CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

268 matches found

OSV•added 2026/04/06 4:16 p.m.•2 views

DEBIAN-CVE-2026-34380

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From 3.2.0 to before 3.2.7, 3.3.9, and 3.4.9, a signed integer overflow exists in undopxr24impl in src/lib/OpenEXRCore/internalpxr24.c at line 377. The...

5.9CVSS5.4AI score0.00255EPSS

Exploits1References1

Snyk•added 2026/04/06 4:9 p.m.•3 views

Integer Overflow or Wraparound

Overview OpenEXR is a Python bindings for the OpenEXR image file format Affected versions of this package are vulnerable to Integer Overflow or Wraparound in the undopxr24impl function. An attacker can cause memory corruption and potentially execute arbitrary code by providing a specially crafted...

6CVSS6.1AI score0.00255EPSS

Exploits1References2

Cvelist•added 2026/04/06 3:22 p.m.•22 views

CVE-2026-34380 OpenEXR has a signed integer overflow (undefined behavior) in undo_pxr24_impl may allow bounds-check bypass in PXR24 decompression

5.9CVSS0.00255EPSS

Exploits1References4

CVE•added 2026/04/06 3:22 p.m.•17 views

CVE-2026-34380

OpenEXRFix: CVE-2026-34380 describes a signed integer overflow in undo_pxr24_impl() in OpenEXRCore (src/lib/OpenEXRCore/internal_pxr24.c) that could cause the decoding loop to write beyond the allocated output buffer. Affected versions are 3.2.0 up to but not including 3.2.7, 3.3.9, and 3.4.9. Th...

5.9CVSS5.9AI score0.00255EPSS

Exploits1References4Affected Software1

Positive Technologies•added 2026/04/06 12:0 a.m.•1 views

PT-2026-30659

Name of the Vulnerable Software and Affected Versions OpenEXR versions 3.2.0 through 3.2.6, 3.3.9, and 3.4.9 Description A signed integer overflow exists in the undo pxr24 impl function within the OpenEXR library. The expression uint64 tw 3 calculates w 3 as a signed 32-bit integer before...

7.1CVSS5.2AI score0.00271EPSS

Exploits3References48

Positive Technologies•added 2026/04/06 12:0 a.m.•1 views

PT-2026-30662

Name of the Vulnerable Software and Affected Versions OpenEXR versions 3.1.0 through 3.2.6, versions prior to 3.3.9, and versions prior to 3.4.9 Description OpenEXR, an image storage format used in the motion picture industry, contains a flaw in the internal exr undo piz function. Specifically, t...

8.6CVSS5.9AI score0.00271EPSS

Exploits4References69

Tenable Nessus•added 2026/04/06 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2026-34380

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From 3.2.0 to...

5.9CVSS5.9AI score0.00255EPSS

Exploits1References4

Fedora•added 2026/04/04 12:49 a.m.•2 views

[SECURITY] Fedora 43 Update: vim-9.2.280-1.fc43

VIM VIsual editor iMproved is an updated and improved version of the vi editor. Vi was the first real screen-based editor for UNIX, and is still very popular. VIM improves on vi by adding new features: multiple windows, multi-level undo, block highlighting and more...

9.2CVSS5.9AI score0.00542EPSS

Exploits0

Anthropic•added 2026/03/30 11:19 p.m.•15 views

ANT-2026-P2DWB2SK · mastodon · Signature-bypass

signature-bypass high GHSA-chgx-jx3p-rf73 Severity Claude high · Security research firm high · Maintainer unknown Discovered by Claude Mythos Preview REPORT Anthropic's analysis, sealed at approval. Disclosure to the maintainer was performed by Doyensec. ANT-2026-P2DWB2SK: LD-Signature bypass via...

9.8CVSS7.3AI score0.01364EPSS

Exploits0

Fedora•added 2026/03/27 1:18 a.m.•2 views

[SECURITY] Fedora 43 Update: vim-9.2.240-1.fc43

7.3CVSS5.9AI score0.00734EPSS

Exploits0

Fedora•added 2026/03/20 12:18 a.m.•5 views

[SECURITY] Fedora 44 Update: vim-9.2.148-1.fc44

7.8CVSS5.9AI score0.01162EPSS

Exploits0

Fedora•added 2026/03/19 1:11 a.m.•5 views

[SECURITY] Fedora 42 Update: vim-9.2.148-1.fc42

7.8CVSS5.8AI score0.01162EPSS

Exploits0

Fedora•added 2026/03/17 12:49 a.m.•5 views

[SECURITY] Fedora 43 Update: vim-9.2.148-1.fc43

5.5CVSS5.8AI score0.00133EPSS

Exploits0

Fedora•added 2026/03/08 1:26 a.m.•3 views

[SECURITY] Fedora 43 Update: vim-9.2.112-2.fc43

7.8CVSS5.8AI score0.01162EPSS

Exploits0

Fedora•added 2026/03/07 12:52 a.m.•6 views

[SECURITY] Fedora 42 Update: gimp-3.0.8-5.fc42

GIMP GNU Image Manipulation Program is a powerful image composition and editing program, which can be extremely useful for creating logos and other graphics for web pages. GIMP has many of the tools and filters you would expe ct to find in similar commercial offerings, and some interesting extras...

6.5CVSS5.7AI score0.00485EPSS

Exploits1

Packet Storm News•added 2026/03/03 12:0 a.m.•1 views

Regenerator 2000

Regenerator 2000 is an interactive disassembler for the CPU 6502, focused mostly on Commodore 8-bit computers. Features a TUI with modern features like x-ref, undo/redo, arrows, keyboard-driven, mcp server, VICE debugger and more! This is the coolest thing we have added to the archive today...

6AI score

Exploits0

Fedora•added 2026/03/01 12:53 a.m.•4 views

[SECURITY] Fedora 43 Update: gimp-3.0.8-5.fc43

6.5CVSS7AI score0.00485EPSS

Exploits1

Fedora•added 2026/02/26 1:12 a.m.•6 views

[SECURITY] Fedora 43 Update: vim-9.2.045-1.fc43

7.5CVSS5.9AI score0.00284EPSS

Exploits0

Fedora•added 2026/02/26 12:56 a.m.•6 views

[SECURITY] Fedora 42 Update: vim-9.2.045-1.fc42