CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

128 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в elfutils

In elfutils 0.183, an infinite loop was discovered in the function handlesymtab in readelf.c. This allows attackers to cause a denial of service infinite loop through a crafted file...

5.5CVSS6.4AI score0.0002EPSS

Exploits1References2

Broadcom•added 2026/01/27 12:0 a.m.•13 views

In elfutils 0.183, an infinite loop was found in the function handle_symtab in readelf.c

In elfutils 0.183, an infinite loop was found in the function handlesymtab in readelf.c .Which allows attackers to cause a denial of service infinite loop via crafted file...

5.5CVSS5.8AI score0.0002EPSS

Exploits1

OSV•added 2025/10/10 4:5 p.m.•1 views

CLSA-2025-1760112341 binutils: Fix of CVE-2017-9042

CVE-2017-9042: readelf.c fix a possible application crash known as the "cannot be represented in type long" issue...

7.8CVSS6.7AI score0.00395EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2017-17982

Malware in sbrugna...

7.8CVSS7.7AI score0.00395EPSS

Exploits0References8

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-17983

Malware in sbrugna...

7.8CVSS6.9AI score0.00471EPSS

Exploits0References7

CNVD•added 2025/02/26 12:0 a.m.•1 views

GNU elfutils Buffer Overflow Vulnerability

GNU elfutils is an open source toolset for working with binaries, target files and shared libraries in the ELF Executable and Linkable Format format. GNU elfutils suffers from a buffer overflow vulnerability that stems from improper handling of z/x parameters by the...

7.8CVSS7.3AI score0.00043EPSS

Exploits1References1

RedhatCVE•added 2025/02/18 9:24 a.m.•5 views

CVE-2025-1371

A flaw was found in GNU elfutils. This vulnerability allows a NULL pointer dereference via the handledynamicsymtab function in readelf.c. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ea...

3.3CVSS6.3AI score0.00026EPSS

Exploits0References10

CNNVD•added 2025/02/17 12:0 a.m.•1 views

Elfutils 安全漏洞

7.8CVSS7.2AI score0.00043EPSS

Exploits1References8

Tenable Nessus•added 2024/04/19 12:0 a.m.•20 views

EulerOS Virtualization 2.10.1 : binutils (EulerOS-SA-2024-1542)

According to the versions of the binutils package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - Heap buffer overflow vulnerability in binutils readelf before 2.40 via function findsectioninset in file readelf.c. CVE-2022-448...

7.8CVSS5.9AI score0.00024EPSS

Exploits1References2

Tenable Nessus•added 2024/04/08 12:0 a.m.•27 views

EulerOS 2.0 SP9 : binutils (EulerOS-SA-2024-1482)

According to the versions of the binutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Heap buffer overflow vulnerability in binutils readelf before 2.40 via function findsectioninset in file readelf.c. CVE-2022-44840 Note that...

7.8CVSS6AI score0.00024EPSS

Exploits1References2

RedhatCVE•added 2024/02/20 9:38 p.m.•38 views

CVE-2024-25260

A NULL pointer dereference vulnerability in the elfutils library has been discovered. This vulnerability occurs within the handleverdef function in the readelf.c source file. A NULL pointer dereference typically happens when a program attempts to access memory using a pointer that is not pointing...

4CVSS4AI score0.00014EPSS

Exploits1References6

OSV•added 2024/02/20 6:15 p.m.•12 views

CVE-2024-25260

elfutils v0.189 was discovered to contain a NULL pointer dereference via the handleverdef function at readelf.c...

4CVSS6.8AI score

Exploits0References3

OSV•added 2024/02/20 6:15 p.m.•0 views

AZL-38203 CVE-2024-25260 affecting package elfutils for versions less than 0.189-6

elfutils v0.189 was discovered to contain a NULL pointer dereference via the handleverdef function at readelf.c...

4CVSS6.6AI score0.00014EPSS

Exploits1References1

Prion•added 2024/02/20 6:15 p.m.•12 views

Null pointer dereference

elfutils v0.189 was discovered to contain a NULL pointer dereference via the handleverdef function at readelf.c...

7.5AI score0.00014EPSS

Exploits1References3

Cvelist•added 2024/02/20 12:0 a.m.•24 views

CVE-2024-25260

elfutils v0.189 was discovered to contain a NULL pointer dereference via the handleverdef function at readelf.c...

7.1AI score0.00014EPSS

Exploits1References3

CVE•added 2024/02/20 12:0 a.m.•3287 views

CVE-2024-25260

The CVE-2024-25260 affecting elfutils concerns a NULL pointer dereference in readelf.c (handle_verdef function) when using elfutils v0.189. The issue is tied to versions before 0.189-6 per connected data; impact is limited to availability (crash/denial of service) with no confidentiality or integ...

4CVSS6.9AI score0.00014EPSS

Exploits1References3Affected Software1

Positive Technologies•added 2023/11/13 12:0 a.m.•1 views

PT-2023-8712 · Elfutils +3 · Elfutils +3

Name of the Vulnerable Software and Affected Versions: elfutils version 0.189 Description: The issue is related to a NULL pointer dereference via the handle verdef function at readelf.c in the elfutils utility. This could allow an attacker to cause a denial of service. Recommendations: For elfuti...

5.3CVSS4.9AI score0.00043EPSS

Exploits4References33

Veracode•added 2023/10/11 7:3 p.m.•15 views

Improper Access Control

libfile.so is vulnerable to Improper Access Control. The vulnerability exists in dobidnote function at readelf.c due to improper restrictions which allows an attacker to perform unauthorized actions using a specially crafted .notes section...

5.5CVSS6.7AI score0.00138EPSS

Exploits0References5Affected Software1

Veracode•added 2023/08/30 12:8 p.m.•28 views

Heap Buffer Overflow

binutils is vulnerable to Heap Buffer Overflow. The vulnerability exists in the findsectioninset function of readelf.c, which allows an attacker to cause an application crash by providing a maliciously crafted input...

7.8CVSS6.6AI score0.00024EPSS

Exploits1References2Affected Software1