Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pcre pcre2 vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2017-8399
PCRE2 prior to 10.30 has an out-of-bounds write caused by a stack-based buffer overflow in pcre2_match.c, related to a "pattern with very many captures."
Pcre Pcre2
NA
CVE-2022-41409
Integer overflow vulnerability in pcre2test prior to 10.41 allows malicious users to cause a denial of service or other unspecified impacts via negative input.
Pcre Pcre2
668
VMScore
CVE-2017-8786
pcre2test.c in PCRE2 10.23 allows remote malicious users to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted regular expression.
Pcre Pcre2 10.23
446
VMScore
CVE-2015-3217
PCRE 7.8 and 8.32 up to and including 8.37, and PCRE2 10.10 mishandle group empty matches, which might allow remote malicious users to cause a denial of service (stack-based buffer overflow) via a crafted regular expression, as demonstrated by /^(?:(?(1)\\.|([^\\\\W_])?)+)+$/.
Pcre Pcre2 10.10
Pcre Pcre 8.33
Pcre Pcre 8.34
Pcre Pcre 8.32
Pcre Pcre 8.37
Pcre Pcre 7.8
Pcre Pcre 8.35
Pcre Pcre 8.36
Ibm Powerkvm 3.1
Ibm Powerkvm 2.1
445
VMScore
CVE-2019-20454
An out-of-bounds read exists in PCRE prior to 10.34 when the pattern \X is JIT compiled and used to match specially crafted subjects in non-UTF mode. Applications that use PCRE to parse untrusted input may be vulnerable to this flaw, which would allow an malicious user to crash t...
Pcre Pcre2
Fedoraproject Fedora 31
Splunk Universal Forwarder 9.1.0
Splunk Universal Forwarder
570
VMScore
CVE-2022-1587
An out-of-bounds read vulnerability exists in the PCRE2 library in the get_recurse_data_length() function of the pcre2_jit_compile.c file. This issue affects recursions in JIT-compiled regular expressions caused by duplicate data transfers.
Pcre Pcre2
Redhat Enterprise Linux 9.0
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Netapp Ontap Select Deploy Administration Utility -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
570
VMScore
CVE-2022-1586
An out-of-bounds read vulnerability exists in the PCRE2 library in the compile_xclass_matchingpath() function of the pcre2_jit_compile.c file. This involves a unicode property matching issue in JIT-compiled regular expressions. The issue occurs because the character was not fully...
Pcre Pcre2
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux 9.0
Netapp Ontap Select Deploy Administration Utility -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
668
VMScore
CVE-2015-8381
The compile_regex function in pcre_compile.c in PCRE prior to 8.38 and pcre2_compile.c in PCRE2 prior to 10.2x mishandles the /(?J:(?|(:(?|(?'R')(\k'R')|((?'R')))H'Rk'Rf)|s(?'R'))))/ and /(?J:(?|(:(?|(?'R')(\z(?|(?'...
Pcre Perl Compatible Regular Expression Library
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started