Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Libpff Security Vulnerabilities

cve
cve

CVE-2020-18897

An use-after-free vulnerability in the libpff_item_tree_create_node function of libyal Libpff before 20180623 allows attackers to cause a denial of service (DOS) or execute arbitrary code via a crafted pff...

7.8CVSS

7.8AI Score

0.001EPSS

2021-08-19 10:15 PM
22
cve
cve

CVE-2018-20348

libpff_item_tree_create_node in libpff_item_tree.c in libpff before experimental-20180714 allows attackers to cause a denial of service (infinite recursion) via a crafted file, related to libfdata_tree_get_node_value in...

5.5CVSS

5.2AI Score

0.001EPSS

2018-12-22 12:29 AM
24
cve
cve

CVE-2018-11723

The libpff_name_to_id_map_entry_read function in libpff_name_to_id_map.c in libyal libpff through 2018-04-28 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via a crafted pff file. NOTE: the vendor has disputed this as described in libyal/libpff issue 66 on....

5.5CVSS

5.4AI Score

0.001EPSS

2018-06-19 09:29 PM
18