Orc@* Security Vulnerabilities and Issues — Orc@* CVE List | Vulners.com

Lucene search

Basic search
Lucene search
Search by product

K

Vulnerabilities

Agents dashboard

Email notifications

Webhook notifications

SBOM package analysis

Database
Products
Apache
Orc
*

ApacheOrc*

1 matches found

CVE•added 2025/05/14 1:11 p.m.•54 views

CVE-2025-47436

CVE-2025-47436 (Apache ORC) : A heap-based buffer overflow found in the ORC C++ LZO decompression logic. Malformed ORC files can cause the decompressor to allocate a 250-byte buffer but copy 295 bytes, causing memory corruption. Affected versions (as documented): 1.8.0–1.8.8; 1.9.0–1.9.5; 2.0.0–2...

9.8CVSS6.7AI score0.0046EPSS

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2026 Vulners Inc