Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2026/05/25 2:4 p.m.3 views

SUSE-SU-2026:2057-1 Security update for libpng16

This update for libpng16 fixes the following issue: - CVE-2026-34757: information disclosure and data corruption due to use-after-free in pngsetPLTE, pngsettRNS and pngsethIST bsc1261957...

5.1CVSS5.8AI score0.00006EPSS
Exploits1References3
OSV
OSVadded 2026/05/05 12:34 p.m.5 views

CLSA-2026-1777984435 libpng: Fix of 2 CVEs

CVE-2026-33416: fix use-after-free via pointer aliasing in pngsettRNS and pngsetPLTE - CVE-2026-33636: fix out-of-bounds read/write in ARM NEON palette expansion...

7.6CVSS6.1AI score0.00051EPSS
Exploits1References1
AlpineLinux
AlpineLinuxadded 2026/04/09 2:41 p.m.2 views

CVE-2026-34757

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.0.9 to before 1.6.57, passing a pointer obtained from pnggetPLTE, pnggettRNS, or pnggethIST back into the corresponding setter on the same...

5.1CVSS6AI score0.00006EPSS
Exploits1References6
Vulnrichment
Vulnrichmentadded 2026/04/09 2:41 p.m.0 views

CVE-2026-34757 LIBPNG has a yse-after-free in png_set_PLTE, png_set_tRNS and png_set_hIST leading to corrupted chunk data and potential heap information disclosure

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. From 1.0.9 to before 1.6.57, passing a pointer obtained from pnggetPLTE, pnggettRNS, or pnggethIST back into the corresponding setter on the same...

5.1CVSS6AI score0.00006EPSS
Exploits1References5
CVE
CVEadded 2026/04/09 2:41 p.m.85 views

CVE-2026-34757

CVE-2026-34757 affects libpng 1.0.9 through before 1.6.57. The vulnerability arises when a pointer obtained from png_get_PLTE, png_get_tRNS, or png_get_hIST is passed back into the corresponding setter on the same png_struct/png_info pair, causing the setter to read from freed memory and copy it ...

5.1CVSS6AI score0.00006EPSS
Exploits1References6Affected Software1
Microsoft CVE
Microsoft CVEadded 2026/03/29 8:2 a.m.2 views

LIBPNG has use-after-free via pointer aliasing in `png_set_tRNS` and `png_set_PLTE`

...

7.5CVSS5.8AI score0.00026EPSS
Exploits1
NVD
NVDadded 2026/03/26 5:16 p.m.0 views

CVE-2026-33416

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. In versions 1.2.1 through 1.6.55, pngsettRNS and pngsetPLTE each alias a heap-allocated buffer between pngstruct and pnginfo, sharing a single allocation acros...

7.5CVSS0.00026EPSS
Exploits1References6
Zero Day Initiative
Zero Day Initiativeadded 2015/08/24 12:0 a.m.13 views

Hewlett-Packard KeyView IDOL GIF Parsing Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Hewlett-Packard KeyView IDOL. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The flaw exists within the handling...

7.5CVSS6.7AI score0.15716EPSS
Exploits0References1
Rows per page
Query Builder