Lucene search
K

31 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-26825

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-of-uninitialized memory vulnerability exists in libxls 1.6.3 when parsing malformed XLS files. The issue is reachable via xlsparseWorkBook and is triggere...

5.3CVSS5.5AI score0.00214EPSS
Exploits1References3
OSV
OSV
added 2026/06/03 8:16 p.m.9 views

UBUNTU-CVE-2026-26825

A use-of-uninitialized memory vulnerability exists in libxls 1.6.3 when parsing malformed XLS files. The issue is reachable via xlsparseWorkBook and is triggered by uninitialized heap memory originating from the OLE layer ole2read. The flaw is detectable with MemorySanitizer MSAN and can lead to...

5.3CVSS5.5AI score0.00214EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/06/03 12:0 a.m.34 views

CVE-2026-26825

A use-of-uninitialized memory vulnerability exists in libxls 1.6.3 when parsing malformed XLS files. The issue is reachable via xlsparseWorkBook and is triggered by uninitialized heap memory originating from the OLE layer ole2read. The flaw is detectable with MemorySanitizer MSAN and can lead to...

0.00214EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/06/03 12:0 a.m.9 views

CVE-2026-26825

A use-of-uninitialized memory vulnerability exists in libxls 1.6.3 when parsing malformed XLS files. The issue is reachable via xlsparseWorkBook and is triggered by uninitialized heap memory originating from the OLE layer ole2read. The flaw is detectable with MemorySanitizer MSAN and can lead to...

5.5AI score0.00214EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/06/03 12:0 a.m.7 views

CVE-2026-26825

A use-of-uninitialized memory vulnerability exists in libxls 1.6.3 when parsing malformed XLS files. The issue is reachable via xlsparseWorkBook and is triggered by uninitialized heap memory originating from the OLE layer ole2read. The flaw is detectable with MemorySanitizer MSAN and can lead to...

5.8AI score0.00214EPSS
Exploits1References2
EUVD
EUVD
added 2026/06/03 12:0 a.m.15 views

EUVD-2026-34179

A use-of-uninitialized memory vulnerability exists in libxls 1.6.3 when parsing malformed XLS files. The issue is reachable via xlsparseWorkBook and is triggered by uninitialized heap memory originating from the OLE layer ole2read. The flaw is detectable with MemorySanitizer MSAN and can lead to...

5.8AI score0.00214EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-11949

Malware in sbrugna...

4.3CVSS4.7AI score0.00908EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-5335

Malware in sbrugna...

8.4CVSS8.4AI score0.03787EPSS
Exploits2References4
Vulnrichment
Vulnrichment
added 2024/05/16 11:14 a.m.21 views

CVE-2024-30289 Adobe FrameMaker XLS File Parsing Buffer Overflow

Adobe Framemaker versions 2020.5, 2022.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.3AI score0.0034EPSS
Exploits0References1
CVE
CVE
added 2024/05/03 2:14 a.m.71 views

CVE-2023-50234

Summary of CVE-2023-50234 : Hancom Office Cell is affected by a stack-based buffer overflow in the XLS file parsing functionality, leading to remote code execution. The issue stems from insufficient validation of the length of user-supplied data before it is copied into a stack-based buffer. Expl...

7.8CVSS8.1AI score0.00338EPSS
Exploits0References1Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2023/11/14 12:0 a.m.19 views

Delta Electronics DIAScreen XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.6AI score0.00207EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2023/05/01 12:0 a.m.34 views

Foxit PDF Editor XLS File Parsing Exposed Dangerous Method Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of XL...

7.8CVSS6.9AI score0.00538EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 3:52 a.m.4 views

SUSE CVE-2020-27819

An issue was discovered in libxls before and including 1.6.1 when reading Microsoft Excel files. A NULL pointer dereference vulnerability exists when parsing XLS cells in libxls/xls2csv.c:199. It could allow a remote attacker to cause a denial of service via crafted XLS file...

5.5CVSS5.2AI score0.00829EPSS
Exploits0References4
Zero Day Initiative
Zero Day Initiative
added 2022/01/11 12:0 a.m.29 views

Delta Industrial Automation DIAScreen XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Industrial Automation DIAScreen. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

7.8CVSS4.7AI score0.01059EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2021/08/09 12:0 a.m.63 views

(0Day) Delta Industrial Automation DOPSoft XLS File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Industrial Automation DOPSoft. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists withi...

7.8CVSS4.8AI score0.77892EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2021/07/13 12:0 a.m.8 views

PT-2021-6956 · Microsoft · 365 +3

Name of the Vulnerable Software and Affected Versions: Microsoft Excel affected versions not specified Microsoft 365 affected versions not specified Microsoft Office affected versions not specified Microsoft Office Online Server affected versions not specified Description: The issue is related to...

8.8CVSS8AI score0.53178EPSS
Exploits0References9
OSV
OSV
added 2021/02/23 4:15 a.m.2 views

UBUNTU-CVE-2020-27819

An issue was discovered in libxls before and including 1.6.1 when reading Microsoft Excel files. A NULL pointer dereference vulnerability exists when parsing XLS cells in libxls/xls2csv.c:199. It could allow a remote attacker to cause a denial of service via crafted XLS file...

5.5CVSS6.1AI score0.00829EPSS
Exploits0References3
CNVD
CNVD
added 2017/10/18 12:0 a.m.3 views

Memory Corruption Vulnerability in WPS Forms (CNVD-2017-34136)

WPS Office is an office software suite developed independently by Kingsoft Corporation. A memory corruption vulnerability exists in formset.exe in WPS when parsing certain xls files, which can be exploited by an attacker to cause a denial of service or code execution...

7.6AI score
Exploits0
CNVD
CNVD
added 2017/10/18 12:0 a.m.3 views

Null Pointer Vulnerability in WPS Forms

WPS Office is an office software suite developed independently by Kingsoft Corporation. A null pointer vulnerability exists in the form et.exe in WPS when parsing a specific xls file etmain, which can be exploited by an attacker to cause a denial of service or code execution...

7.5AI score
Exploits0
seebug.org
seebug.org
added 2017/09/19 12:0 a.m.44 views

Lexmark Perceptive Document Filters XLS ShapeHLink Information Disclosure Vulnerability(CVE-2017-2806)

Summary An exploitable arbitrary read exists in the XLS parsing of the Lexmark Perspective Document Filters conversion functionality. A crafted XLS document can lead to a arbitrary read resulting in memory disclosure. The vulnerability was confirmed on versions 11.3.0.2228 and 11.3.0.2400 Tested...

4.3CVSS4.7AI score0.00908EPSS
Exploits2
Rows per page
Query Builder