Skip to main content

Cabextract

5 CVEs product

Monthly

CVE-2018-18584 MEDIUM PATCH This Month

In mspack/cab.h in libmspack before 0.8alpha and cabextract before 1.8, the CAB block input buffer is one byte too small for the maximal Quantum block, leading to an out-of-bounds write. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Memory Corruption Buffer Overflow Cabextract Libmspack Debian Linux +4
NVD GitHub
CVSS 3.1
6.5
EPSS
3.1%
CVE-2018-14682 HIGH PATCH This Week

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Libmspack Cabextract Ubuntu Linux Debian Linux +4
NVD GitHub
CVSS 3.0
8.8
EPSS
3.8%
CVE-2018-14681 HIGH PATCH This Week

An issue was discovered in kwajd_read_headers in mspack/kwajd.c in libmspack before 0.7alpha. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Memory Corruption Buffer Overflow Libmspack Cabextract Ubuntu Linux +5
NVD GitHub
CVSS 3.0
8.8
EPSS
3.8%
CVE-2018-14680 MEDIUM PATCH This Month

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Libmspack Cabextract Ubuntu Linux Debian Linux +4
NVD GitHub
CVSS 3.0
6.5
EPSS
3.8%
CVE-2018-14679 MEDIUM PATCH This Month

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Libmspack Cabextract Ubuntu Linux Debian Linux +4
NVD GitHub
CVSS 3.0
6.5
EPSS
3.3%
EPSS 3% CVSS 6.5
MEDIUM PATCH This Month

In mspack/cab.h in libmspack before 0.8alpha and cabextract before 1.8, the CAB block input buffer is one byte too small for the maximal Quantum block, leading to an out-of-bounds write. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Memory Corruption Buffer Overflow Cabextract +6
NVD GitHub
EPSS 4% CVSS 8.8
HIGH PATCH This Week

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Libmspack Cabextract +6
NVD GitHub
EPSS 4% CVSS 8.8
HIGH PATCH This Week

An issue was discovered in kwajd_read_headers in mspack/kwajd.c in libmspack before 0.7alpha. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Memory Corruption Buffer Overflow Libmspack +7
NVD GitHub
EPSS 4% CVSS 6.5
MEDIUM PATCH This Month

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Libmspack Cabextract +6
NVD GitHub
EPSS 3% CVSS 6.5
MEDIUM PATCH This Month

An issue was discovered in mspack/chmd.c in libmspack before 0.7alpha. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Libmspack Cabextract +6
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy