Aggregates CVE and security vulnerability intelligence across all advancemame-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk buffer overflow, vendor risk memory corruption, and vendor risk input validation, with potential vendor impact memory corruption across vendor surface production workloads use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2020-23909 | Heap-based buffer over-read in function png_convert_4 in file pngex.cc in AdvanceMAME through 2.1. | [email protected] | 7.1 | 0.28% | 2023-07-18 | 2026-06-16 |
| CVE-2023-2961 | A segmentation fault flaw was found in the Advancecomp package. This may lead to decreased availability. | [email protected] | 3.3 | 0.19% | 2023-06-06 | 2026-06-17 |
| CVE-2022-35020 | Advancecomp v2.3 was discovered to contain a heap buffer overflow via the component __interceptor_memcpy at /sanitizer_common/sanitizer_common_interceptors.inc. | [email protected] | 5.5 | 0.45% | 2022-08-29 | 2026-06-17 |
| CVE-2022-35019 | Advancecomp v2.3 was discovered to contain a segmentation fault. | [email protected] | 5.5 | 0.43% | 2022-08-29 | 2026-06-17 |
| CVE-2022-35018 | Advancecomp v2.3 was discovered to contain a segmentation fault. | [email protected] | 5.5 | 0.43% | 2022-08-29 | 2026-06-17 |
| CVE-2022-35017 | Advancecomp v2.3 was discovered to contain a heap buffer overflow. | [email protected] | 5.5 | 0.45% | 2022-08-29 | 2026-06-17 |
| CVE-2022-35016 | Advancecomp v2.3 was discovered to contain a heap buffer overflow. | [email protected] | 5.5 | 0.45% | 2022-08-29 | 2026-06-17 |
| CVE-2022-35015 | Advancecomp v2.3 was discovered to contain a heap buffer overflow via le_uint32_read at /lib/endianrw.h. | [email protected] | 5.5 | 0.45% | 2022-08-29 | 2026-06-17 |
| CVE-2022-35014 | Advancecomp v2.3 contains a segmentation fault. | [email protected] | 5.5 | 0.43% | 2022-08-29 | 2026-06-17 |
| CVE-2019-9210 | In AdvanceCOMP 2.1, png_compress in pngex.cc in advpng has an integer overflow upon encountering an invalid PNG size, which results in an attempted memcpy to write into a buffer that is too small. (There is also a heap-based buffer over-read.) | [email protected] | 7.8 | 1.42% | 2019-02-27 | 2026-06-16 |
| CVE-2019-8383 | An issue was discovered in AdvanceCOMP through 2.1. An invalid memory address occurs in the function adv_png_unfilter_8 in lib/png.c. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact when a victim opens a specially crafted file. | [email protected] | 7.8 | 1.25% | 2019-02-16 | 2026-06-16 |
| CVE-2019-8379 | An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer dereference exists in the function be_uint32_read() located in endianrw.h. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact when a victim opens a specially crafted file. | [email protected] | 7.8 | 1.25% | 2019-02-16 | 2026-06-16 |
| CVE-2018-1056 | An out-of-bounds heap buffer read flaw was found in the way advancecomp before 2.1-2018/02 handled processing of ZIP files. An attacker could potentially use this flaw to crash the advzip utility by tricking it into processing crafted ZIP files. | [email protected] | 7.8 | 1.42% | 2018-07-27 | 2026-06-16 |