3 matches found
CVE-2021-26635
CVE-2021-26635 affects Bandisoft ARK Library: buffer overflow risk due to incorrect data-type use when verifying file size, allowing manipulation of the read offset. CNNVD cites affected versions prior to 7.17, enabling potential remote code execution via a stack overflow. Public details about pa...
CVE-2021-26603
CVE-2021-26603 describes a heap overflow in Bandisoft’s ARK library caused by Ark_DigPathA parsing a file path without proper string length checks. The issue affects the ARK library and is documented with multiple sources (NVD, Red Hat, CVE lists). The vulnerability is described as a heap overflo...
CVE-2021-26615
CVE-2021-26615 concerns the ARK library (Bandisoft ARK library) where the vulnerability arises in the Ark_NormalizeAndDupPAthNameW function due to an integer overflow. This can enable remote code execution via the parameter path value. The incident is documented across multiple feeds (NVD, Red Ha...