Freexl Security Vulnerabilities and Issues — Freexl CVE List

Lucene search

Freexl ProjectFreexl

7 matches found

CVE•added 2018/04/24 7:29 p.m.•83 views

CVE-2017-2924

An exploitable heap-based buffer overflow vulnerability exists in the read_legacy_biff function of FreeXL 1.0.3. A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An attacker can send malicious XLS file to trigger this vulnerability.

8.8CVSS9AI score0.04753EPSS

CVE•added 2018/04/24 7:29 p.m.•78 views

CVE-2017-2923

An exploitable heap based buffer overflow vulnerability exists in the 'read_biff_next_record function' of FreeXL 1.0.3. A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An attacker can send malicious XLS file to trigger this vulnerability.

8.8CVSS9AI score0.04753EPSS

CVE•added 2018/02/23 9:29 p.m.•69 views

CVE-2018-7437

An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a memcpy call of the parse_SST function.

8.8CVSS8.5AI score0.00701EPSS

CVE•added 2018/02/23 9:29 p.m.•66 views

CVE-2018-7435

An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in the freexl::destroy_cell function.

8.8CVSS8.5AI score0.00813EPSS

CVE•added 2018/02/23 9:29 p.m.•62 views

CVE-2018-7438

An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in the parse_unicode_string function.

8.8CVSS8.5AI score0.00701EPSS

CVE•added 2018/02/23 9:29 p.m.•60 views

CVE-2018-7436

An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in a pointer dereference of the parse_SST function.

8.8CVSS8.5AI score0.00813EPSS

CVE•added 2018/02/23 9:29 p.m.•55 views

CVE-2018-7439

An issue was discovered in FreeXL before 1.0.5. There is a heap-based buffer over-read in the function read_mini_biff_next_record.

8.8CVSS8.5AI score0.00813EPSS