Libxls@1.4 Security Vulnerabilities and Issues — Libxls@1.4 CVE List

Lucene search

Libxls ProjectLibxls1.4

5 matches found

CVE•added 2017/11/20 10:29 p.m.•65 views

CVE-2017-12110

An exploitable integer overflow vulnerability exists in the xls_appendSST function of libxls 1.4.A specially crafted XLS file can cause memory corruption resulting in remote code execution.

8.8CVSS8.2AI score0.00658EPSS

CVE•added 2017/11/20 10:29 p.m.•61 views

CVE-2017-2896

An exploitable out-of-bounds write vulnerability exists in the xls_mergedCells function of libxls 1.4. . A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An attacker can send malicious XLS file to trigger this vulnerability.

8.8CVSS8AI score0.00559EPSS

CVE•added 2017/11/20 10:29 p.m.•60 views

CVE-2017-12111

An exploitable out-of-bounds vulnerability exists in the xls_addCell function of libxls 1.4. A specially crafted XLS file with a formula record can cause memory corruption resulting in remote code execution. An attacker can send a malicious XLS file to trigger this vulnerability.

8.8CVSS8AI score0.00658EPSS

CVE•added 2018/04/24 7:29 p.m.•56 views

CVE-2017-12108

An exploitable integer overflow vulnerability exists in the xls_preparseWorkSheet function of libxls 1.4 when handling a MULBLANK record. A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An attacker can send malicious XLS file to trigger this vulnerabil...

8.8CVSS9AI score0.01818EPSS

CVE•added 2018/04/24 7:29 p.m.•52 views

CVE-2017-12109

An exploitable integer overflow vulnerability exists in the xls_preparseWorkSheet function of libxls 1.4 when handling a MULRK record. A specially crafted XLS file can cause a memory corruption resulting in remote code execution. An attacker can send malicious XLS file to trigger this vulnerability...

8.8CVSS9AI score0.01818EPSS