Lucene search
K

8 matches found

Cvelist
Cvelist
added 2026/07/01 4:28 p.m.39 views

CVE-2026-20215 ClamAV 7Zip File Format Processing Out-of-Bounds Memory Corruption Vulnerability

A vulnerability in the 7z file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device. This vulnerability is due to improper boundary checks for content in 7z file...

7.5CVSS0.00389EPSS
Exploits0References1
CNVD
CNVD
added 2025/03/27 12:0 a.m.2 views

GPT Academic path traversal vulnerability (CNVD-2025-22739)

GPT Academic is an interface that provides pragmatic interactions for LLM grand language models such as GPT/GLM. GPT Academic suffers from a path traversal vulnerability that stems from an unverified 7z file extraction, which can be exploited by an attacker to perform arbitrary file writes, leadi...

8.8CVSS8.2AI score0.01478EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:10 a.m.4 views

SUSE CVE-2015-8922

The readCodersInfo function in archivereadsupportformat7zip.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted 7z file, related to the 7zfolder struct...

5.5CVSS6.7AI score0.02058EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:8 a.m.4 views

SUSE CVE-2016-1372

ClamAV aka Clam AntiVirus before 0.99.2 allows remote attackers to cause a denial of service application crash via a crafted 7z file...

5.5CVSS6.7AI score0.01606EPSS
Exploits1References5
OSV
OSV
added 2022/08/25 6:15 p.m.5 views

CVE-2022-2463

Rockwell Automation ISaGRAF Workbench software versions 6.0 through 6.6.9 are affected by a Path Traversal vulnerability. A crafted malicious .7z exchange file may allow an attacker to gain the privileges of the ISaGRAF Workbench software when opened. If the software is running at the SYSTEM leve...

7.8CVSS5.8AI score0.02625EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/08/15 12:0 a.m.6 views

The vulnerability of the application development environment for ISaGRAF Workbench programmable logic controllers arises from incorrect restrictions on the path name to the restricted access directory. This allows attackers to escalate their privileges.

The vulnerability in the development environment for ISaGRAF Workbench programmable logic controllers is related to an incorrect limitation on the path name to the restricted access directory. Exploiting this vulnerability could allow a attacker to increase their privileges using a specially...

6.1CVSS7.2AI score0.02625EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2016/10/03 6:59 p.m.2 views

DEBIAN-CVE-2016-1372

ClamAV aka Clam AntiVirus before 0.99.2 allows remote attackers to cause a denial of service application crash via a crafted 7z file...

5.5CVSS6.7AI score0.01606EPSS
Exploits1References1
OSV
OSV
added 2016/06/14 12:0 a.m.8 views

UBUNTU-CVE-2016-1372

ClamAV aka Clam AntiVirus before 0.99.2 allows remote attackers to cause a denial of service application crash via a crafted 7z file...

5.5CVSS6.4AI score0.01606EPSS
Exploits1References5
Rows per page
Query Builder