Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
international components for unicode vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2017-14952
Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ up to and including 59.1 allows remote malicious users to execute arbitrary code via a crafted string, aka a "redundant UVector entry clean up function call" issue.
Icu-project International Components For Unicode
7.5
CVSSv2
CVE-2017-17484
The ucnv_UTF8FromUTF8 function in ucnv_u8.cpp in International Components for Unicode (ICU) for C/C++ up to and including 60.1 mishandles ucnv_convertEx calls for UTF-8 to UTF-8 conversion, which allows remote malicious users to cause a denial of service (stack-based buffer overf...
Icu-project International Components For Unicode
7.5
CVSSv2
CVE-2011-4599
Stack-based buffer overflow in the _canonicalize function in common/uloc.c in International Components for Unicode (ICU) prior to 49.1 allows remote malicious users to execute arbitrary code via a crafted locale ID that is not properly handled during variant canonicalization.
Icu-project International Components For Unicode
6.8
CVSSv2
CVE-2007-4770
libicu in International Components for Unicode (ICU) 3.8.1 and previous versions attempts to process backreferences to the nonexistent capture group zero (aka \0), which might allow context-dependent malicious users to read from, or write to, out-of-bounds memory locations, relat...
Icu-project International Components For Unicode
9.3
CVSSv2
CVE-2007-4771
Heap-based buffer overflow in the doInterval function in regexcmp.cpp in libicu in International Components for Unicode (ICU) 3.8.1 and previous versions allows context-dependent malicious users to cause a denial of service (memory consumption) and possibly have unspecified other...
Icu-project International Components For Unicode
7.5
CVSSv2
CVE-2018-18928
International Components for Unicode (ICU) for C/C++ 63.1 has an integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp.
Icu-project International Components For Unicode 63.1
7.5
CVSSv2
CVE-2014-9654
The Regular Expressions package in International Components for Unicode (ICU) for C/C++ prior to 2014-12-03, as used in Google Chrome prior to 40.0.2214.91, calculates certain values without ensuring that they can be represented in a 24-bit field, which allows remote malicious us...
Google Chrome
Icu-project International Components For Unicode
4.3
CVSSv2
CVE-2020-21913
International Components for Unicode (ICU-20850) v66.1 exists to contain a use after free bug in the pkg_createWithAssemblyCode function in the file tools/pkgdata/pkgdata.cpp.
Unicode International Components For Unicode
Debian Debian Linux 9.0
Debian Debian Linux 10.0
5
CVSSv2
CVE-2017-7867
International Components for Unicode (ICU) for C/C++ prior to 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utext_setNativeIndex* function.
Icu-project International Components For Unicode
Debian Debian Linux 8.0
5
CVSSv2
CVE-2017-7868
International Components for Unicode (ICU) for C/C++ prior to 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utext_moveIndex32* function.
Icu-project International Components For Unicode
Debian Debian Linux 8.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-24955
man-in-the-middle
dos
CVE-2024-2818
CVE-2024-30584
CVE-2024-31134
camera
CVE-2023-45866
CVE-2024-30585
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »