Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

44 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 10:41 a.m.7 views

CVE-2022-26507

A heap-based buffer overflow exists in XML Decompression DecodeTreeBlock in AT Labs Xmill 0.7. A crafted input file can lead to remote code execution. This is not the same as any of: CVE-2021-21810, CVE-2021-21811, CVE-2021-21812, CVE-2021-21815, CVE-2021-21825, CVE-2021-21826, CVE-2021-21828,...

9.8CVSS8AI score0.06696EPSS
Exploits9References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2021-8997

Malicious code in bioql PyPI...

9.8CVSS8.1AI score0.00459EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2021-8996

Malicious code in bioql PyPI...

9.8CVSS8.1AI score0.02268EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2021-8999

Malicious code in bioql PyPI...

9.8CVSS8.1AI score0.00459EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2021-8998

Malicious code in bioql PyPI...

9.8CVSS8.2AI score0.00459EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 9:31 p.m.3 views

CVE-2021-21827

A heap-based buffer overflow vulnerability exists in the XML Decompression DecodeTreeBlock functionality of AT Labs Xmill 0.7. Within DecodeTreeBlock which is called during the decompression of an XMI file, a UINT32 is loaded from the file and used as trusted input as the length of a buffer. An...

9.8CVSS7.2AI score0.00459EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 7:12 p.m.7 views

CVE-2021-21829

A heap-based buffer overflow vulnerability exists in the XML Decompression EnumerationUncompressor::UncompressItem functionality of AT Labs’ Xmill 0.7. A specially crafted XMI file can lead to remote code execution. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS8AI score0.02268EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 7:12 p.m.6 views

CVE-2021-21828

A heap-based buffer overflow vulnerability exists in the XML Decompression DecodeTreeBlock functionality of AT Labs Xmill 0.7. In the default case of DecodeTreeBlock a label is created via CurPath::AddLabel in order to track the label for later reference. An attacker can provide a malicious file ...

9.8CVSS7.2AI score0.00459EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 6:33 p.m.6 views

CVE-2021-21826

A heap-based buffer overflow vulnerability exists in the XML Decompression DecodeTreeBlock functionality of AT Labs Xmill 0.7. Within DecodeTreeBlock which is called during the decompression of an XMI file, a UINT32 is loaded from the file and used as trusted input as the length of a buffer. An...

9.8CVSS6.8AI score0.00459EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 6:20 p.m.6 views

CVE-2021-21825

A heap-based buffer overflow vulnerability exists in the XML Decompression PlainTextUncompressor::UncompressItem functionality of AT Labs’ Xmill 0.7. A specially crafted XMI file can lead to remote code execution. An attacker can provide a malicious file to trigger this vulnerability...

9.8CVSS7.6AI score0.02268EPSS
Exploits1References1
NVD
NVDadded 2022/04/14 1:15 p.m.22 views

CVE-2022-26507

A heap-based buffer overflow exists in XML Decompression DecodeTreeBlock in AT&T Labs Xmill 0.7. A crafted input file can lead to remote code execution. This is not the same as any of: CVE-2021-21810, CVE-2021-21811, CVE-2021-21812, CVE-2021-21815, CVE-2021-21825, CVE-2021-21826, CVE-2021-21828,...

9.8CVSS0.06696EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 2022/04/14 1:15 p.m.1 views

CVE-2022-26507

A heap-based buffer overflow exists in XML Decompression DecodeTreeBlock in AT&T Labs Xmill 0.7. A crafted input file can lead to remote code execution. This is not the same as any of: CVE-2021-21810, CVE-2021-21811, CVE-2021-21812, CVE-2021-21815, CVE-2021-21825, CVE-2021-21826, CVE-2021-21828,...

9.8CVSS7.5AI score0.06696EPSS
Exploits9References3
OSV
OSVadded 2022/04/14 1:15 p.m.0 views

CVE-2022-26507

A heap-based buffer overflow exists in XML Decompression DecodeTreeBlock in AT&T Labs Xmill 0.7. A crafted input file can lead to remote code execution. This is not the same as any of: CVE-2021-21810, CVE-2021-21811, CVE-2021-21812, CVE-2021-21815, CVE-2021-21825, CVE-2021-21826, CVE-2021-21828,...

9.8CVSS6.3AI score
Exploits0References2
Prion
Prionadded 2022/04/14 1:15 p.m.14 views

Heap overflow

UNSUPPORTED WHEN ASSIGNED A heap-based buffer overflow exists in XML Decompression DecodeTreeBlock in AT&T Labs Xmill 0.7. A crafted input file can lead to remote code execution. This is not the same as any of: CVE-2021-21810, CVE-2021-21811, CVE-2021-21812, CVE-2021-21815, CVE-2021-21825,...

7.5CVSS9AI score0.06696EPSS
Exploits9References2Affected Software3
CVE
CVEadded 2022/04/14 12:4 p.m.75 views

CVE-2022-26507

CVE-2022-26507 describes a heap-based/out-of-bounds read vulnerability in AT&T Labs Xmill 0.7 DecodeTreeBlock during XML decompression, leading to remote code execution. The 3.2.13 entry confirms CVE-2022-26507 as the vulnerability ID for an out-of-bounds read in XML Decompression DecodeTreeBlock...

9.8CVSS9AI score0.06696EPSS
Exploits0References2Affected Software1
NVD
NVDadded 2021/08/20 10:15 p.m.11 views

CVE-2021-21826

A heap-based buffer overflow vulnerability exists in the XML Decompression DecodeTreeBlock functionality of AT&T Labs Xmill 0.7. Within DecodeTreeBlock which is called during the decompression of an XMI file, a UINT32 is loaded from the file and used as trusted input as the length of a buffer. An...

9.8CVSS0.00459EPSS
Exploits1References1
NVD
NVDadded 2021/08/20 10:15 p.m.11 views

CVE-2021-21827

A heap-based buffer overflow vulnerability exists in the XML Decompression DecodeTreeBlock functionality of AT&T Labs Xmill 0.7. Within DecodeTreeBlock which is called during the decompression of an XMI file, a UINT32 is loaded from the file and used as trusted input as the length of a buffer. An...

9.8CVSS0.00459EPSS
Exploits1References1
OSV
OSVadded 2021/08/20 10:15 p.m.1 views

CVE-2021-21828

A heap-based buffer overflow vulnerability exists in the XML Decompression DecodeTreeBlock functionality of AT&T Labs Xmill 0.7. In the default case of DecodeTreeBlock a label is created via CurPath::AddLabel in order to track the label for later reference. An attacker can provide a malicious fil...

9.8CVSS7.5AI score
Exploits0References1
Prion
Prionadded 2021/08/20 10:15 p.m.7 views

Heap overflow

A heap-based buffer overflow vulnerability exists in the XML Decompression DecodeTreeBlock functionality of AT&T Labs Xmill 0.7. Within DecodeTreeBlock which is called during the decompression of an XMI file, a UINT32 is loaded from the file and used as trusted input as the length of a buffer. An...

7.5CVSS9.6AI score0.00459EPSS
Exploits1References1Affected Software1
Prion
Prionadded 2021/08/20 10:15 p.m.13 views

Heap overflow

A heap-based buffer overflow vulnerability exists in the XML Decompression DecodeTreeBlock functionality of AT&T Labs Xmill 0.7. In the default case of DecodeTreeBlock a label is created via CurPath::AddLabel in order to track the label for later reference. An attacker can provide a malicious fil...

7.5CVSS9.6AI score0.00459EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder