Vulnerabilities > Out-of-bounds Read
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-05-24 | CVE-2017-9224 | Out-of-bounds Read vulnerability in multiple products An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. | 9.8 |
| 2017-05-24 | CVE-2017-2801 | Out-of-bounds Read vulnerability in Botan Project Botan 2.0.1 A programming error exists in a way Randombit Botan cryptographic library version 2.0.1 implements x500 string comparisons which could lead to certificate verification issues and abuse. | 9.8 |
| 2017-05-23 | CVE-2017-8313 | Out-of-bounds Read vulnerability in Videolan VLC Media Player Heap out-of-bound read in ParseJSS in VideoLAN VLC before 2.2.5 due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process via a crafted subtitles file. | 5.5 |
| 2017-05-23 | CVE-2017-8312 | Out-of-bounds Read vulnerability in multiple products Heap out-of-bound read in ParseJSS in VideoLAN VLC due to missing check of string length allows attackers to read heap uninitialized data via a crafted subtitles file. | 5.5 |
| 2017-05-23 | CVE-2017-8310 | Out-of-bounds Read vulnerability in Videolan VLC Media Player Heap out-of-bound read in CreateHtmlSubtitle in VideoLAN VLC 2.2.x due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process (causing a denial of service) via a crafted subtitles file. | 5.5 |
| 2017-05-23 | CVE-2017-9207 | Out-of-bounds Read vulnerability in Entropymine Imageworsener 1.3.1 The iw_get_ui16be function in imagew-util.c:422:24 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted image, related to imagew-jpeg.c. | 6.5 |
| 2017-05-23 | CVE-2017-9206 | Out-of-bounds Read vulnerability in Entropymine Imageworsener 1.3.1 The iw_get_ui16le function in imagew-util.c:405:23 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted image, related to imagew-jpeg.c. | 6.5 |
| 2017-05-23 | CVE-2017-9205 | Out-of-bounds Read vulnerability in Entropymine Imageworsener 1.3.1 The iw_get_ui16be function in imagew-util.c:422:24 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (invalid read and SEGV) via a crafted image, related to imagew-jpeg.c. | 6.5 |
| 2017-05-23 | CVE-2017-9204 | Out-of-bounds Read vulnerability in Entropymine Imageworsener 1.3.1 The iw_get_ui16le function in imagew-util.c:405:23 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (invalid read and SEGV) via a crafted image, related to imagew-jpeg.c. | 6.5 |
| 2017-05-23 | CVE-2017-9195 | Out-of-bounds Read vulnerability in Autotrace Project Autotrace 0.31.1 libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the ReadImage function in input-tga.c:620:27. | 9.8 |