Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

25 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2021-30450

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.01262EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/23 7:32 a.m.8 views

CVE-2024-22857

Heap based buffer flow in zlog v1.1.0 to v1.2.17 in zlogrulenew.The size of recordname is MAXLENPATH1024 + 1 but filepath may have data upto MAXLENCFGLINEMAXLENPATH4 + 1. So a check was missing in zlogrulenew while copying the recordname from filepath + 1 which caused the buffer overflow. An...

9.8CVSS8.1AI score0.01699EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 6:55 p.m.4 views

CVE-2021-43521

A Buffer Overflow vulnerability exists in zlog 1.2.15 via zlogconfbuildwithfile in src/zlog/src/conf.c...

7.5CVSS6.9AI score0.01262EPSS
Exploits1
OSV
OSVadded 2024/11/01 11:9 a.m.11 views

OESA-2024-2318 zlog security update

zlog is a reliable, high-performance, thread safe, flexible, clear-model, pure C logging library. Security Fixes: Heap based buffer flow in zlog v1.1.0 to v1.2.17 in zlogrulenew.The size of recordname is MAXLENPATH1024 + 1 but filepath may have data upto MAXLENCFGLINEMAXLENPATH4 + 1. So a check w...

9.8CVSS8.6AI score0.01699EPSS
Exploits0References2
OSV
OSVadded 2024/10/12 11:9 a.m.11 views

OESA-2024-2214 zlog security update

zlog is a reliable, high-performance, thread safe, flexible, clear-model, pure C logging library. Security Fixes: Heap based buffer flow in zlog v1.1.0 to v1.2.17 in zlogrulenew.The size of recordname is MAXLENPATH1024 + 1 but filepath may have data upto MAXLENCFGLINEMAXLENPATH4 + 1. So a check w...

9.8CVSS8.6AI score0.01699EPSS
Exploits0References2
OSV
OSVadded 2024/10/12 11:9 a.m.9 views

OESA-2024-2215 zlog security update

zlog is a reliable, high-performance, thread safe, flexible, clear-model, pure C logging library. Security Fixes: Heap based buffer flow in zlog v1.1.0 to v1.2.17 in zlogrulenew.The size of recordname is MAXLENPATH1024 + 1 but filepath may have data upto MAXLENCFGLINEMAXLENPATH4 + 1. So a check w...

9.8CVSS8.6AI score0.01699EPSS
Exploits0References2
NVD
NVDadded 2024/03/07 1:15 a.m.17 views

CVE-2024-22857

Heap based buffer flow in zlog v1.1.0 to v1.2.17 in zlogrulenew.The size of recordname is MAXLENPATH1024 + 1 but filepath may have data upto MAXLENCFGLINEMAXLENPATH4 + 1. So a check was missing in zlogrulenew while copying the recordname from filepath + 1 which caused the buffer overflow. An...

9.8CVSS7.7AI score0.01699EPSS
Exploits0References5
OSV
OSVadded 2024/03/07 1:15 a.m.1 views

CVE-2024-22857

Heap based buffer flow in zlog v1.1.0 to v1.2.17 in zlogrulenew.The size of recordname is MAXLENPATH1024 + 1 but filepath may have data upto MAXLENCFGLINEMAXLENPATH4 + 1. So a check was missing in zlogrulenew while copying the recordname from filepath + 1 which caused the buffer overflow. An...

9.8CVSS6.7AI score0.01699EPSS
Exploits0References5
CNNVD
CNNVDadded 2024/03/07 12:0 a.m.9 views

zlog Security Vulnerabilities

zlog is a reliable, high-performance, thread-safe, flexible, model-clear, pure C logging library by Hardy Simpson, an individual developer in China. A security vulnerability exists in zlog version 1.2.16. An attacker can exploit this vulnerability to execute arbitrary code...

9.8CVSS7.4AI score0.01699EPSS
Exploits0References5
Cvelist
Cvelistadded 2024/03/07 12:0 a.m.40 views

CVE-2024-22857

Heap based buffer flow in zlog v1.1.0 to v1.2.17 in zlogrulenew.The size of recordname is MAXLENPATH1024 + 1 but filepath may have data upto MAXLENCFGLINEMAXLENPATH4 + 1. So a check was missing in zlogrulenew while copying the recordname from filepath + 1 which caused the buffer overflow. An...

8AI score0.01699EPSS
Exploits0References5
BDU FSTEC
BDU FSTECadded 2024/03/07 12:0 a.m.3 views

The vulnerability of the zlog_rule_s class in the logging library allows a violator to execute arbitrary code.

The vulnerability of the zlogrules class in the zlog logging library is related to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

10CVSS6.3AI score0.01699EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichmentadded 2024/03/07 12:0 a.m.13 views

CVE-2024-22857

Heap based buffer flow in zlog v1.1.0 to v1.2.17 in zlogrulenew.The size of recordname is MAXLENPATH1024 + 1 but filepath may have data upto MAXLENCFGLINEMAXLENPATH4 + 1. So a check was missing in zlogrulenew while copying the recordname from filepath + 1 which caused the buffer overflow. An...

8.1AI score0.01699EPSS
Exploits0References5
CVE
CVEadded 2024/03/07 12:0 a.m.78 views

CVE-2024-22857

CVE-2024-22857 (zlog) : Heap-based buffer overflow in zlog_rule_new() affects zlog v1.1.0–v1.2.17. The bug arises from copying record_name from file_path+1 without verifying size against MAXLEN_PATH, allowing overflow of record_func pointer (zlog_record_fn) and potentially enabling arbitrary or r...

9.8CVSS7.9AI score0.01699EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2024/02/28 12:0 a.m.3 views

PT-2024-1977 · Zlog · Zlog

Name of the Vulnerable Software and Affected Versions: zlog versions 1.1.0 through 1.2.17 Description: The issue is related to a heap-based buffer overflow in the zlog library, specifically in the zlog rule new function. This occurs because the size of record name is limited to MAXLEN PATH1024 + ...

9.8CVSS8.7AI score0.01699EPSS
Exploits0References16
OSV
OSVadded 2022/05/11 11:3 a.m.3 views

OESA-2022-1652 zlog security update

zlog is a reliable, high-performance, thread safe, flexible, clear-model, pure C logging library. Security Fixes: A Buffer Overflow vulnerability exists in zlog 1.2.15 via zlogconfbuildwithfile in src/zlog/src/conf.c.CVE-2021-43521...

7.5CVSS7.1AI score0.01262EPSS
Exploits1References2
CNVD
CNVDadded 2022/04/21 12:0 a.m.15 views

zlog buffer overflow vulnerability

zlog is a reliable , high-performance , thread-safe , flexible , model-clear pure C logging library of China Hardy Simpson individual developers . A buffer overflow vulnerability exists in zlog version 1.2.15, which stems from a buffer overflow in zlogconfbuildwithfile in src/zlog/src/conf.c. The...

7.5CVSS7.2AI score0.01262EPSS
Exploits1References1
NVD
NVDadded 2022/04/08 4:15 p.m.12 views

CVE-2021-43521

A Buffer Overflow vulnerability exists in zlog 1.2.15 via zlogconfbuildwithfile in src/zlog/src/conf.c...

7.5CVSS0.01262EPSS
Exploits1References2
OSV
OSVadded 2022/04/08 4:15 p.m.14 views

CVE-2021-43521

A Buffer Overflow vulnerability exists in zlog 1.2.15 via zlogconfbuildwithfile in src/zlog/src/conf.c...

7.5CVSS6.9AI score
Exploits0References2
Prion
Prionadded 2022/04/08 4:15 p.m.14 views

Buffer overflow

A Buffer Overflow vulnerability exists in zlog 1.2.15 via zlogconfbuildwithfile in src/zlog/src/conf.c...

5CVSS7.5AI score0.01262EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2022/04/08 3:56 p.m.12 views

CVE-2021-43521

A Buffer Overflow vulnerability exists in zlog 1.2.15 via zlogconfbuildwithfile in src/zlog/src/conf.c...

7.8AI score0.01262EPSS
Exploits1References2
Rows per page
Query Builder