Vulnerabilities

Report: CVE-2026-34734 - HDF5: H5T__conv_struct Use After Free - Analysis

2026-04-09 0 views admin

CVE ID :CVE-2026-34734 Published : April 9, 2026, 8:16 p.m. | 51 minutes ago Description :HDF5 is software for managing data. In 1.14.1-2 and earlier, a heap-use-after-free was found in the h5dump helper utility. An attacker who can supply a malicious h5 file can trigger a heap use-after-free. The freed object is referenced in a memmove call from H5T__conv_struct. The original object was allocated by H5D__typeinfo_init_phase3 and freed by H5D__typeinfo_term. Severity: 7.8 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-34734

Severity

HIGH

Published

April 9, 2026

🏷️ Tags

report34734h5t__conv_structafteranalysispublishedminutesdescriptioncvecve-2026-34734

InfinitSec - Latest Cybersecurity, Technology & Gaming News

Report: CVE-2026-34734 - HDF5: H5T__conv_struct Use After Free - Analysis

CVE Details

🏷️ Tags

More from Vulnerabilities

Report: Essential Guide: CVE-2026-34500 - Apache Tomcat: OCSP checks sometimes soft-fail with FFM even when soft-fail is d...

Report: Complete Guide to CVE-2026-34487 - Apache Tomcat: Cloud membership for clustering component exposed the Kubernetes ...

Report: CVE-2026-34486 - Apache Tomcat: Fix for CVE-2026-29146 allowed bypass of EncryptInterceptor

Report: Complete Guide to CVE-2026-39977 - flatpak-builder has a path traversal leading to arbitrary file read on host when...

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting