Vulnerabilities > Autotrace Project > Autotrace > Critical

DATE CVE VULNERABILITY TITLE RISK
2017-05-23 CVE-2017-9186 Integer Overflow or Wraparound vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-bmp.c:326:17.
network
low complexity
autotrace-project CWE-190
critical
 9.8
9.8
2017-05-23 CVE-2017-9187 Integer Overflow or Wraparound vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-bmp.c:486:7.
network
low complexity
autotrace-project CWE-190
critical
 9.8
9.8
2017-05-23 CVE-2017-9188 Improper Input Validation vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a "left shift ...
network
low complexity
autotrace-project CWE-20
critical
 9.8
9.8
2017-05-23 CVE-2017-9191 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the rle_fread function in input-tga.c:252:15.
network
low complexity
autotrace-project CWE-119
critical
 9.8
9.8
2017-05-23 CVE-2017-9192 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the ReadImage function in input-tga.c:528:7.
network
low complexity
autotrace-project CWE-119
critical
 9.8
9.8
2017-05-23 CVE-2017-9193 Out-of-bounds Read vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the ReadImage function in input-tga.c:538:33.
network
low complexity
autotrace-project CWE-125
critical
 9.8
9.8
2017-05-23 CVE-2017-9194 Out-of-bounds Read vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the ReadImage function in input-tga.c:559:29.
network
low complexity
autotrace-project CWE-125
critical
 9.8
9.8
2017-05-23 CVE-2017-9195 Out-of-bounds Read vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the ReadImage function in input-tga.c:620:27.
network
low complexity
autotrace-project CWE-125
critical
 9.8
9.8
2017-05-23 CVE-2017-9196 Integer Overflow or Wraparound vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a "negative-size-param" issue in the ReadImage function in input-tga.c:528:7.
network
low complexity
autotrace-project CWE-190
critical
 9.8
9.8
2017-05-23 CVE-2017-9197 Integer Overflow or Wraparound vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-tga.c:498:55.
network
low complexity
autotrace-project CWE-190
critical
 9.8
9.8