Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
corel vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2012-4728
The (1) QProGetNotebookWindowHandle and (2) Ordinal132 functions in QPW160.dll in Corel Quattro Pro X6 Standard Edition 16.0.0.388 and previous versions allows remote malicious users to cause a denial of service (NULL pointer dereference and crash) via a crafted QPW file.
Corel Quattro Pro X6
4.3
CVSSv2
CVE-2021-38109
Corel DrawStandard 2020 22.0.0.474 is affected by an Out-of-bounds Read vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to access unauthorized system memory in the context of the current user. Exploitation of this issue req...
Corel Coreldraw 2020 22.0.0.474
4.3
CVSSv2
CVE-2021-38107
CdrCore.dll in Corel DrawStandard 2020 22.0.0.474 is affected by an Out-of-bounds Read vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to access unauthorized system memory in the context of the current user. Exploitation of...
Corel Coreldraw 2020 22.0.0.474
9.3
CVSSv2
CVE-2013-0742
Stack-based buffer overflow in Corel PDF Fusion 1.11 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a long ZIP directory entry name in an XPS file.
Corel Pdf Fusion 1.11
1 EDB exploit
9.3
CVSSv2
CVE-2013-3248
Untrusted search path vulnerability in Corel PDF Fusion 1.11 allows local users to gain privileges via a Trojan horse wintab32.dll file in the current working directory, as demonstrated by a directory that contains a .pdf or .xps file.
Corel Pdf Fusion 1.11
1 EDB exploit
6.8
CVSSv2
CVE-2019-6114
An issue exists in Corel PaintShop Pro 2019 21.0.0.119. An integer overflow in the jp2 parsing library allows an malicious user to overwrite memory and to execute arbitrary code.
Corel Paintshop Pro 2019 21.0.0.119
9.3
CVSSv2
CVE-2009-4251
Stack-based buffer overflow in Jasc Paint Shop Pro 8.10 (aka Corel Paint Shop Pro) allows user-assisted remote malicious users to execute arbitrary code via a crafted PNG file. NOTE: this might be the same issue as CVE-2007-2366.
Corel Paint Shop Pro 8.10
1 EDB exploit
NA
CVE-2022-46662
Roxio Creator LJB starts another program with an unquoted file path. Since a registered Windows service path contains spaces and are unquoted, if a malicious executable is placed on a certain path, the executable may be executed with the privilege of the Windows service. The affe...
Corel Roxio Creator Ljb 12.2
7.4
CVSSv2
CVE-2007-2366
Buffer overflow in Corel Paint Shop Pro 11.20 allows user-assisted remote malicious users to execute arbitrary code via a crafted .PNG file.
Corel Paint Shop Pro 11.20
1 EDB exploit
6.8
CVSSv2
CVE-2017-2803
A remote out of bound write vulnerability exists in the TIFF parsing functionality of Core PHOTO-PAINT X8 version 18.1.0.661. A specially crafted TIFF file can cause a vulnerability resulting in potential memory corruption. An attacker can send the victim a specific TIFF file to ...
Corel Coreldraw Photo Paint X8 18.1.0.661
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »