Vulnerabilities > Autotrace Project > Autotrace > Critical

DATE CVE VULNERABILITY TITLE RISK
2017-05-23 CVE-2017-9151 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the pnm_load_ascii function in input-pnm.c:303:12.
network
low complexity
autotrace-project CWE-119
critical
 9.8
9.8
2017-05-23 CVE-2017-9152 Out-of-bounds Read vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the pnm_load_raw function in input-pnm.c:346:41.
network
low complexity
autotrace-project CWE-125
critical
 9.8
9.8
2017-05-23 CVE-2017-9153 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the pnm_load_rawpbm function in input-pnm.c:391:13.
network
low complexity
autotrace-project CWE-119
critical
 9.8
9.8
2017-05-23 CVE-2017-9160 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a stack-based buffer overflow in the pnmscanner_gettoken function in input-pnm.c:458:12.
network
low complexity
autotrace-project CWE-119
critical
 9.8
9.8
2017-05-23 CVE-2017-9161 Integer Overflow or Wraparound vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in autotrace.c:188:23.
network
low complexity
autotrace-project CWE-190
critical
 9.8
9.8
2017-05-23 CVE-2017-9162 Integer Overflow or Wraparound vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in autotrace.c:191:2.
network
low complexity
autotrace-project CWE-190
critical
 9.8
9.8
2017-05-23 CVE-2017-9163 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in pxl-outline.c:106:54.
network
low complexity
autotrace-project CWE-119
critical
 9.8
9.8
2017-05-23 CVE-2017-9164 Out-of-bounds Read vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the GET_COLOR function in color.c:16:11.
network
low complexity
autotrace-project CWE-125
critical
 9.8
9.8
2017-05-23 CVE-2017-9165 Out-of-bounds Read vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the GET_COLOR function in color.c:17:11.
network
low complexity
autotrace-project CWE-125
critical
 9.8
9.8
2017-05-23 CVE-2017-9166 Out-of-bounds Read vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the GET_COLOR function in color.c:18:11.
network
low complexity
autotrace-project CWE-125
critical
 9.8
9.8