Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
corel vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2021-38107
CdrCore.dll in Corel DrawStandard 2020 22.0.0.474 is affected by an Out-of-bounds Read vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to access unauthorized system memory in the context of the current user. Exploitation of...
Corel Coreldraw 2020 22.0.0.474
5.5
CVSSv3
CVE-2021-38108
Word97Import200.dll in Corel WordPerfect 2020 20.0.0.200 is affected by an Out-of-bounds Read vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to access unauthorized system memory in the context of the current user. Exploita...
Corel Wordperfect 2020 20.0.0.200
NA
CVE-2013-3248
Untrusted search path vulnerability in Corel PDF Fusion 1.11 allows local users to gain privileges via a Trojan horse wintab32.dll file in the current working directory, as demonstrated by a directory that contains a .pdf or .xps file.
Corel Pdf Fusion 1.11
1 EDB exploit
NA
CVE-2013-0742
Stack-based buffer overflow in Corel PDF Fusion 1.11 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a long ZIP directory entry name in an XPS file.
Corel Pdf Fusion 1.11
1 EDB exploit
NA
CVE-2012-4728
The (1) QProGetNotebookWindowHandle and (2) Ordinal132 functions in QPW160.dll in Corel Quattro Pro X6 Standard Edition 16.0.0.388 and previous versions allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via a crafted QPW file.
Corel Quattro Pro X6
6.7
CVSSv3
CVE-2022-46662
Roxio Creator LJB starts another program with an unquoted file path. Since a registered Windows service path contains spaces and are unquoted, if a malicious executable is placed on a certain path, the executable may be executed with the privilege of the Windows service. The affe...
Corel Roxio Creator Ljb 12.2
8.8
CVSSv3
CVE-2019-6114
An issue exists in Corel PaintShop Pro 2019 21.0.0.119. An integer overflow in the jp2 parsing library allows an malicious user to overwrite memory and to execute arbitrary code.
Corel Paintshop Pro 2019 21.0.0.119
NA
CVE-2009-4251
Stack-based buffer overflow in Jasc Paint Shop Pro 8.10 (aka Corel Paint Shop Pro) allows user-assisted remote malicious users to execute arbitrary code via a crafted PNG file. NOTE: this might be the same issue as CVE-2007-2366.
Corel Paint Shop Pro 8.10
1 EDB exploit
NA
CVE-2007-2366
Buffer overflow in Corel Paint Shop Pro 11.20 allows user-assisted remote malicious users to execute arbitrary code via a crafted .PNG file.
Corel Paint Shop Pro 11.20
1 EDB exploit
7.8
CVSSv3
CVE-2016-8730
An of bound write / memory corruption vulnerability exists in the GIF parsing functionality of Core PHOTO-PAINT X8 18.1.0.661. A specially crafted GIF file can cause a vulnerability resulting in potential memory corruption resulting in code execution. An attacker can send the vic...
Corel Coreldraw Photo Paint X8 18.1.0.661
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »