Threats Tagged 'cve-2026-28231'
View all threats tagged with 'cve-2026-28231'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-28231'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-28231: CWE-125: Out-of-bounds Read in bigcat88 pillow_heifCVE-2026-28231 0 pillow_heif is a Python library for working with HEIF images and plugin for Pillow. Prior to version 1.3.0, an integer overflow in the encode path buffer validation of `_pillow_heif.c` allows an attacker to bypass bounds checks by providing large image dimensions, resulting in a heap out-of-bounds read. This can lead to information disclosure (server heap memory leaking into encoded images) or denial of service (process crash). No special configuration is required — this triggers under default settings. Version 1.3.0 fixes the issue. Join the discussion | CVE Database V5 | 02/27/2026, 20:13:45 UTC Added: 02/27/2026, 20:26:15 UTC |
Showing 1 to 1 of 1 result