Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

24 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2021-30450

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00297EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/23 7:32 a.m.5 views

CVE-2024-22857

Heap based buffer flow in zlog v1.1.0 to v1.2.17 in zlogrulenew.The size of recordname is MAXLENPATH1024 + 1 but filepath may have data upto MAXLENCFGLINEMAXLENPATH4 + 1. So a check was missing in zlogrulenew while copying the recordname from filepath + 1 which caused the buffer overflow. An...

9.8CVSS8.1AI score0.04332EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 6:55 p.m.3 views

CVE-2021-43521

A Buffer Overflow vulnerability exists in zlog 1.2.15 via zlogconfbuildwithfile in src/zlog/src/conf.c...

7.5CVSS6.9AI score0.00297EPSS
Exploits1
OSV
OSVadded 2024/11/01 11:9 a.m.1 views

OESA-2024-2318 zlog security update

zlog is a reliable, high-performance, thread safe, flexible, clear-model, pure C logging library. Security Fixes: Heap based buffer flow in zlog v1.1.0 to v1.2.17 in zlogrulenew.The size of recordname is MAXLENPATH1024 + 1 but filepath may have data upto MAXLENCFGLINEMAXLENPATH4 + 1. So a check w...

9.8CVSS8.6AI score0.04332EPSS
Exploits0References2
OSV
OSVadded 2024/10/12 11:9 a.m.1 views

OESA-2024-2215 zlog security update

zlog is a reliable, high-performance, thread safe, flexible, clear-model, pure C logging library. Security Fixes: Heap based buffer flow in zlog v1.1.0 to v1.2.17 in zlogrulenew.The size of recordname is MAXLENPATH1024 + 1 but filepath may have data upto MAXLENCFGLINEMAXLENPATH4 + 1. So a check w...

9.8CVSS8.6AI score0.04332EPSS
Exploits0References2
OSV
OSVadded 2024/10/12 11:9 a.m.1 views

OESA-2024-2214 zlog security update

zlog is a reliable, high-performance, thread safe, flexible, clear-model, pure C logging library. Security Fixes: Heap based buffer flow in zlog v1.1.0 to v1.2.17 in zlogrulenew.The size of recordname is MAXLENPATH1024 + 1 but filepath may have data upto MAXLENCFGLINEMAXLENPATH4 + 1. So a check w...

9.8CVSS8.6AI score0.04332EPSS
Exploits0References2
OSV
OSVadded 2024/03/07 1:15 a.m.1 views

CVE-2024-22857

Heap based buffer flow in zlog v1.1.0 to v1.2.17 in zlogrulenew.The size of recordname is MAXLENPATH1024 + 1 but filepath may have data upto MAXLENCFGLINEMAXLENPATH4 + 1. So a check was missing in zlogrulenew while copying the recordname from filepath + 1 which caused the buffer overflow. An...

9.8CVSS6.7AI score0.04332EPSS
Exploits0References5
NVD
NVDadded 2024/03/07 1:15 a.m.8 views

CVE-2024-22857

Heap based buffer flow in zlog v1.1.0 to v1.2.17 in zlogrulenew.The size of recordname is MAXLENPATH1024 + 1 but filepath may have data upto MAXLENCFGLINEMAXLENPATH4 + 1. So a check was missing in zlogrulenew while copying the recordname from filepath + 1 which caused the buffer overflow. An...

9.8CVSS7.7AI score0.04332EPSS
Exploits0References5
CNNVD
CNNVDadded 2024/03/07 12:0 a.m.1 views

zlog Security Vulnerabilities

zlog is a reliable, high-performance, thread-safe, flexible, model-clear, pure C logging library by Hardy Simpson, an individual developer in China. A security vulnerability exists in zlog version 1.2.16. An attacker can exploit this vulnerability to execute arbitrary code...

9.8CVSS7.4AI score0.04332EPSS
Exploits0References5
Cvelist
Cvelistadded 2024/03/07 12:0 a.m.19 views

CVE-2024-22857

Heap based buffer flow in zlog v1.1.0 to v1.2.17 in zlogrulenew.The size of recordname is MAXLENPATH1024 + 1 but filepath may have data upto MAXLENCFGLINEMAXLENPATH4 + 1. So a check was missing in zlogrulenew while copying the recordname from filepath + 1 which caused the buffer overflow. An...

8AI score0.04332EPSS
Exploits0References5
Vulnrichment
Vulnrichmentadded 2024/03/07 12:0 a.m.11 views

CVE-2024-22857

Heap based buffer flow in zlog v1.1.0 to v1.2.17 in zlogrulenew.The size of recordname is MAXLENPATH1024 + 1 but filepath may have data upto MAXLENCFGLINEMAXLENPATH4 + 1. So a check was missing in zlogrulenew while copying the recordname from filepath + 1 which caused the buffer overflow. An...

8.1AI score0.04332EPSS
Exploits0References5
CVE
CVEadded 2024/03/07 12:0 a.m.72 views

CVE-2024-22857

CVE-2024-22857 (zlog) : Heap-based buffer overflow in zlog_rule_new() affects zlog v1.1.0–v1.2.17. The bug arises from copying record_name from file_path+1 without verifying size against MAXLEN_PATH, allowing overflow of record_func pointer (zlog_record_fn) and potentially enabling arbitrary or r...

9.8CVSS7.9AI score0.04332EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2024/02/28 12:0 a.m.1 views

PT-2024-1977 · Zlog · Zlog

Name of the Vulnerable Software and Affected Versions: zlog versions 1.1.0 through 1.2.17 Description: The issue is related to a heap-based buffer overflow in the zlog library, specifically in the zlog rule new function. This occurs because the size of record name is limited to MAXLEN PATH1024 + ...

9.8CVSS8.7AI score0.04332EPSS
Exploits0References16
OSV
OSVadded 2022/05/11 11:3 a.m.1 views

OESA-2022-1652 zlog security update

zlog is a reliable, high-performance, thread safe, flexible, clear-model, pure C logging library. Security Fixes: A Buffer Overflow vulnerability exists in zlog 1.2.15 via zlogconfbuildwithfile in src/zlog/src/conf.c.CVE-2021-43521...

7.5CVSS7.1AI score0.00297EPSS
Exploits1References2
CNVD
CNVDadded 2022/04/21 12:0 a.m.15 views

zlog buffer overflow vulnerability

zlog is a reliable , high-performance , thread-safe , flexible , model-clear pure C logging library of China Hardy Simpson individual developers . A buffer overflow vulnerability exists in zlog version 1.2.15, which stems from a buffer overflow in zlogconfbuildwithfile in src/zlog/src/conf.c. The...

7.5CVSS7.2AI score0.00297EPSS
Exploits1References1
NVD
NVDadded 2022/04/08 4:15 p.m.11 views

CVE-2021-43521

A Buffer Overflow vulnerability exists in zlog 1.2.15 via zlogconfbuildwithfile in src/zlog/src/conf.c...

7.5CVSS0.00297EPSS
Exploits1References2
OSV
OSVadded 2022/04/08 4:15 p.m.10 views

CVE-2021-43521

A Buffer Overflow vulnerability exists in zlog 1.2.15 via zlogconfbuildwithfile in src/zlog/src/conf.c...

7.5CVSS6.9AI score
Exploits0References2
Prion
Prionadded 2022/04/08 4:15 p.m.11 views

Buffer overflow

A Buffer Overflow vulnerability exists in zlog 1.2.15 via zlogconfbuildwithfile in src/zlog/src/conf.c...

5CVSS7.5AI score0.00297EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2022/04/08 3:56 p.m.50 views

CVE-2021-43521

The CVE-2021-43521 vulnerability affects the zlog library (version 1.2.15) and is triggered by a buffer overflow in the function zlog_conf_build_with_file within src/zlog/src/conf.c. This is documented across multiple feeds (NVD, Red Hat, CNVD, OSV, OSV-Dependents), confirming the same root cause...

7.5CVSS7.5AI score0.00297EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2022/04/08 3:56 p.m.8 views

CVE-2021-43521

A Buffer Overflow vulnerability exists in zlog 1.2.15 via zlogconfbuildwithfile in src/zlog/src/conf.c...

7.8AI score0.00297EPSS
Exploits1References2
Rows per page
Query Builder