HTMLDOC Project HTMLDOC 1.9.15

CPE Details

HTMLDOC Project HTMLDOC 1.9.15
htmldoc_project
htmldoc
1.9.15
2022-02-11
14h15 +00:00
2022-08-04
13h42 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:htmldoc_project:htmldoc:1.9.15:*:*:*:*:*:*:*

Informations

Vendor

htmldoc_project

Product

htmldoc

Version

1.9.15

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-45508 2024-08-31 22h00 +00:00 HTMLDOC before 1.9.19 has an out-of-bounds write in parse_paragraph in ps-pdf.cxx because of an attempt to strip leading whitespace from a whitespace-only node.
9.8
Critical
CVE-2022-34033 2022-07-18 18h14 +00:00 HTMLDoc v1.9.15 was discovered to contain a heap overflow via (write_header) /htmldoc/htmldoc/html.cxx:273.
7.5
High
CVE-2022-28085 2022-04-27 00h19 +00:00 A flaw was found in htmldoc commit 31f7804. A heap buffer overflow in the function pdf_write_names in ps-pdf.cxx may lead to arbitrary code execution and Denial of Service (DoS).
7.8
High
CVE-2022-0534 2022-02-09 21h03 +00:00 A vulnerability was found in htmldoc version 1.9.15 where the stack out-of-bounds read takes place in gif_get_code() and occurs when opening a malicious GIF file, which can result in a crash (segmentation fault).
5.5
Medium
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.