Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
corel vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2021-38106
UAX200.dll in Corel Presentations 2020 20.0.0.200 is affected by an Out-of-bounds Read vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to access unauthorized system memory in the context of the current user. Exploitation of...
Corel Presentations 2020 20.0.0.200
4.3
CVSSv2
CVE-2021-38107
CdrCore.dll in Corel DrawStandard 2020 22.0.0.474 is affected by an Out-of-bounds Read vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to access unauthorized system memory in the context of the current user. Exploitation of...
Corel Coreldraw 2020 22.0.0.474
4.3
CVSSv2
CVE-2021-38108
Word97Import200.dll in Corel WordPerfect 2020 20.0.0.200 is affected by an Out-of-bounds Read vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to access unauthorized system memory in the context of the current user. Exploita...
Corel Wordperfect 2020 20.0.0.200
4.3
CVSSv2
CVE-2021-38109
Corel DrawStandard 2020 22.0.0.474 is affected by an Out-of-bounds Read vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to access unauthorized system memory in the context of the current user. Exploitation of this issue req...
Corel Coreldraw 2020 22.0.0.474
4.3
CVSSv2
CVE-2012-4728
The (1) QProGetNotebookWindowHandle and (2) Ordinal132 functions in QPW160.dll in Corel Quattro Pro X6 Standard Edition 16.0.0.388 and previous versions allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via a crafted QPW file.
Corel Quattro Pro X6
9.3
CVSSv2
CVE-2009-4251
Stack-based buffer overflow in Jasc Paint Shop Pro 8.10 (aka Corel Paint Shop Pro) allows user-assisted remote malicious users to execute arbitrary code via a crafted PNG file. NOTE: this might be the same issue as CVE-2007-2366.
Corel Paint Shop Pro 8.10
1 EDB exploit
7.4
CVSSv2
CVE-2007-2366
Buffer overflow in Corel Paint Shop Pro 11.20 allows user-assisted remote malicious users to execute arbitrary code via a crafted .PNG file.
Corel Paint Shop Pro 11.20
1 EDB exploit
NA
CVE-2022-46662
Roxio Creator LJB starts another program with an unquoted file path. Since a registered Windows service path contains spaces and are unquoted, if a malicious executable is placed on a certain path, the executable may be executed with the privilege of the Windows service. The affe...
Corel Roxio Creator Ljb 12.2
6.8
CVSSv2
CVE-2019-6114
An issue exists in Corel PaintShop Pro 2019 21.0.0.119. An integer overflow in the jp2 parsing library allows an malicious user to overwrite memory and to execute arbitrary code.
Corel Paintshop Pro 2019 21.0.0.119
6.8
CVSSv2
CVE-2016-8730
An of bound write / memory corruption vulnerability exists in the GIF parsing functionality of Core PHOTO-PAINT X8 18.1.0.661. A specially crafted GIF file can cause a vulnerability resulting in potential memory corruption resulting in code execution. An attacker can send the vic...
Corel Coreldraw Photo Paint X8 18.1.0.661
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »