Lucene search

K

Hdfgroup Security Vulnerabilities

cve
cve

CVE-2020-18494

Buffer Overflow vulnerability in function H5S_close in H5S.c in HDF5 1.10.4 allows remote attackers to run arbitrary code via creation of crafted...

8.8CVSS

8.8AI Score

0.001EPSS

2023-08-22 07:15 PM
12
cve
cve

CVE-2020-18232

Buffer Overflow vulnerability in function H5S_close in H5S.c in HDF5 1.10.4 allows remote attackers to run arbitrary code via creation of crafted...

8.8CVSS

8.8AI Score

0.001EPSS

2023-08-22 07:15 PM
17
cve
cve

CVE-2018-17234

Memory leak in the H5O__chunk_deserialize() function in H5Ocache.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (memory consumption) via a crafted HDF5...

6.5CVSS

5.5AI Score

0.001EPSS

2018-09-20 06:29 AM
38
cve
cve

CVE-2018-17237

A SIGFPE signal is raised in the function H5D__chunk_set_info_real() of H5Dchunk.c in the HDF HDF5 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. This issue is different from...

6.5CVSS

5.7AI Score

0.001EPSS

2018-09-20 06:29 AM
36
cve
cve

CVE-2018-11206

An out of bounds read was discovered in H5O_fill_new_decode and H5O_fill_old_decode in H5Ofill.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service or information disclosure...

8.1CVSS

6.3AI Score

0.005EPSS

2018-05-16 03:29 PM
50
cve
cve

CVE-2018-17437

Memory leak in the H5O_dtype_decode_helper() function in H5Odtype.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (memory consumption) via a crafted HDF5...

6.5CVSS

5.5AI Score

0.001EPSS

2018-09-24 02:29 PM
33
cve
cve

CVE-2018-17233

A SIGFPE signal is raised in the function H5D__create_chunk_file_map_hyper() of H5Dchunk.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service...

6.5CVSS

6.3AI Score

0.002EPSS

2018-09-20 06:29 AM
35
cve
cve

CVE-2018-17434

A SIGFPE signal is raised in the function apply_filters() of h5repack_filters.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service...

6.5CVSS

5.8AI Score

0.002EPSS

2018-09-24 02:29 PM
34
cve
cve

CVE-2021-45832

A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 at at hdf5/src/H5Eint.c, which causes a Denial of Service...

5.5CVSS

5.3AI Score

0.001EPSS

2022-01-05 09:15 PM
41
cve
cve

CVE-2021-37501

Buffer Overflow vulnerability in HDFGroup hdf5-h5dump 1.12.0 through 1.13.0 allows attackers to cause a denial of service via h5tools_str_sprint in...

7.5CVSS

7.2AI Score

0.001EPSS

2023-02-03 06:15 PM
26
cve
cve

CVE-2017-17506

In HDF5 1.10.1, there is an out of bounds read vulnerability in the function H5Opline_pline_decode in H5Opline.c in libhdf5.a. For example, h5dump would crash when someone opens a crafted hdf5...

6.5CVSS

6.1AI Score

0.001EPSS

2022-10-03 04:23 PM
41
cve
cve

CVE-2017-17505

In HDF5 1.10.1, there is a NULL pointer dereference in the function H5O_pline_decode in the H5Opline.c file in libhdf5.a. For example, h5dump would crash when someone opens a crafted hdf5...

6.5CVSS

6.1AI Score

0.001EPSS

2022-10-03 04:23 PM
31
cve
cve

CVE-2017-17507

In HDF5 1.10.1, there is an out of bounds read vulnerability in the function H5T_conv_struct_opt in H5Tconv.c in libhdf5.a. For example, h5dump would crash when someone opens a crafted hdf5...

6.5CVSS

6.3AI Score

0.001EPSS

2022-10-03 04:23 PM
22
cve
cve

CVE-2017-17508

In HDF5 1.10.1, there is a divide-by-zero vulnerability in the function H5T_set_loc in the H5T.c file in libhdf5.a. For example, h5dump would crash when someone opens a crafted hdf5...

6.5CVSS

6.1AI Score

0.001EPSS

2022-10-03 04:23 PM
44
cve
cve

CVE-2017-17509

In HDF5 1.10.1, there is an out of bounds write vulnerability in the function H5G__ent_decode_vec in H5Gcache.c in libhdf5.a. For example, h5dump would crash or possibly have unspecified other impact someone opens a crafted hdf5...

8.8CVSS

9.1AI Score

0.002EPSS

2022-10-03 04:23 PM
32
cve
cve

CVE-2018-14034

An issue was discovered in the HDF HDF5 1.8.20 library. There is an out of bounds read in the function H5O_pline_reset in...

8.8CVSS

8.5AI Score

0.002EPSS

2022-10-03 04:22 PM
28
cve
cve

CVE-2018-14035

An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5VM_memcpyvv in...

8.8CVSS

8.7AI Score

0.002EPSS

2022-10-03 04:22 PM
34
cve
cve

CVE-2018-14033

An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_layout_decode in H5Olayout.c, related to...

8.8CVSS

6.6AI Score

0.002EPSS

2022-10-03 04:22 PM
55
cve
cve

CVE-2018-14031

An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5T_copy in...

8.8CVSS

8.5AI Score

0.002EPSS

2022-10-03 04:22 PM
38
2
cve
cve

CVE-2018-13866

An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer over-read in the function H5F_addr_decode_len in...

9.8CVSS

9.5AI Score

0.003EPSS

2022-10-03 04:22 PM
27
cve
cve

CVE-2018-13870

An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_link_decode in...

9.8CVSS

9.3AI Score

0.003EPSS

2022-10-03 04:22 PM
51
2
cve
cve

CVE-2018-13873

An issue was discovered in the HDF HDF5 1.8.20 library. There is a buffer over-read in H5O_chunk_deserialize in...

9.8CVSS

9.5AI Score

0.003EPSS

2022-10-03 04:22 PM
25
cve
cve

CVE-2018-13872

An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer overflow in the function H5G_ent_decode in...

9.8CVSS

9.7AI Score

0.002EPSS

2022-10-03 04:22 PM
31
cve
cve

CVE-2018-13876

An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer overflow in the function H5FD_sec2_read in H5FDsec2.c, related to...

9.8CVSS

9.6AI Score

0.002EPSS

2022-10-03 04:22 PM
27
cve
cve

CVE-2018-13869

An issue was discovered in the HDF HDF5 1.8.20 library. There is a memcpy parameter overlap in the function H5O_link_decode in...

9.8CVSS

9.2AI Score

0.003EPSS

2022-10-03 04:22 PM
54
2
cve
cve

CVE-2018-13867

An issue was discovered in the HDF HDF5 1.8.20 library. There is an out of bounds read in the function H5F__accum_read in...

9.8CVSS

8.9AI Score

0.003EPSS

2022-10-03 04:22 PM
29
cve
cve

CVE-2018-13871

An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer overflow in the function H5FL_blk_malloc in...

9.8CVSS

9.7AI Score

0.002EPSS

2022-10-03 04:22 PM
25
cve
cve

CVE-2018-13874

An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer overflow in the function H5FD_sec2_read in H5FDsec2.c, related to...

9.8CVSS

9.6AI Score

0.002EPSS

2022-10-03 04:22 PM
27
cve
cve

CVE-2018-13868

An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_fill_old_decode in...

9.8CVSS

9.5AI Score

0.003EPSS

2022-10-03 04:22 PM
27
cve
cve

CVE-2018-13875

An issue was discovered in the HDF HDF5 1.8.20 library. There is an out-of-bounds read in the function H5VM_memcpyvv in...

7.8CVSS

7.5AI Score

0.001EPSS

2022-10-03 04:22 PM
26
cve
cve

CVE-2018-11204

A NULL pointer dereference was discovered in H5O__chunk_deserialize in H5Ocache.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service...

6.5CVSS

6.2AI Score

0.001EPSS

2022-10-03 04:21 PM
28
1
cve
cve

CVE-2018-11202

A NULL pointer dereference was discovered in H5S_hyper_make_spans in H5Shyper.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service...

6.5CVSS

6.2AI Score

0.001EPSS

2022-10-03 04:21 PM
31
1
cve
cve

CVE-2018-11205

A out of bounds read was discovered in H5VM_memcpyvv in H5VM.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service or information disclosure...

8.1CVSS

7.7AI Score

0.004EPSS

2022-10-03 04:21 PM
31
cve
cve

CVE-2018-11203

A division by zero was discovered in H5D__btree_decode_key in H5Dbtree.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service...

6.5CVSS

6.2AI Score

0.002EPSS

2022-10-03 04:21 PM
31
1
cve
cve

CVE-2019-9151

An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5VM_memcpyvv in H5VM.c when called from H5D__compact_readvv in...

8.8CVSS

8.5AI Score

0.002EPSS

2022-10-03 04:19 PM
52
cve
cve

CVE-2019-9152

An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5MM_xstrdup in H5MM.c when called from H5O_dtype_decode_helper in...

8.8CVSS

8.6AI Score

0.002EPSS

2022-10-03 04:19 PM
29
cve
cve

CVE-2022-25972

An out-of-bounds write vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this...

7.8CVSS

7.6AI Score

0.001EPSS

2022-08-22 07:15 PM
33
6
cve
cve

CVE-2022-25942

An out-of-bounds read vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this...

7.8CVSS

7.5AI Score

0.001EPSS

2022-08-22 07:15 PM
25
7
cve
cve

CVE-2022-26061

A heap-based buffer overflow vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this...

7.8CVSS

7.8AI Score

0.001EPSS

2022-08-22 07:15 PM
37
7
cve
cve

CVE-2021-46242

HDF5 v1.13.1-1 was discovered to contain a heap-use-after free via the component...

8.8CVSS

8.5AI Score

0.003EPSS

2022-01-21 09:15 PM
36
2
cve
cve

CVE-2021-46243

An untrusted pointer dereference vulnerability exists in HDF5 v1.13.1-1 via the function H5O__dtype_decode_helper () at hdf5/src/H5Odtype.c. This vulnerability can lead to a Denial of Service...

6.5CVSS

6.3AI Score

0.001EPSS

2022-01-21 09:15 PM
37
cve
cve

CVE-2021-46244

A Divide By Zero vulnerability exists in HDF5 v1.13.1-1 vis the function H5T__complete_copy () at /hdf5/src/H5T.c. This vulnerability causes an aritmetic exception, leading to a Denial of Service...

6.5CVSS

6.7AI Score

0.001EPSS

2022-01-21 09:15 PM
39
cve
cve

CVE-2021-45833

A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 via the H5D__create_chunk_file_map_hyper function in /hdf5/src/H5Dchunk.c, which causes a Denial of Service...

5.5CVSS

5.5AI Score

0.001EPSS

2022-01-05 09:15 PM
44
cve
cve

CVE-2021-45830

A heap-based buffer overflow vulnerability exists in HDF5 1.13.1-1 via H5F_addr_decode_len in /hdf5/src/H5Fint.c, which could cause a Denial of...

5.5CVSS

5.7AI Score

0.001EPSS

2022-01-05 08:15 PM
51
1
cve
cve

CVE-2021-45829

HDF5 1.13.1-1 is affected by: segmentation fault, which causes a Denial of...

5.5CVSS

5.4AI Score

0.001EPSS

2022-01-03 10:15 PM
49
cve
cve

CVE-2020-10810

An issue was discovered in HDF5 through 1.12.0. A NULL pointer dereference exists in the function H5AC_unpin_entry() located in H5AC.c. It allows an attacker to cause Denial of...

5.5CVSS

5.5AI Score

0.001EPSS

2020-03-22 06:15 PM
64
cve
cve

CVE-2020-10812

An issue was discovered in HDF5 through 1.12.0. A NULL pointer dereference exists in the function H5F_get_nrefs() located in H5Fquery.c. It allows an attacker to cause Denial of...

5.5CVSS

5.4AI Score

0.001EPSS

2020-03-22 06:15 PM
60
cve
cve

CVE-2020-10809

An issue was discovered in HDF5 through 1.12.0. A heap-based buffer overflow exists in the function Decompress() located in decompress.c. It can be triggered by sending a crafted file to the gif2h5 binary. It allows an attacker to cause Denial of...

5.5CVSS

5.7AI Score

0.002EPSS

2020-03-22 06:15 PM
58
cve
cve

CVE-2020-10811

An issue was discovered in HDF5 through 1.12.0. A heap-based buffer over-read exists in the function H5O__layout_decode() located in H5Olayout.c. It allows an attacker to cause Denial of...

5.5CVSS

5.6AI Score

0.001EPSS

2020-03-22 06:15 PM
84
cve
cve

CVE-2019-8396

A buffer overflow in H5O__layout_encode in H5Olayout.c in the HDF HDF5 through 1.10.4 library allows attackers to cause a denial of service via a crafted HDF5 file. This issue was triggered while repacking an HDF5 file, aka "Invalid write of size...

6.5CVSS

6.5AI Score

0.001EPSS

2019-02-17 06:29 AM
35
Total number of security vulnerabilities66