2 matches found
CVE-2026-26825
Libxls 1.6.3 contains a use-of-uninitialized memory vulnerability when parsing malformed XLS files. The issue is triggered by uninitialized heap memory originating from the OLE layer (ole2_read) and is reachable via xls_parseWorkBook(). MemorySanitizer can detect it; the advisory notes undefined ...
Buffer Overflow Vulnerability in WPS Forms
WPS Office is an office software suite developed independently by Kingsoft Corporation. A buffer overflow vulnerability exists in WPS Forms, which occurs when WPS Formset.exe is parsing a specific xls file. An attacker can exploit the vulnerability to cause a denial of service, which can lead to...