CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

327 matches found

NVD•added 2026/06/03 8:16 p.m.•7 views

CVE-2026-26824

libxls through version 1.6.3 contains a use of uninitialized memory vulnerability in the OLE container parser. Memory allocated for the Master Sector Allocation Table MSAT in readMSAT is not fully initialized before being consumed by ole2validatesectorchain, which may result in application crashe...

6.5CVSS0.00218EPSS

Exploits1References1

RedhatCVE•added 2025/12/24 10:29 p.m.•4 views

CVE-2025-14412

Soda PDF Desktop XLS File Insufficient UI Warning Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Soda PDF Desktop. User interaction is required to exploit this vulnerability in that the target must visit a...

7.8CVSS7.9AI score0.00165EPSS

Exploits0References1

RedhatCVE•added 2025/12/24 10:29 p.m.•4 views

CVE-2025-14418

pdfforge PDF Architect XLS File Insufficient UI Warning Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of pdfforge PDF Architect. User interaction is required to exploit this vulnerability in that the target must...

7CVSS7.1AI score0.00137EPSS

Exploits0References1

Vulnrichment•added 2025/12/23 9:22 p.m.•2 views

CVE-2025-14418 pdfforge PDF Architect XLS File Insufficient UI Warning Remote Code Execution Vulnerability

7CVSS7.3AI score0.00137EPSS

Exploits0References1

Positive Technologies•added 2025/12/11 12:0 a.m.•3 views

PT-2025-50781

Name of the Vulnerable Software and Affected Versions PDFsam Enhanced affected versions not specified Description A flaw exists in PDFsam Enhanced related to the processing of XLS files. This allows a remote attacker to execute arbitrary code on affected systems. User interaction is required,...

7CVSS7.1AI score0.00215EPSS

Exploits0References3

Zero Day Initiative•added 2025/12/11 12:0 a.m.•3 views

(0Day) Soda PDF Desktop XLS File Insufficient UI Warning Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Soda PDF Desktop. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of X...

7.8CVSS7.3AI score0.00165EPSS

Exploits0