CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

SUSE CVE•added 2026/06/09 2:20 a.m.•9 views

SUSE CVE-2026-48103

7-Zip is a file archiver with a high compression ratio. Versions 9.34 through 26.00 contain an off-by-one heap out-of-bounds read in the WIM Windows Imaging archive handler's security descriptor lookup. In CHandler::GetSecurity CPP/7zip/Archive/Wim/WimHandler.cpp, the per-image SecurOffsets table...

7.1CVSS5.4AI score0.00225EPSS

Exploits1References3

Snyk•added 2026/06/05 5:13 p.m.•5 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read via the GetSecurity function in the WIM archive handler when processing a crafted WIM file. An attacker can cause a denial of service or potentially obtain minor information disclosure by supplying a specially crafted...

7.1CVSS5.4AI score0.00225EPSS

Exploits1References3

Vulnrichment•added 2026/06/05 3:48 p.m.•9 views

CVE-2026-48103 GHSL-2026-119 7-Zip WIM SecurityId OOB read

4.3CVSS5.4AI score0.00225EPSS

Exploits1References1

CVE•added 2026/06/05 3:48 p.m.•23 views

CVE-2026-48103

7-Zip versions 9.34–26.00 contain an off-by-one heap out-of-bounds read in the WIM archive handler (WIM security descriptor lookup). In WimHandler.GetSecurity, the per-image SecurOffsets table holds numEntries+1 offsets, and securityId == numEntries is allowed, causing reads at SecurOffsets[secur...

7.1CVSS5.5AI score0.00225EPSS

Exploits1References1Affected Software1

RedhatCVE•added 2026/01/09 9:20 a.m.•12 views

CVE-2021-33599

A vulnerability affecting F-Secure Antivirus engine was discovered whereby scanning WIM archive file can lead to denial-of-service infinite loop and freezes AV engine scanner. The vulnerability can be exploit remotely by an attacker. A successful attack will result in Denial-of-Service of the...

5.5CVSS6.9AI score0.00398EPSS

Exploits0References1