Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

27 matches found

Tenable Nessus
Tenable Nessusadded 2025/12/08 12:0 a.m.1 views

Fedora 43 : tinygltf (2025-47bff6f74d)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-47bff6f74d advisory. Update to 2.9.7 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...

5.6AI score
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2025/12/08 12:0 a.m.2 views

Fedora 42 : tinygltf (2025-ac8ed4a110)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-ac8ed4a110 advisory. Update to 2.9.7 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested for this...

5.6AI score
Exploits0References1
OpenVAS
OpenVASadded 2025/12/08 12:0 a.m.7 views

Fedora: Security Advisory (FEDORA-2025-ac8ed4a110)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8AI score
Exploits0References2
OpenVAS
OpenVASadded 2025/12/08 12:0 a.m.1 views

Fedora: Security Advisory (FEDORA-2025-47bff6f74d)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8AI score
Exploits0References2
Fedora
Fedoraadded 2025/12/07 1:26 a.m.5 views

[SECURITY] Fedora 42 Update: tinygltf-2.9.7-1.fc42

TinyGLTF is a header only C++11 glTF 2.0 library...

7AI score
Exploits0
Fedora
Fedoraadded 2025/12/07 12:57 a.m.5 views

[SECURITY] Fedora 43 Update: tinygltf-2.9.7-1.fc43

TinyGLTF is a header only C++11 glTF 2.0 library...

7AI score
Exploits0
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-42444

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.08462EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/02/06 12:49 a.m.4 views

CVE-2022-3008

The tinygltf library uses the C library function wordexp to perform file path expansion on untrusted paths that are provided from the input file. This function allows for command injection by using backticks. An attacker could craft an untrusted path input that would result in a path expansion. W...

8.8CVSS7AI score0.08462EPSS
Exploits1References1
OpenVAS
OpenVASadded 2024/11/27 12:0 a.m.7 views

Ubuntu: Security Advisory (USN-7129-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.08462EPSS
Exploits1References2
OSV
OSVadded 2024/11/26 3:43 p.m.0 views

USN-7129-1 TinyGLTF vulnerability

It was discovered that TinyGLTF performed file path expansion in an insecure way on certain inputs. An attacker could possibly use this issue to cause a denial of service, or execute arbitrary code...

8.8CVSS6AI score0.08462EPSS
Exploits1References2
Ubuntu
Ubuntuadded 2024/11/26 3:43 p.m.13 views

USN-7129-1: TinyGLTF vulnerability

It was discovered that TinyGLTF performed file path expansion in an insecure way on certain inputs. An attacker could possibly use this issue to cause a denial of service, or execute arbitrary code...

8.8CVSS8.2AI score0.08462EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2024/11/26 12:0 a.m.4 views

Ubuntu 22.04 LTS : TinyGLTF vulnerability (USN-7129-1)

The remote Ubuntu 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-7129-1 advisory. It was discovered that TinyGLTF performed file path expansion in an insecure way on certain inputs. An attacker could possibly use this issue to cause a denial of...

8.8CVSS8.2AI score0.08462EPSS
Exploits1References2
OpenVAS
OpenVASadded 2022/09/22 12:0 a.m.15 views

Debian: Security Advisory (DSA-5232-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.9AI score0.08462EPSS
Exploits1References4
Debian
Debianadded 2022/09/21 1:57 p.m.24 views

[SECURITY] [DSA 5232-1] tinygltf security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5232-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff September 21, 2022 https://www.debian.org/security/faq -...

8.8CVSS8.4AI score0.08462EPSS
Exploits1
Tenable Nessus
Tenable Nessusadded 2022/09/21 12:0 a.m.27 views

Debian DSA-5232-1 : tinygltf - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5232 advisory. It was discovered that the wordexp function of tinygltf, a library to load/save glTF GL Transmission Format files was susceptible to command execution when processing...

8.8CVSS7.9AI score0.08462EPSS
Exploits1References6
NVD
NVDadded 2022/09/05 9:15 a.m.13 views

CVE-2022-3008

The tinygltf library uses the C library function wordexp to perform file path expansion on untrusted paths that are provided from the input file. This function allows for command injection by using backticks. An attacker could craft an untrusted path input that would result in a path expansion. W...

8.8CVSS0.08462EPSS
Exploits1References5
OSV
OSVadded 2022/09/05 9:15 a.m.1 views

DEBIAN-CVE-2022-3008

The tinygltf library uses the C library function wordexp to perform file path expansion on untrusted paths that are provided from the input file. This function allows for command injection by using backticks. An attacker could craft an untrusted path input that would result in a path expansion. W...

8.8CVSS8AI score0.08462EPSS
Exploits1References1
OSV
OSVadded 2022/09/05 9:15 a.m.15 views

CVE-2022-3008

The tinygltf library uses the C library function wordexp to perform file path expansion on untrusted paths that are provided from the input file. This function allows for command injection by using backticks. An attacker could craft an untrusted path input that would result in a path expansion. W...

8.8CVSS7.1AI score
Exploits0References5
UbuntuCve
UbuntuCveadded 2022/09/05 9:15 a.m.27 views

CVE-2022-3008

The tinygltf library uses the C library function wordexp to perform file path expansion on untrusted paths that are provided from the input file. This function allows for command injection by using backticks. An attacker could craft an untrusted path input that would result in a path expansion. W...

8.8CVSS7.2AI score0.08462EPSS
Exploits1References6
OSV
OSVadded 2022/09/05 9:15 a.m.0 views

UBUNTU-CVE-2022-3008

The tinygltf library uses the C library function wordexp to perform file path expansion on untrusted paths that are provided from the input file. This function allows for command injection by using backticks. An attacker could craft an untrusted path input that would result in a path expansion. W...

8.8CVSS7.3AI score0.08462EPSS
Exploits1References7
Rows per page
Query Builder