CVE-2026-15182
A vulnerability has been found in GNU LibreDWG up to 0.13.4. The affected element is the function dwg_bmp of the file src/dwg.c of the compo
CVSS
5.3
Medio
EPSS
0.1%
p3
KEV
—
Exploit Today
1
0-100
Publicado: 9 jul 2026 · Última mod.: 9 jul 2026 · CWE-119 · CWE-122
0.1%EPSS · 30 días0.1%
2026-07-102026-07-16
A vulnerability has been found in GNU LibreDWG up to 0.13.4. The affected element is the function dwg_bmp of the file src/dwg.c of the component BMP Image Handler. Such manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit has been disclosed to the public and may be used. Upgrading to version 0.14 is sufficient to fix this issue. The name of the patch is 18fd542bb4d5ccedf9de12052bf50068b2b26f06. It is suggested to upgrade the affected component.
- github.comhttps://github.com/HackC0der/CVE-Repos/blob/main/libredwg/libredwg_0b57303_heap_overflow_decode_R13_R2000.dwg
- github.comhttps://github.com/LibreDWG/libredwg/commit/18fd542bb4d5ccedf9de12052bf50068b2b26f06
- github.comhttps://github.com/LibreDWG/libredwg/issues/1249
- github.comhttps://github.com/LibreDWG/libredwg/issues/1252
- github.comhttps://github.com/LibreDWG/libredwg/releases/tag/0.14
- vuldb.comhttps://vuldb.com/cve/CVE-2026-15182
- vuldb.comhttps://vuldb.com/submit/851191
- vuldb.comhttps://vuldb.com/vuln/377109
- vuldb.comhttps://vuldb.com/vuln/377109/cti
- www.gnu.orghttps://www.gnu.org/
- github.comhttps://github.com/LibreDWG/libredwg/issues/1249
- github.comhttps://github.com/LibreDWG/libredwg/issues/1252
- vuldb.comhttps://vuldb.com/submit/851191
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2025-312778.8 ALT71.0%
KEV—71Apple Multiple Products Buffer Overflow Vulnerability3dCVE-2026-429458.1 ALT99.1%
——30NGINX Plus and NGINX Open Source have a vulnerability in the ngx_http_rewrite_module module. This vulnerability exists when the rewrite directive is followed by a rewrite, if, or set directive and an unnamed Perl-Compatible Regular Expression (PCRE) capture (for example, $1, $2) with a replacement string that includes a question mark (?). An unauthenticated attacker along with conditions beyond its control can exploit this vulnerability by sending crafted HTTP requests. This may cause a heap buffer overflow in the NGINX worker process leading to a restart. Additionally, attackers can execute code on systems with Address Space Layout Randomization (ASLR) disabled or when the attacker can bypass ASLR. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.3dCVE-2026-276548.2 ALT97.4%
——29NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_dav_module module that might allow an attacker to trigger a buffer overflow to the NGINX worker process; this vulnerability may result in termination of the NGINX worker process or modification of source or destination file names outside the document root. This issue affects NGINX Open Source and NGINX Plus when the configuration file uses DAV module MOVE or COPY methods, prefix location (nonregular expression location configuration), and alias directives. The integrity impact is constrained because the NGINX worker process user has low privileges and does not have access to the entire system. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.3dCVE-2005-445910.0 SIN96.2%
——29Heap-based buffer overflow in the NAT networking components vmnat.exe and vmnet-natd in VMWare Workstation 5.5, GSX Server 3.2, ACE 1.0.1, and Player 1.0 allows remote authenticated attackers, including guests, to execute arbitrary code via crafted (1) EPRT and (2) PORT FTP commands.10dCVE-2026-505189.8 CRÍ93.7%
——28Heap-based buffer overflow in Windows DHCP Server allows an unauthorized attacker to execute code over a network.2dCVE-2025-510896.5 MED91.4%
——27Tenda AC8V4 V16.03.34.06` was discovered to contain heap overflow at /goform/GetParentControlInfo.The manipulation of the argument `mac` leads to heap-based buffer overflow.13d