CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

266 matches found

CVE•added 2026/04/06 3:22 p.m.•12 views

CVE-2026-34380

OpenEXRFix: CVE-2026-34380 describes a signed integer overflow in undo_pxr24_impl() in OpenEXRCore (src/lib/OpenEXRCore/internal_pxr24.c) that could cause the decoding loop to write beyond the allocated output buffer. Affected versions are 3.2.0 up to but not including 3.2.7, 3.3.9, and 3.4.9. Th...

5.9CVSS5.9AI score0.00071EPSS

Exploits1References4Affected Software1

Cvelist•added 2026/04/06 3:22 p.m.•22 views

CVE-2026-34380 OpenEXR has a signed integer overflow (undefined behavior) in undo_pxr24_impl may allow bounds-check bypass in PXR24 decompression

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From 3.2.0 to before 3.2.7, 3.3.9, and 3.4.9, a signed integer overflow exists in undopxr24impl in src/lib/OpenEXRCore/internalpxr24.c at line 377. The...

5.9CVSS0.00071EPSS

Exploits1References4

Positive Technologies•added 2026/04/06 12:0 a.m.•1 views

PT-2026-30659

Name of the Vulnerable Software and Affected Versions OpenEXR versions 3.2.0 through 3.2.6, 3.3.9, and 3.4.9 Description A signed integer overflow exists in the undo pxr24 impl function within the OpenEXR library. The expression uint64 tw 3 calculates w 3 as a signed 32-bit integer before...

7.1CVSS5.2AI score0.0009EPSS

Exploits3References48

Tenable Nessus•added 2026/04/06 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-34380

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From 3.2.0 to...

5.9CVSS5.9AI score0.00071EPSS

Exploits1References4

Positive Technologies•added 2026/04/06 12:0 a.m.•1 views

PT-2026-30662

Name of the Vulnerable Software and Affected Versions OpenEXR versions 3.1.0 through 3.2.6, versions prior to 3.3.9, and versions prior to 3.4.9 Description OpenEXR, an image storage format used in the motion picture industry, contains a flaw in the internal exr undo piz function. Specifically, t...

8.6CVSS5.9AI score0.0009EPSS

Exploits4References60

Fedora•added 2026/04/04 12:49 a.m.•2 views

[SECURITY] Fedora 43 Update: vim-9.2.280-1.fc43

VIM VIsual editor iMproved is an updated and improved version of the vi editor. Vi was the first real screen-based editor for UNIX, and is still very popular. VIM improves on vi by adding new features: multiple windows, multi-level undo, block highlighting and more...

9.2CVSS5.9AI score0.00016EPSS

Exploits0

Anthropic•added 2026/03/30 11:19 p.m.•8 views

ANT-2026-P2DWB2SK · mastodon · Signature-bypass

signature-bypass high GHSA-chgx-jx3p-rf73 Severity Claude high · Security research firm high · Maintainer unknown Discovered by Claude Mythos Preview REPORT Anthropic's analysis, sealed at approval. Disclosure to the maintainer was performed by Doyensec. ANT-2026-P2DWB2SK: LD-Signature bypass via...

9.8CVSS7.3AI score0.00367EPSS

Exploits0

Fedora•added 2026/03/27 1:18 a.m.•2 views

[SECURITY] Fedora 43 Update: vim-9.2.240-1.fc43

7.3CVSS5.9AI score0.00009EPSS

Exploits0

Fedora•added 2026/03/20 12:18 a.m.•4 views

[SECURITY] Fedora 44 Update: vim-9.2.148-1.fc44

7.8CVSS5.9AI score0.00017EPSS

Exploits0

Fedora•added 2026/03/19 1:11 a.m.•4 views

[SECURITY] Fedora 42 Update: vim-9.2.148-1.fc42

7.8CVSS5.8AI score0.00017EPSS

Exploits0

Fedora•added 2026/03/17 12:49 a.m.•4 views

[SECURITY] Fedora 43 Update: vim-9.2.148-1.fc43

5.5CVSS5.8AI score0.00016EPSS

Exploits0

Fedora•added 2026/03/08 1:26 a.m.•3 views

[SECURITY] Fedora 43 Update: vim-9.2.112-2.fc43

7.8CVSS5.8AI score0.00017EPSS

Exploits0

Fedora•added 2026/03/07 12:52 a.m.•6 views

[SECURITY] Fedora 42 Update: gimp-3.0.8-5.fc42

GIMP GNU Image Manipulation Program is a powerful image composition and editing program, which can be extremely useful for creating logos and other graphics for web pages. GIMP has many of the tools and filters you would expe ct to find in similar commercial offerings, and some interesting extras...

6.5CVSS5.7AI score0.0001EPSS

Exploits1

Packet Storm News•added 2026/03/03 12:0 a.m.•0 views

Regenerator 2000

Regenerator 2000 is an interactive disassembler for the CPU 6502, focused mostly on Commodore 8-bit computers. Features a TUI with modern features like x-ref, undo/redo, arrows, keyboard-driven, mcp server, VICE debugger and more! This is the coolest thing we have added to the archive today...

6AI score

Exploits0

Fedora•added 2026/03/01 12:53 a.m.•3 views

[SECURITY] Fedora 43 Update: gimp-3.0.8-5.fc43

6.5CVSS7AI score0.0001EPSS

Exploits1

Fedora•added 2026/02/26 1:12 a.m.•6 views

[SECURITY] Fedora 43 Update: vim-9.2.045-1.fc43

7.5CVSS5.9AI score0.00048EPSS

Exploits0

Fedora•added 2026/02/26 12:56 a.m.•5 views

[SECURITY] Fedora 42 Update: vim-9.2.045-1.fc42

7.5CVSS5.9AI score0.00048EPSS

Exploits0

Fedora•added 2026/02/16 1:31 a.m.•4 views

[SECURITY] Fedora 42 Update: vim-9.1.2146-1.fc42

6.6CVSS5.4AI score0.00007EPSS

Exploits1

RedhatCVE•added 2026/02/09 1:33 a.m.•3 views

CVE-2026-2109

A vulnerability was identified in jsbroks COCO Annotator up to 0.11.1. Affected is an unknown function of the file /api/undo/ of the component Delete Category Handler. Such manipulation of the argument ID leads to improper authorization. The attack may be launched remotely. The exploit is publicl...

8.1CVSS5.4AI score0.0002EPSS

Exploits1References1

OSV•added 2026/02/07 8:15 p.m.•2 views

CVE-2026-2109

8.1CVSS5.8AI score

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by