DEBIAN-CVE-2024-42845

An eval Injection vulnerability in the component invesalius/reader/dicom.py of InVesalius 3.1.99991 through 3.1.99998 allows attackers to execute arbitrary code via loading a crafted DICOM file...

CVE-2023-52114

Data confidentiality vulnerability in the ScreenReader module. Successful exploitation of this vulnerability may affect service integrity...

The vulnerability of the WPG reading module in the cross-platform library for working with GraphicsMagick allows a hacker to induce a service failure.

The vulnerability of the WPG reading module in cross-platform libraries for working with GraphicsMagick is related to the use of a zero pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

Memory corruption vulnerability in WPS Office 2016 forms excelrw module (CNVD-2018-04738)

WPS office is an office software suite independently developed by Kingsoft Corporation. A memory corruption vulnerability exists in the excelrw module of WPS Formset.exe in WPS when parsing a specific xls file. An attacker can exploit the vulnerability to cause a denial of service or possibly...

Overflow vulnerability in WPS demo ppt reader module

WPS Office is an office software suite developed independently by Kingsoft Corporation. An overflow vulnerability exists in the pptreader module of WPS presentation wpp.exe in WPS when parsing a specific ppt file, which can be exploited by an attacker to cause a denial of service or execute...

Memory out-of-bounds access vulnerability in WPS text docreader module (CNVD-2017-06211)

WPS is an office software. A memory out-of-bounds access vulnerability exists in the WPS text docreader module. The vulnerability is caused due to failure to validate address information effectively and can be exploited by an attacker to obtain sensitive information...