PT-2025-13195 · Upx +2 · Upx +2

Name of the Vulnerable Software and Affected Versions: UPX versions up to 5.0.0 Description: A problematic issue was found in the function PackLinuxElf64::un DT INIT of the file src/p lx elf.cpp, leading to a heap-based buffer overflow. The attack can be launched on the local host. Recommendation...

CVE-2021-46179

Reachable Assertion vulnerability in upx before 4.0.0 allows attackers to cause a denial of service via crafted file passed to the the readx function...

UPX 缓冲区错误漏洞

UPX is a portable and extensible executable compression program. A security vulnerability exists in UPX version 3.96, which stems from an out-of-bounds read access vulnerability found in the PackLinuxElf64::canPack function of the plxelf.cpp file, which could be triggered by an attacker using a...

CVE-2021-30500

Null pointer dereference was found in upx PackLinuxElf::canUnpack in plxelf.cpp,in version UPX 4.0.0. That allow attackers to execute arbitrary code and cause a denial of service via a crafted file...

PT-2022-8874 · Upx +2 · Upx +2

Name of the Vulnerable Software and Affected Versions: UPX version 4.0.0 Description: A heap-based buffer over-read was discovered in the get le32 function in bele.h via a crafted Mach-O file. Recommendations: For UPX version 4.0.0, at the moment, there is no information about a newer version tha...

PT-2020-6422 · Upx +3 · Upx +3

Name of the Vulnerable Software and Affected Versions: upx version 4.0.0 Description: A heap buffer overflow read was discovered in the upx software, specifically due to an imperfect check in the p lx elf.cpp component. This issue can be exploited by a remote attacker to gain access to confidenti...