Shodan
Vulnerabilities
Vulnerable Software
Hdfgroup:  Security Vulnerabilities
CVE-2018-13874
An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer overflow in the function H5FD_sec2_read in H5FDsec2.c, related to HDmemset.
CVSS Score
9.8
EPSS Score
0.005
Published
2018-07-10
CVE-2018-13875
An issue was discovered in the HDF HDF5 1.8.20 library. There is an out-of-bounds read in the function H5VM_memcpyvv in H5VM.c.
CVSS Score
7.8
EPSS Score
0.002
Published
2018-07-10
CVE-2018-13876
An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer overflow in the function H5FD_sec2_read in H5FDsec2.c, related to HDread.
CVSS Score
9.8
EPSS Score
0.005
Published
2018-07-10
CVE-2018-11202
A NULL pointer dereference was discovered in H5S_hyper_make_spans in H5Shyper.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service attack.
CVSS Score
6.5
EPSS Score
0.012
Published
2018-05-16
CVE-2018-11203
A division by zero was discovered in H5D__btree_decode_key in H5Dbtree.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service attack.
CVSS Score
6.5
EPSS Score
0.006
Published
2018-05-16
CVE-2018-11204
A NULL pointer dereference was discovered in H5O__chunk_deserialize in H5Ocache.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service attack.
CVSS Score
6.5
EPSS Score
0.011
Published
2018-05-16
CVE-2018-11205
A out of bounds read was discovered in H5VM_memcpyvv in H5VM.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service or information disclosure attack.
CVSS Score
8.1
EPSS Score
0.007
Published
2018-05-16
CVE-2018-11206
An out of bounds read was discovered in H5O_fill_new_decode and H5O_fill_old_decode in H5Ofill.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service or information disclosure attack.
CVSS Score
8.1
EPSS Score
0.006
Published
2018-05-16
CVE-2018-11207
A division by zero was discovered in H5D__chunk_init in H5Dchunk.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service attack.
CVSS Score
6.5
EPSS Score
0.006
Published
2018-05-16
CVE-2017-17505
In HDF5 1.10.1, there is a NULL pointer dereference in the function H5O_pline_decode in the H5Opline.c file in libhdf5.a. For example, h5dump would crash when someone opens a crafted hdf5 file.
CVSS Score
6.5
EPSS Score
0.005
Published
2017-12-11


Products
Pricing
Contact Us

Shodan ® - All rights reserved