Total
66 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2020-18494 | 1 Hdfgroup | 1 Hdf5 | 2023-08-25 | N/A | 8.8 HIGH |
| Buffer Overflow vulnerability in function H5S_close in H5S.c in HDF5 1.10.4 allows remote attackers to run arbitrary code via creation of crafted file. | |||||
| CVE-2020-18232 | 1 Hdfgroup | 1 Hdf5 | 2023-08-25 | N/A | 8.8 HIGH |
| Buffer Overflow vulnerability in function H5S_close in H5S.c in HDF5 1.10.4 allows remote attackers to run arbitrary code via creation of crafted file. | |||||
| CVE-2018-17437 | 1 Hdfgroup | 1 Hdf5 | 2023-08-09 | 4.3 MEDIUM | 6.5 MEDIUM |
| Memory leak in the H5O_dtype_decode_helper() function in H5Odtype.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (memory consumption) via a crafted HDF5 file. | |||||
| CVE-2018-17434 | 1 Hdfgroup | 1 Hdf5 | 2023-08-09 | 4.3 MEDIUM | 6.5 MEDIUM |
| A SIGFPE signal is raised in the function apply_filters() of h5repack_filters.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack. | |||||
| CVE-2018-17237 | 1 Hdfgroup | 1 Hdf5 | 2023-08-09 | 4.3 MEDIUM | 6.5 MEDIUM |
| A SIGFPE signal is raised in the function H5D__chunk_set_info_real() of H5Dchunk.c in the HDF HDF5 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. This issue is different from CVE-2018-11207. | |||||
| CVE-2018-17234 | 1 Hdfgroup | 1 Hdf5 | 2023-08-09 | 4.3 MEDIUM | 6.5 MEDIUM |
| Memory leak in the H5O__chunk_deserialize() function in H5Ocache.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (memory consumption) via a crafted HDF5 file. | |||||
| CVE-2018-17233 | 1 Hdfgroup | 1 Hdf5 | 2023-08-09 | 4.3 MEDIUM | 6.5 MEDIUM |
| A SIGFPE signal is raised in the function H5D__create_chunk_file_map_hyper() of H5Dchunk.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack. | |||||
| CVE-2018-11206 | 1 Hdfgroup | 1 Hdf5 | 2023-08-09 | 5.8 MEDIUM | 8.1 HIGH |
| An out of bounds read was discovered in H5O_fill_new_decode and H5O_fill_old_decode in H5Ofill.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service or information disclosure attack. | |||||
| CVE-2021-45832 | 1 Hdfgroup | 1 Hdf5 | 2023-08-08 | 4.3 MEDIUM | 5.5 MEDIUM |
| A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 at at hdf5/src/H5Eint.c, which causes a Denial of Service (context-dependent). | |||||
| CVE-2021-37501 | 1 Hdfgroup | 1 Hdf5 | 2023-07-12 | N/A | 7.5 HIGH |
| Buffer Overflow vulnerability in HDFGroup hdf5-h5dump 1.12.0 through 1.13.0 allows attackers to cause a denial of service via h5tools_str_sprint in /hdf5/tools/lib/h5tools_str.c. | |||||
| CVE-2022-25942 | 1 Hdfgroup | 1 Hdf5 | 2022-08-23 | N/A | 7.8 HIGH |
| An out-of-bounds read vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability. | |||||
| CVE-2022-25972 | 1 Hdfgroup | 1 Hdf5 | 2022-08-23 | N/A | 7.8 HIGH |
| An out-of-bounds write vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability. | |||||
| CVE-2022-26061 | 1 Hdfgroup | 1 Hdf5 | 2022-08-23 | N/A | 7.8 HIGH |
| A heap-based buffer overflow vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability. | |||||
| CVE-2021-46244 | 1 Hdfgroup | 1 Hdf5 | 2022-01-28 | 4.3 MEDIUM | 6.5 MEDIUM |
| A Divide By Zero vulnerability exists in HDF5 v1.13.1-1 vis the function H5T__complete_copy () at /hdf5/src/H5T.c. This vulnerability causes an aritmetic exception, leading to a Denial of Service (DoS). | |||||
| CVE-2021-46243 | 1 Hdfgroup | 1 Hdf5 | 2022-01-28 | 4.3 MEDIUM | 6.5 MEDIUM |
| An untrusted pointer dereference vulnerability exists in HDF5 v1.13.1-1 via the function H5O__dtype_decode_helper () at hdf5/src/H5Odtype.c. This vulnerability can lead to a Denial of Service (DoS). | |||||
| CVE-2021-46242 | 1 Hdfgroup | 1 Hdf5 | 2022-01-28 | 6.8 MEDIUM | 8.8 HIGH |
| HDF5 v1.13.1-1 was discovered to contain a heap-use-after free via the component H5AC_unpin_entry. | |||||
| CVE-2021-45830 | 1 Hdfgroup | 1 Hdf5 | 2022-01-12 | 4.3 MEDIUM | 5.5 MEDIUM |
| A heap-based buffer overflow vulnerability exists in HDF5 1.13.1-1 via H5F_addr_decode_len in /hdf5/src/H5Fint.c, which could cause a Denial of Service. | |||||
| CVE-2021-45833 | 1 Hdfgroup | 1 Hdf5 | 2022-01-12 | 4.3 MEDIUM | 5.5 MEDIUM |
| A Stack-based Buffer Overflow Vulnerability exists in HDF5 1.13.1-1 via the H5D__create_chunk_file_map_hyper function in /hdf5/src/H5Dchunk.c, which causes a Denial of Service (context-dependent). | |||||
| CVE-2021-45829 | 1 Hdfgroup | 1 Hdf5 | 2022-01-11 | 4.3 MEDIUM | 5.5 MEDIUM |
| HDF5 1.13.1-1 is affected by: segmentation fault, which causes a Denial of Service. | |||||
| CVE-2018-13876 | 1 Hdfgroup | 1 Hdf5 | 2020-08-24 | 7.5 HIGH | 9.8 CRITICAL |
| An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer overflow in the function H5FD_sec2_read in H5FDsec2.c, related to HDread. | |||||