•added 2021/05/17 12:0 a.m.•3 views

GNU LibreDWG 缓冲区错误漏洞

LibreDWG is a free C library for reading and writing DWG files. A heap buffer overflow vulnerability exists in GNU LibreDWG version 0.10. An attacker can exploit this vulnerability via the read2004sectionappinfo ... /... /src/decode.c:2842 to exploit the vulnerability and cause a heap buffer...

8.8CVSS6.2AI score0.01372EPSS

Exploits1References4

Positive Technologies•added 2021/05/17 12:0 a.m.•4 views

PT-2021-10675 · Gnu · Gnu Libredwg

Name of the Vulnerable Software and Affected Versions: GNU LibreDWG version 0.10 Description: A heap-based buffer overflow issue exists, which can be triggered via the read 2004 compressed section function in the decode.c file. Recommendations: For GNU LibreDWG version 0.10, consider applying a...

7.8CVSS7.6AI score0.00981EPSS

Exploits1References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by