2 matches found
CVE-2022-29777
Summary: CVE-2022-29777 affects Onlyoffice Document Server (versions ≤ 6.0.0) and Onlyoffice Core (versions ≤ 6.1.0.26). The vulnerability is a heap overflow in the component DesktopEditor/fontengine/fontconverter/FontFileBase.h. Impact : not explicitly quantified beyond the heap overflow in the ...
CVE-2022-29776
Affected products: OnlyOffice Document Server up to v6.0.0 and OnlyOffice Core up to v6.1.0.26. Root cause: stack overflow in DesktopEditor/common/File.cpp. Impact (as described): stack overflow vulnerability; no exploitation details provided. Recommendations: upgrade to versions above the listed...