Syntax: kev:true severity:critical epss:>0.95 vendor:cisco patch:false
Filters
Severity
Exploitation
Data Source
Data Quality
Vendor
CWE — Weakness Type
Clear all
Top 20 matches Showing top matches — use filters or a more specific query to narrow
1 CRITICAL10 HIGH8 MEDIUM1 LOW
CVE-2026-3713
LOW CVSS 1.9
Find Similar
A flaw has been found in pnggroup libpng up to 1.6.55. Affected by this vulnerability is the function do_pnm2png of the file contrib/pngminus/pnm2png.c of the component pnm2png. This manipulation of t
NVD RRF 0.015
CVE-2024-41439
MEDIUM CVSS 5.5
Find Similar
A heap buffer overflow in the function cp_block() (/vendor/cute_png.h) of hicolor v0.5.0 allows attackers to cause a Denial of Service (DoS) via a crafted PNG file.
dbohdan
NVD RRF 0.015
CVE-2024-41438
MEDIUM CVSS 6.2
Find Similar
A heap buffer overflow in the function cp_stored() (/vendor/cute_png.h) of hicolor v0.5.0 allows attackers to cause a Denial of Service (DoS) via a crafted PNG file.
dbohdan
NVD RRF 0.015
CVE-2025-28164
MEDIUM CVSS 5.5
Find Similar
Buffer Overflow vulnerability in libpng 1.6.43-1.6.46 allows a local attacker to cause a denial of service via png_create_read_struct() function.
libpng
NVD RRF 0.014
CVE-2024-41440
MEDIUM CVSS 6.2
Find Similar
A heap buffer overflow in the function png_quantize() of hicolor v0.5.0 allows attackers to cause a Denial of Service (DoS) via a crafted PNG file.
dbohdan
NVD RRF 0.014
CVE-2025-31164
MEDIUM CVSS 6.6
Find Similar
heap-buffer overflow in fig2dev in version 3.2.9a allows an attacker to availability via local input manipulation via  create_line_with_spline.
fig2dev_project
NVD RRF 0.014
CVE-2024-41437
MEDIUM CVSS 5.5
Find Similar
A heap buffer overflow in the function cp_unfilter() (/vendor/cute_png.h) of hicolor v0.5.0 allows attackers to cause a Denial of Service (DoS) via a crafted PNG file.
dbohdan
NVD RRF 0.014
CVE-2025-64506
MEDIUM CVSS 6.1
Find Similar
LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From version 1.6.0 to before 1.6.51, a heap buffer over-read
libpng
NVD RRF 0.014
CVE-2025-7345
HIGH CVSS 7.5
Find Similar
A flaw exists in gdk‑pixbuf within the gdk_pixbuf__jpeg_image_load_increment function (io-jpeg.c) and in glib’s g_base64_encode_step (glib/gbase64.c). When processing maliciously crafted JPEG images,
NVD RRF 0.014
CVE-2026-5201
HIGH CVSS 7.5
Find Similar
A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to improper validation of color component counts when processing a special
gnomeredhat
NVD RRF 0.013
CVE-2026-22801
HIGH CVSS 7.8
Find Similar
LIBPNG is a reference library for use in applications that read, create, and manipulate PNG (Portable Network Graphics) raster image files. From 1.6.26 to 1.6.53, there is an integer truncation in the
libpng
NVD RRF 0.013
CVE-2025-70103
HIGH CVSS 7.3
Find Similar
Heap buffer overflow vulnerability in libjxl 0.12.0 via crafted PBM images to the jxl::extras::DecodeImagePNM function in file lib/extras/dec/pnm.cc.
NVD RRF 0.013
CVE-2024-53901
MEDIUM CVSS 5.5
Find Similar
The Imager package before 1.025 for Perl has a heap-based buffer overflow leading to denial of service, or possibly unspecified other impact, when the trim() method is called on a crafted input image.
tonycoz
NVD RRF 0.013
CVE-2026-47964
HIGH CVSS 7.8
Find Similar
DNG SDK versions 1.7.1 2536 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of thi
NVD RRF 0.013
CVE-2026-24450
CRITICAL CVSS 9.8
Find Similar
An integer overflow vulnerability exists in the uncompressed_fp_dng_load_raw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead to a heap buffer overflow. An attacker
libraw
NVD RRF 0.013
Page 1+ Next →