Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
pcre vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2005-4872
Perl-Compatible Regular Expression (PCRE) library prior to 6.2 does not properly count the number of named capturing subpatterns, which allows context-dependent malicious users to cause a denial of service (crash) via a regular expression with a large number of named subpatterns,...
Pcre Pcre
668
VMScore
CVE-2008-0674
Buffer overflow in PCRE prior to 7.6 allows remote malicious users to execute arbitrary code via a regular expression containing a character class with a large number of characters with Unicode code points greater than 255.
Pcre Pcre
605
VMScore
CVE-2007-1660
Perl-Compatible Regular Expression (PCRE) library prior to 7.0 does not properly calculate sizes for unspecified "multiple forms of character class", which triggers a buffer overflow that allows context-dependent malicious users to cause a denial of service (crash) and ...
Pcre Pcre
445
VMScore
CVE-2007-1662
Perl-Compatible Regular Expression (PCRE) library prior to 7.3 reads past the end of the string when searching for unmatched brackets and parentheses, which allows context-dependent malicious users to cause a denial of service (crash), possibly involving forward references.
Pcre Pcre
668
VMScore
CVE-2014-9769
pcre_jit_compile.c in PCRE 8.35 does not properly use table jumps to optimize nested alternatives, which allows remote malicious users to cause a denial of service (stack memory corruption) or possibly have unspecified other impact via a crafted string, as demonstrated by packets...
Pcre Pcre 8.35
606
VMScore
CVE-2017-7246
Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote malicious users to cause a denial of service (WRITE of size 268) or possibly have unspecified other impact via a crafted file.
Pcre Pcre 8.40
694
VMScore
CVE-2017-11164
In PCRE 8.41, the OP_KETRMAX feature in the match function in pcre_exec.c allows stack exhaustion (uncontrolled recursion) when processing a crafted regular expression.
Pcre Pcre 8.41
1 Github repository
384
VMScore
CVE-2017-7244
The _pcre32_xclass function in pcre_xclass.c in libpcre1 in PCRE 8.40 allows remote malicious users to cause a denial of service (invalid memory read) via a crafted file.
Pcre Pcre 8.40
606
VMScore
CVE-2017-7245
Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote malicious users to cause a denial of service (WRITE of size 4) or possibly have unspecified other impact via a crafted file.
Pcre Pcre 8.40
187
VMScore
CVE-2017-16231
In PCRE 8.41, after compiling, a pcretest load test PoC produces a crash overflow in the function match() in pcre_exec.c because of a self-recursive call. NOTE: third parties dispute the relevance of this report, noting that there are options that can be used to limit the amount ...
Pcre Pcre 8.41
1 Github repository
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »