Lucene search
K

5 matches found

Vulnrichment
Vulnrichment
added 2025/12/23 9:24 p.m.2 views

CVE-2025-14412 Soda PDF Desktop XLS File Insufficient UI Warning Remote Code Execution Vulnerability

Soda PDF Desktop XLS File Insufficient UI Warning Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Soda PDF Desktop. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS7.3AI score0.00165EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 5:59 p.m.17 views

CVE-2019-5033

An exploitable out-of-bounds read vulnerability exists in the Number record parser of Aspose Aspose.Cells 19.1.0 library. A specially crafted XLS file can cause an out-of-bounds read, resulting in remote code execution. An attacker needs to provide a malformed file to the victim to trigger the...

9.8CVSS7.4AI score0.0314EPSS
Exploits0References1
Check Point Advisories
Check Point Advisories
added 2020/01/23 12:0 a.m.5 views

Microsoft JET Database Engine Heap-based Buffer Overflow (CVE-2018-8392)

A heap-based buffer overflow vulnerability exists in the Microsoft Jet Database Engine Jet. The vulnerability is due to improper handling of objects in memory. A remote, unauthenticated attacker can exploit the vulnerability by enticing a user to open a specially crafted Excel file...

9.3CVSS3.5AI score0.22757EPSS
Exploits0
CNVD
CNVD
added 2018/12/26 12:0 a.m.2 views

Libxls Double Release Vulnerability

libxls is a C library that can read Excel xls files. A double release vulnerability exists in the readMSAT function in ole.c in libxls 1.4.0. An attacker could cause a denial of service application crash by exploiting this vulnerability via a specially crafted file...

6.5CVSS7.2AI score0.01064EPSS
Exploits1References1
Microsoft CVE
Microsoft CVE
added 2018/04/10 7:0 a.m.26 views

Microsoft JET Database Engine Remote Code Execution Vulnerability

A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system. An attacker who successfully exploited this vulnerability could take control of an affected system. An attacker could then install programs; view, change, or...

9.3CVSS3.2AI score0.23035EPSS
Exploits0
Rows per page
Query Builder