Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libxls project libxls 1.4.0 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2018-20452
The read_MSAT_body function in ole.c in libxls 1.4.0 has an invalid free that allows malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file, because of inconsistent memory management (new versus free) in ole2_...
Libxls Project Libxls 1.4.0
6.5
CVSSv3
CVE-2018-20450
The read_MSAT function in ole.c in libxls 1.4.0 has a double free that allows malicious users to cause a denial of service (application crash) via a crafted file, a different vulnerability than CVE-2017-2897.
Libxls Project Libxls 1.4.0
7.8
CVSSv3
CVE-2017-2897
An exploitable out-of-bounds write vulnerability exists in the read_MSAT function of libxls 1.4. A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An attacker can send malicious XLS file to trigger this vulnerability.
Libxls Project Libxls 1.4.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started