2 matches found
CVE-2021-26635
CVE-2021-26635 affects Bandisoft ARK Library: buffer overflow risk due to incorrect data-type use when verifying file size, allowing manipulation of the read offset. CNNVD cites affected versions prior to 7.17, enabling potential remote code execution via a stack overflow. Public details about pa...
CVE-2021-26603
CVE-2021-26603 describes a heap overflow in Bandisoft’s ARK library caused by Ark_DigPathA parsing a file path without proper string length checks. The issue affects the ARK library and is documented with multiple sources (NVD, Red Hat, CVE lists). The vulnerability is described as a heap overflo...