Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
international components for unicode vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-4770
libicu in International Components for Unicode (ICU) 3.8.1 and previous versions attempts to process backreferences to the nonexistent capture group zero (aka \0), which might allow context-dependent malicious users to read from, or write to, out-of-bounds memory locations, relat...
Icu-project International Components For Unicode
NA
CVE-2007-4771
Heap-based buffer overflow in the doInterval function in regexcmp.cpp in libicu in International Components for Unicode (ICU) 3.8.1 and previous versions allows context-dependent malicious users to cause a denial of service (memory consumption) and possibly have unspecified other...
Icu-project International Components For Unicode
9.8
CVSSv3
CVE-2017-14952
Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ up to and including 59.1 allows remote malicious users to execute arbitrary code via a crafted string, aka a "redundant UVector entry clean up function call" issue.
Icu-project International Components For Unicode
NA
CVE-2011-4599
Stack-based buffer overflow in the _canonicalize function in common/uloc.c in International Components for Unicode (ICU) prior to 49.1 allows remote malicious users to execute arbitrary code via a crafted locale ID that is not properly handled during variant canonicalization.
Icu-project International Components For Unicode
9.8
CVSSv3
CVE-2017-17484
The ucnv_UTF8FromUTF8 function in ucnv_u8.cpp in International Components for Unicode (ICU) for C/C++ up to and including 60.1 mishandles ucnv_convertEx calls for UTF-8 to UTF-8 conversion, which allows remote malicious users to cause a denial of service (stack-based buffer overf...
Icu-project International Components For Unicode
9.8
CVSSv3
CVE-2018-18928
International Components for Unicode (ICU) for C/C++ 63.1 has an integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp.
Icu-project International Components For Unicode 63.1
9.8
CVSSv3
CVE-2014-9654
The Regular Expressions package in International Components for Unicode (ICU) for C/C++ prior to 2014-12-03, as used in Google Chrome prior to 40.0.2214.91, calculates certain values without ensuring that they can be represented in a 24-bit field, which allows remote malicious us...
Google Chrome
Icu-project International Components For Unicode
5.5
CVSSv3
CVE-2020-21913
International Components for Unicode (ICU-20850) v66.1 exists to contain a use after free bug in the pkg_createWithAssemblyCode function in the file tools/pkgdata/pkgdata.cpp.
Unicode International Components For Unicode
Debian Debian Linux 9.0
Debian Debian Linux 10.0
7.5
CVSSv3
CVE-2017-7867
International Components for Unicode (ICU) for C/C++ prior to 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utext_setNativeIndex* function.
Icu-project International Components For Unicode
Debian Debian Linux 8.0
7.5
CVSSv3
CVE-2017-7868
International Components for Unicode (ICU) for C/C++ prior to 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utext_moveIndex32* function.
Icu-project International Components For Unicode
Debian Debian Linux 8.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »