Lucene search
K

10 matches found

CNNVD
CNNVD
added 2026/06/03 12:0 a.m.8 views

libxls 安全漏洞

libxls is an open-source C library designed for reading old binary OLE-formatted Excel files. Versions of libxls 1.6.3 and earlier contain security vulnerabilities. These vulnerabilities stem from the use of uninitialized memory within the OLE container resolver, which could lead to application...

6.5CVSS5.3AI score0.00228EPSS
Exploits1References1
Snyk
Snyk
added 2026/03/07 6:45 p.m.2 views

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in the readofficedocument function. An attacker can cause a denial of service by providing crafted XLSX files that trigger a null pointer dereference during parsing. Remediation There is no fixed version for xln...

5.5CVSS5.8AI score0.00205EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2010-3765

Malware in sbrugna...

6.8CVSS6.1AI score0.03863EPSS
Exploits1References11
SUSE CVE
SUSE CVE
added 2023/08/16 11:19 p.m.3 views

SUSE CVE-2023-38854

Buffer Overflow vulnerability in libxlsv.1.6.2 allows a remote attacker to execute arbitrary code and cause a denial of service via a crafted XLS file to the transcodelatin1toutf8 function in xlstool.c:296...

6.5CVSS7.9AI score0.00773EPSS
Exploits1References3
Snyk
Snyk
added 2021/06/17 3:56 p.m.3 views

Denial of Service (DoS)

Overview xlsx is a Parser and writer for various spreadsheet formats. Affected versions of this package are vulnerable to Denial of Service DoS. An attacker who can send a malicious excel file parsed by this library can cause maximum CPU usage. Note: xlsx package after version 0.18.5 is distribut...

7.5CVSS9.2AI score0.0088EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/04/07 12:0 a.m.5 views

ClamAV 输入验证错误漏洞

Clam AntiVirus ClamAV is an anti-virus package for use on UNIX-like systems. Mainly used in mail servers, using multi-threaded background operation, you can automatically upgrade the virus database. An infinite loop vulnerability exists in the Excel XLM macro analysis module in Clam AntiVirus...

7.8CVSS8.4AI score0.02619EPSS
Exploits0References11
CNVD
CNVD
added 2019/08/20 12:0 a.m.3 views

Aspose Aspose.Cells Code Execution Vulnerability

Aspose Aspose.Cells is an Excel spreadsheet programming API Application Programming Interface from Aspose Australia. A code execution vulnerability exists in Aspose Aspose.Cells version 19.1.0, which can be exploited to execute code via specially crafted XLS files...

9.8CVSS7.9AI score0.0314EPSS
Exploits0References1
CNVD
CNVD
added 2017/11/21 12:0 a.m.3 views

libxls 'xls_appendSST' function integer overflow vulnerability

libxls is a C library for reading Exce xls files. An integer overflow vulnerability exists in the 'xlsappendSST' function in libxls version 1.4. A remote attacker can exploit this vulnerability to execute code memory corruption with the help of specially crafted XLS files...

8.8CVSS7.7AI score0.02097EPSS
Exploits1References1
Check Point Advisories
Check Point Advisories
added 2014/04/16 12:0 a.m.2 views

Microsoft Office Drawing Shape Group Properties Buffer Overflow (MS10-003) - Ver2 (CVE-2010-0243)

Microsoft Excel is a popular spreadsheet application. A remote code execution vulnerability has been reported in the way Microsoft Office handles specially crafted Excel files. The vulnerability is due to a memory corruption error in Microsoft Office when loading malformed Excel records. A remote...

9.3CVSS7.3AI score0.23625EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2010/11/09 12:0 a.m.11 views

Microsoft Office Excel Drawing Exception Handling Code Execution (MS10-087; CVE-2010-3335)

Microsoft Excel is a popular spreadsheet application. A remote attacker could exploit this issue via a malformed Excel file. Successful exploitation of this vulnerability may allow execution of arbitrary code on a target system. A memory corruption vulnerability has been identified in Microsoft...

9.3CVSS6.8AI score0.23915EPSS
Exploits5
Rows per page
Query Builder