Known Vulnerabilities for Zlib by Zlib Software
Listed below are 10 of the newest known vulnerabilities associated with "Zlib" by "Zlib Software".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-53430 json | Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRP... | Not Provided | 2026-06-15 | 2026-06-16 |
| CVE-2026-49755 json | Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in wojtekmach Req allows attacker-controlled H... | Not Provided | 2026-06-08 | 2026-06-08 |
| CVE-2026-48594 json | Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-tesla tesla allows a denial of servi... | Not Provided | 2026-06-02 | 2026-06-04 |
| CVE-2026-43970 json | Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in ninenines cowlib allows unauthenticated rem... | Not Provided | 2026-05-13 | 2026-05-14 |
| CVE-2026-39804 json | Allocation of Resources Without Limits or Throttling vulnerability in mtrudel bandit allows unauthenticated remote denial of ... | Not Provided | 2026-05-01 | 2026-05-04 |
| CVE-2026-35469 json | spdystream is a Go library for multiplexing streams over SPDY connections. In versions 0.5.0 and below, the SPDY/3 frame pars... | Not Provided | 2026-04-16 | 2026-07-10 |
| CVE-2026-27820 json | zlib is a Ruby interface for the zlib compression/decompression library. Versions 3.0.0 and below, 3.1.0, 3.1.1, 3.2.0 and 3.... | Not Provided | 2026-04-16 | 2026-04-16 |
| CVE-2026-22184 json | zlib versions up to and including 1.3.1.2 include a global buffer overflow in the untgz utility located under contrib/untgz. ... | Not Provided | 2026-01-07 | 2026-06-30 |
| CVE-2026-6535 json | Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service | Not Provided | 2026-04-30 | 2026-04-30 |
| CVE-2026-6100 json | Use-after-free (UAF) was possible in the `lzma.LZMADecompressor`, `bz2.BZ2Decompressor`, and `gzip.GzipFile` when a memory al... | Not Provided | 2026-04-13 | 2026-06-30 |