Shodan
Vulnerabilities
Vulnerable Software
Hdfgroup:  >> Hdf5  Security Vulnerabilities
CVE-2018-17234
Memory leak in the H5O__chunk_deserialize() function in H5Ocache.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service (memory consumption) via a crafted HDF5 file.
CVSS Score
6.5
EPSS Score
0.001
Published
2018-09-20
CVE-2018-17237
A SIGFPE signal is raised in the function H5D__chunk_set_info_real() of H5Dchunk.c in the HDF HDF5 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. This issue is different from CVE-2018-11207.
CVSS Score
6.5
EPSS Score
0.001
Published
2018-09-20
CVE-2018-16438
An issue was discovered in the HDF HDF5 1.8.20 library. There is an out of bounds read in H5L_extern_query at H5Lexternal.c.
CVSS Score
8.8
EPSS Score
0.004
Published
2018-09-04
CVE-2018-15671
An issue was discovered in the HDF HDF5 1.10.2 library. Excessive stack consumption has been detected in the function H5P__get_cb() in H5Pint.c during an attempted parse of a crafted HDF file. This results in denial of service.
CVSS Score
6.5
EPSS Score
0.003
Published
2018-08-21
CVE-2018-14460
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_sdspace_decode in H5Osdspace.c.
CVSS Score
8.8
EPSS Score
0.003
Published
2018-07-20
CVE-2018-14031
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5T_copy in H5T.c.
CVSS Score
8.8
EPSS Score
0.003
Published
2018-07-13
CVE-2018-14033
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5O_layout_decode in H5Olayout.c, related to HDmemcpy.
CVSS Score
8.8
EPSS Score
0.006
Published
2018-07-13
CVE-2018-14034
An issue was discovered in the HDF HDF5 1.8.20 library. There is an out of bounds read in the function H5O_pline_reset in H5Opline.c.
CVSS Score
8.8
EPSS Score
0.004
Published
2018-07-13
CVE-2018-14035
An issue was discovered in the HDF HDF5 1.8.20 library. There is a heap-based buffer over-read in the function H5VM_memcpyvv in H5VM.c.
CVSS Score
8.8
EPSS Score
0.004
Published
2018-07-13
CVE-2018-13866
An issue was discovered in the HDF HDF5 1.8.20 library. There is a stack-based buffer over-read in the function H5F_addr_decode_len in H5Fint.c.
CVSS Score
9.8
EPSS Score
0.004
Published
2018-07-10


Products
Pricing
Contact Us

Shodan ® - All rights reserved