Browse all 6 CVE security advisories affecting strukturag. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Strukturag develops enterprise software solutions for document management and workflow automation, primarily serving government and financial sectors. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access control flaws. Six CVEs have been recorded, with several allowing attackers to execute arbitrary code or bypass authentication. While no major public security incidents have been documented, the consistent pattern of vulnerabilities in core functionality suggests ongoing challenges in secure coding practices, particularly in handling user inputs and implementing proper session management.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-33164 | NULL Pointer Dereference in libde265 — libde265CWE-122 | 7.5 | - | 2026-03-20 |
| CVE-2026-33165 | heap out-of-bounds write in libde265 1.0.16 — libde265CWE-787 | 5.5 | Medium | 2026-03-20 |
| CVE-2026-3950 | strukturag libheif stsz/stts track.cc load out-of-bounds — libheifCWE-125 | 3.3 | Low | 2026-03-11 |
| CVE-2026-3949 | strukturag libheif HEIF File decoder_vvdec.cc vvdec_push_data2 out-of-bounds — libheifCWE-125 | 3.3 | Low | 2026-03-11 |
| CVE-2025-68431 | libheif has Potential Heap Buffer Over-Read — libheifCWE-125 | 6.5 | Medium | 2025-12-29 |
| CVE-2022-1253 | Heap-based Buffer Overflow in strukturag/libde265 — strukturag/libde265CWE-122 | 9.8 | - | 2022-04-06 |
This page lists every published CVE security advisory associated with strukturag. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.