Lucene search
K

20 matches found

Debian CVE
Debian CVE
added 2026/04/16 5:27 p.m.5 views

CVE-2026-27820

zlib is a Ruby interface for the zlib compression/decompression library. Versions 3.0.0 and below, 3.1.0, 3.1.1, 3.2.0 and 3.2.1 contain a buffer overflow vulnerability in the Zlib::GzipReader. The zstreambufferungets function prepends caller-provided bytes ahead of previously produced output but...

9.8CVSS8.1AI score0.00561EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/09 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-32288

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the old...

5.5CVSS5.5AI score0.0029EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/02/26 12:0 a.m.13 views

PT-2026-22208

Name of the Vulnerable Software and Affected Versions NVDA Dev & Test Toolbox versions 2.0 through 8.0 Description A security issue exists in the Log Reader feature of the NVDA Dev & Test Toolbox add-on. Maliciously crafted log files can lead to arbitrary code execution when a user reads them usi...

7.8CVSS6.5AI score0.002EPSS
Exploits0References9
Snyk
Snyk
added 2026/02/24 1:29 a.m.5 views

Integer Overflow or Wraparound

Overview Magick.NET-Q16-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.6CVSS6AI score0.00319EPSS
Exploits0References2
Rosalinux
Rosalinux
added 2026/02/16 7:14 a.m.14 views

Advisory ROSA-SA-2026-3146

Software: grafana 9.2.10 OS: ROSA Virtualization 3.1 unaffected versions = grafana-9.2.10-27.rv31 affected versions grafana-9.2.10-27.rv31 CVE-ID: CVE-2025-22871 BDU-ID: 2025-04014 CVE-Crit: CRITICAL CVE-DESC.: A vulnerability in the net/http package of the Go programming language is related to...

10CVSS8.2AI score0.99999EPSS
Exploits29
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-2166

Malware in sbrugna...

10CVSS9.1AI score0.06316EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2019-10878

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Teeworlds 0.7.2, there is a failed bounds check in CDataFileReader::GetData and CDataFileReader::ReplaceData and related functions in...

9.8CVSS8.8AI score0.03938EPSS
Exploits0References2
OSV
OSV
added 2023/09/11 2:15 p.m.1 views

CVE-2019-16471

Adobe Acrobat Reader versions 2019.021.20056 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.0032EPSS
Exploits0References1
OSV
OSV
added 2023/07/14 1:49 p.m.4 views

USN-6231-1 linux-oem-6.1 vulnerabilities

It was discovered that the XFS file system implementation in the Linux kernel did not properly perform metadata validation when mounting certain images. An attacker could use this to specially craft a file system image that, when mounted, could cause a denial of service system crash. CVE-2023-212...

7.8CVSS6.9AI score0.00495EPSS
Exploits2References6
SUSE CVE
SUSE CVE
added 2023/02/15 3:35 a.m.2 views

SUSE CVE-2021-46822

The PPM reader in libjpeg-turbo through 2.0.90 mishandles use of tjLoadImage for loading a 16-bit binary PPM file into a grayscale buffer and loading a 16-bit binary PGM file into an RGB buffer. This is related to a heap-based buffer overflow in the getwordrgbrow function in rdppm.c...

5.5CVSS7.4AI score0.01002EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/02/01 12:0 a.m.5 views

The vulnerability of the Foxit Reader text viewer program and the Foxit PhantomPDF PDF editing program, related to the execution of operations outside the buffer in memory, allows an attacker to execute arbitrary code.

The vulnerability of the Foxit Reader text viewer program and the Foxit PhantomPDF PDF editing program lies in the execution of operations outside of the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code through a specially created malicious web pa...

10CVSS8AI score0.00385EPSS
Exploits0References6Affected Software2
RedHat Linux
RedHat Linux
added 2021/11/09 5:42 p.m.1 views

python-pillow: Excessive memory allocation in ICNS image reader

A flaw was found in python-pillow. Attackers can cause a denial of service memory consumption because the reported size of a contained image is not properly checked for an ICNS container, and thus an attempted memory allocation can be very large...

7.5CVSS7.2AI score0.04851EPSS
Exploits0References4
OSV
OSV
added 2021/04/08 11:15 p.m.1 views

DEBIAN-CVE-2021-3482

A flaw was found in Exiv2 in versions before and including 0.27.4-RC1. Improper input validation of the rawData.size property in Jp2Image::readMetadata in jp2image.cpp can lead to a heap-based buffer overflow via a crafted JPG image containing malicious EXIF data...

6.5CVSS6.6AI score0.02295EPSS
Exploits0References1
OSV
OSV
added 2019/10/17 9:15 p.m.1 views

CVE-2019-8174

Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017.011.30148 and earlier, 2015.006.30503 and earlier, and 2015.006.30503 and earlier have an untrusted pointer dereference vulnerability. Successful exploitation could lead to arbitrary code execution...

8.8CVSS7.8AI score0.03668EPSS
Exploits0References1
CNVD
CNVD
added 2019/05/15 12:0 a.m.3 views

Adobe Acrobat/Reader Out-of-Bounds Read Vulnerability (CNVD-2019-22820)

Adobe Reader also known as Acrobat Reader is a PDF file reader developed by Adobe.Adobe Acrobat is a PDF editing software developed by Adobe. Adobe Acrobat/Reader has an out-of-bounds read vulnerability. An attacker can exploit this vulnerability to obtain information...

8.8CVSS6.7AI score0.08534EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2019/03/06 9:52 a.m.3 views

New Google Chrome Zero-Day Vulnerability Found Actively Exploited in the Wild

You must update your Google Chrome immediately to the latest version of the web browsing application. Security researcher Clement Lecigne of Google's Threat Analysis Group discovered and reported a high severity vulnerability in Chrome late last month that could allow remote attackers to execute...

6.5CVSS8.7AI score0.61537EPSS
Exploits10
RedHat Linux
RedHat Linux
added 2018/10/24 10:6 p.m.6 views

OpenJDK: Infinite loop in RIFF format reader (Sound, 8205361)

Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Sound. Supported versions that are affected are Java SE: 6u201, 7u191 and 8u182; Java SE Embedded: 8u181; JRockit: R28.3.19. Easily exploitable vulnerability allows unauthenticated attacker with...

5.3CVSS7.3AI score0.07EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2017/07/20 5:49 p.m.2 views

OpenJDK: reading of unprocessed image data in JPEGImageReader (2D, 8169209)

It was discovered that the JPEGImageReader implementation in the 2D component of OpenJDK would, in certain cases, read all image data even if it was not used later. A specially crafted image could cause a Java application to temporarily use an excessive amount of CPU and memory...

5.3CVSS7.3AI score0.0345EPSS
Exploits0References4
OSV
OSV
added 2016/12/15 6:59 a.m.2 views

CVE-2016-6852

An issue was discovered in Open-Xchange OX App Suite before 7.8.2-rev8. Users can provide local file paths to the RSS reader; the response and error code give hints about whether the provided file exists or not. Attackers may discover specific system files or library versions on the middleware...

4.3CVSS5.8AI score0.00966EPSS
Exploits0References2
OSV
OSV
added 2016/10/13 8:0 p.m.1 views

CVE-2016-6996

Adobe Reader and Acrobat before 11.0.18, Acrobat and Acrobat Reader DC Classic before 15.006.30243, and Acrobat and Acrobat Reader DC Continuous before 15.020.20039 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors...

9.8CVSS6.1AI score0.05038EPSS
Exploits0References3
Rows per page
Query Builder