Vulmon Recent Vulnerabilities Discussions Trends About Contact

Recent vulnerabilities and exploits

7.5
CVSSv2
CVE-2018-12503
tinyexr 0.9.5 has a heap-based buffer over-read in LoadEXRImageFromMemory in tinyexr.h....
Tinyexr ProjectTinyexr
5
CVSSv2
CVE-2018-12504
tinyexr 0.9.5 has an assertion failure in ComputeChannelLayout in tinyexr.h....
Tinyexr ProjectTinyexr
7.5
CVSSv2
CVE-2018-12092
tinyexr 0.9.5 has a heap-based buffer over-read in tinyexr::DecodePixelData in tinyexr.h, related to OpenEXR code....
Tinyexr ProjectTinyexr
5
CVSSv2
CVE-2018-12093
tinyexr 0.9.5 has a memory leak in ParseEXRHeaderFromMemory in tinyexr.h....
Tinyexr ProjectTinyexr
7.5
CVSSv2
CVE-2018-12064
tinyexr 0.9.5 has a heap-based buffer over-read via tinyexr::ReadChannelInfo in tinyexr.h....
Tinyexr ProjectTinyexr
7.5
CVSSv2
CVE-2018-11547
md_is_link_reference_definition_helper in md4c 0.2.5 has a heap-based buffer over-read because md_is_link_label mishandles loop termination....
Md4c ProjectMd4c
5
CVSSv2
CVE-2018-11363
jpeg_size in pdfgen.c in PDFGen before 2018-04-09 has a heap-based buffer over-read....
7.5
CVSSv2
CVE-2018-11545
md4c 0.2.5 has a heap-based buffer overflow in md_merge_lines because md_is_link_label mishandles the case of a link label composed solely of backslash escapes....
Md4c ProjectMd4c
7.5
CVSSv2
CVE-2018-11546
md4c 0.2.5 has a heap-based buffer over-read because md_is_named_entity_contents has an off-by-one error....
Md4c ProjectMd4c
7.5
CVSSv2
CVE-2018-11536
md4c before 0.2.5 has a heap-based buffer overflow because md_split_simple_pairing_mark mishandles splits....
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2019-16024CVE-2019-19781CVE-2020-0609CVE-2019-5146validationCSRFXPath injectionCVE-2019-20423CVE-2019-20430