CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

SUSE CVE•added 2026/03/12 2:4 p.m.•1 views

SUSE CVE-2026-3950

A vulnerability was identified in strukturag libheif up to 1.21.2. This impacts the function Track::load of the file libheif/sequences/track.cc of the component stsz/stts. The manipulation leads to out-of-bounds read. The attack needs to be performed locally. The exploit is publicly available and...

3.3CVSS5.2AI score0.00019EPSS

Exploits0References3

RedhatCVE•added 2026/03/12 11:43 a.m.•0 views

CVE-2026-3950

A flaw was found in libheif. A local attacker could exploit an out-of-bounds read vulnerability in the Track::load function within the stsz/stts component. This manipulation could lead to a Denial of Service DoS, making the affected system or application unavailable...

4.8CVSS5.7AI score0.00019EPSS

Exploits0References10

Tenable Nessus•added 2026/03/12 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2026-3950

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was identified in strukturag libheif up to 1.21.2. This impacts the function Track::load of the file libheif/sequences/track.cc of the component...

4.8CVSS5.3AI score0.00019EPSS

Exploits0References3

EUVD•added 2026/03/11 9:31 p.m.•0 views

EUVD-2026-11344

4.8CVSS5.2AI score0.00019EPSS

Exploits0References8

OSV•added 2026/03/11 8:16 p.m.•3 views

DEBIAN-CVE-2026-3950

3.3CVSS3.9AI score0.00019EPSS

Exploits0References1

NVD•added 2026/03/11 8:16 p.m.•1 views

CVE-2026-3950

4.8CVSS0.00019EPSS

Exploits0References7

UbuntuCve•added 2026/03/11 8:16 p.m.•0 views

CVE-2026-3950

4.8CVSS5.4AI score0.00019EPSS

Exploits0References1

OSV•added 2026/03/11 8:16 p.m.•1 views

UBUNTU-CVE-2026-3950

4.8CVSS5.1AI score0.00019EPSS

Exploits0References2

Debian CVE•added 2026/03/11 7:2 p.m.•2 views

CVE-2026-3950

4.8CVSS3.9AI score0.00019EPSS

Exploits0

Vulnrichment•added 2026/03/11 7:2 p.m.•1 views

CVE-2026-3950 strukturag libheif stsz/stts track.cc load out-of-bounds

4.8CVSS5.2AI score0.00019EPSS

Exploits0References7

CVE•added 2026/03/11 7:2 p.m.•4 views

CVE-2026-3950

CVE-2026-3950 affects strukturag libheif up to 1.21.2. The issue occurs in Track::load (libheif/sequences/track.cc, stsz/stts) and causes an out-of-bounds read. Exploitation requires local access; exploit code is publicly available. A patch exists but is unofficial/not officially approved. Remedi...

4.8CVSS5.2AI score0.00019EPSS

Exploits0References7

Cvelist•added 2026/03/11 7:2 p.m.•26 views

CVE-2026-3950 strukturag libheif stsz/stts track.cc load out-of-bounds

4.8CVSS0.00019EPSS

Exploits0References7

ATTACKERKB•added 2026/03/11 7:2 p.m.•2 views

CVE-2026-3950

4.8CVSS5.2AI score0.00019EPSS

Exploits0References7Affected Software1

CNNVD•added 2026/03/11 12:0 a.m.•2 views

libheif 缓冲区错误漏洞

LibHEIF is a open-source decoder and encoder for the ISO/IEC 23008-12:2017 HEIF file format developed by Struktur. Versions of Struktur that include LibHEIF 1.21.2 and earlier contain a buffer error vulnerability. This vulnerability stems from incorrect operations in the Track::load function with...

4.8CVSS6AI score0.00019EPSS

Exploits0References7

Positive Technologies•added 2026/02/23 12:0 a.m.•0 views

PT-2026-24799

Name of the Vulnerable Software and Affected Versions strukturag libheif versions up to 1.21.2 Description A flaw exists in strukturag libheif, specifically within the Track::load function located in the libheif/sequences/track.cc file, related to the stsz/stts component. This can lead to an...

6.5CVSS5.6AI score0.00033EPSS

Exploits0References34

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by