Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

121 matches found

Cvelist
Cvelistadded 2026/04/17 1:45 p.m.29 views

CVE-2026-6491 libvips nip2 vips7compat.c im_minpos_vec heap-based overflow

A security vulnerability has been detected in libvips up to 8.18.2. The affected element is the function imminposvec of the file libvips/deprecated/vips7compat.c of the component nip2 Handler. Such manipulation of the argument n leads to heap-based buffer overflow. An attack has to be approached...

5.3CVSS0.00006EPSS
Exploits0References7
ATTACKERKB
ATTACKERKBadded 2026/04/17 1:45 p.m.2 views

CVE-2026-6491

A security vulnerability has been detected in libvips up to 8.18.2. The affected element is the function imminposvec of the file libvips/deprecated/vips7compat.c of the component nip2 Handler. Such manipulation of the argument n leads to heap-based buffer overflow. An attack has to be approached...

5.3CVSS5.6AI score0.00006EPSS
Exploits0References7
Packet Storm
Packet Stormadded 2026/03/03 12:0 a.m.103 views

📄 libvips 8.19.0 VIPS Image Extraction Crash / Auditor

This Python script performs a comprehensive security and stability audit of the vips image processing binary. It tests the extractarea function using extreme int32 and uint32 values as well as normal ranges to detect crashes, memory corruption, or buffer overflows. The audit automates setup,...

6AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2026/03/03 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2026-3281

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was detected in libvips 8.19.0. This affects the function vipsbandrankbuild of the file libvips/conversion/bandrank.c. Performing a manipulation...

7.8CVSS6.1AI score0.00015EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2026/03/02 12:42 p.m.4 views

CVE-2026-3281

A flaw was found in libvips. A local attacker can exploit a heap-based buffer overflow vulnerability by manipulating the argument index in the vipsbandrankbuild function. This can lead to information disclosure, data modification, or denial of service...

7.8CVSS6AI score0.00015EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2026/03/02 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2026-3283

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability has been found in libvips 8.19.0. This issue affects the function vipsextractbandbuild of the file libvips/conversion/extract.c. The manipulatio...

7.1CVSS5.1AI score0.0001EPSS
Exploits1References3
Snyk
Snykadded 2026/02/27 6:15 a.m.2 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow via the vipsbandrankbuild function. An attacker can execute arbitrary code, cause a denial of service, or potentially escalate privileges by manipulating the index argument to trigger a heap-based buffer...

7.8CVSS6.4AI score0.00015EPSS
Exploits1References2
Snyk
Snykadded 2026/02/27 6:15 a.m.2 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read via the vipsextractbandbuild function. An attacker can access sensitive information by supplying crafted arguments to trigger an out-of-bounds read. Remediation A fix was pushed into the master branch but not yet...

7.1CVSS5.9AI score0.0001EPSS
Exploits1References2
NVD
NVDadded 2026/02/27 3:16 a.m.5 views

CVE-2026-3282

A flaw has been found in libvips 8.19.0. This vulnerability affects the function vipsunpremultiplybuild of the file libvips/conversion/unpremultiply.c. Executing a manipulation of the argument alphaband can lead to out-of-bounds read. The attack needs to be launched locally. The exploit has been...

7.1CVSS0.0001EPSS
Exploits1References8
OSV
OSVadded 2026/02/27 3:16 a.m.1 views

CVE-2026-3283

A vulnerability has been found in libvips 8.19.0. This issue affects the function vipsextractbandbuild of the file libvips/conversion/extract.c. The manipulation of the argument extractband leads to out-of-bounds read. The attack needs to be performed locally. The exploit has been disclosed to th...

7.1CVSS5.2AI score
Exploits0References8
OSV
OSVadded 2026/02/27 3:16 a.m.5 views

DEBIAN-CVE-2026-3282

A flaw has been found in libvips 8.19.0. This vulnerability affects the function vipsunpremultiplybuild of the file libvips/conversion/unpremultiply.c. Executing a manipulation of the argument alphaband can lead to out-of-bounds read. The attack needs to be launched locally. The exploit has been...

7.1CVSS4.1AI score0.0001EPSS
Exploits1References1
OSV
OSVadded 2026/02/27 3:16 a.m.4 views

UBUNTU-CVE-2026-3284

A vulnerability was found in libvips 8.19.0. Impacted is the function vipsextractareabuild of the file libvips/conversion/extract.c. The manipulation of the argument extractarea results in integer overflow. The attack requires a local approach. The exploit has been made public and could be used...

5.5CVSS5.6AI score0.00013EPSS
Exploits2References10
Debian CVE
Debian CVEadded 2026/02/27 3:2 a.m.7 views

CVE-2026-3284

A vulnerability was found in libvips 8.19.0. Impacted is the function vipsextractareabuild of the file libvips/conversion/extract.c. The manipulation of the argument extractarea results in integer overflow. The attack requires a local approach. The exploit has been made public and could be used...

5.5CVSS4.3AI score0.00013EPSS
Exploits2
Vulnrichment
Vulnrichmentadded 2026/02/27 3:2 a.m.2 views

CVE-2026-3284 libvips extract.c vips_extract_area_build integer overflow

A vulnerability was found in libvips 8.19.0. Impacted is the function vipsextractareabuild of the file libvips/conversion/extract.c. The manipulation of the argument extractarea results in integer overflow. The attack requires a local approach. The exploit has been made public and could be used...

4.8CVSS5.8AI score0.00013EPSS
Exploits2References8
CVE
CVEadded 2026/02/27 2:32 a.m.9 views

CVE-2026-3283

Libvips 8.19.0 is affected by CVE-2026-3283 in function vips_extract_band_build (libvips/conversion/extract.c). Manipulating the extract_band argument can cause an out-of-bounds read. The issue requires local access to exploit and public disclosure exists; a patch is identified as 24795bb3d19d84f...

7.1CVSS4.5AI score0.0001EPSS
Exploits1References8Affected Software1
CVE
CVEadded 2026/02/27 2:32 a.m.11 views

CVE-2026-3282

Affects: libvips 8.19.0. Vulnerable function: vips_unpremultiply_build in libvips/conversion/unpremultiply.c. Root cause: manipulating the argument alpha_band can trigger an out-of-bounds read. Impact: local attacker can potentially read restricted memory; exploit maturity listed as proof-of-conc...

7.1CVSS4.5AI score0.0001EPSS
Exploits1References8Affected Software1
OSV
OSVadded 2026/02/27 2:16 a.m.5 views

DEBIAN-CVE-2026-3281

A vulnerability was detected in libvips 8.19.0. This affects the function vipsbandrankbuild of the file libvips/conversion/bandrank.c. Performing a manipulation of the argument index results in heap-based buffer overflow. The attack must be initiated from a local position. The exploit is now publ...

7.8CVSS5.7AI score0.00015EPSS
Exploits1References1
OSV
OSVadded 2026/02/27 2:16 a.m.2 views

UBUNTU-CVE-2026-3281

A vulnerability was detected in libvips 8.19.0. This affects the function vipsbandrankbuild of the file libvips/conversion/bandrank.c. Performing a manipulation of the argument index results in heap-based buffer overflow. The attack must be initiated from a local position. The exploit is now publ...

7.8CVSS6AI score0.00015EPSS
Exploits1References10
Debian CVE
Debian CVEadded 2026/02/27 2:2 a.m.5 views

CVE-2026-3281

A vulnerability was detected in libvips 8.19.0. This affects the function vipsbandrankbuild of the file libvips/conversion/bandrank.c. Performing a manipulation of the argument index results in heap-based buffer overflow. The attack must be initiated from a local position. The exploit is now publ...

7.8CVSS5.7AI score0.00015EPSS
Exploits1
ATTACKERKB
ATTACKERKBadded 2026/02/27 2:2 a.m.3 views

CVE-2026-3281

A vulnerability was detected in libvips 8.19.0. This affects the function vipsbandrankbuild of the file libvips/conversion/bandrank.c. Performing a manipulation of the argument index results in heap-based buffer overflow. The attack must be initiated from a local position. The exploit is now publ...

7.8CVSS6.1AI score0.00015EPSS
Exploits1References8
Rows per page
Query Builder