Vulnerabilities > Corel > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-01 | CVE-2021-38110 | Out-of-bounds Write vulnerability in Corel Wordperfect 2020 20.0.0.200 Word97Import200.dll in Corel WordPerfect 2020 20.0.0.200 is affected by an Out-of-bounds Write vulnerability when parsing a crafted file. | 6.8 |
| 2021-10-01 | CVE-2021-38104 | Out-of-bounds Read vulnerability in Corel Presentations 2020 20.0.0.200 IPPP72.FLT in Corel Presentations 2020 20.0.0.200 is affected by an Out-of-bounds Read vulnerability when parsing a crafted file. | 4.3 |
| 2020-01-23 | CVE-2012-4900 | Out-of-bounds Write vulnerability in Corel Wordperfect Office X6 16.0.0.388/16.0.0.429 Corel WordPerfect Office X6 16.0.0.388 has a DoS Vulnerability via untrusted pointer dereference | 4.3 |
| 2019-06-19 | CVE-2019-6114 | Integer Overflow or Wraparound vulnerability in Corel Paintshop PRO 2019 21.0.0.119 An issue was discovered in Corel PaintShop Pro 2019 21.0.0.119. | 6.8 |
| 2018-04-24 | CVE-2017-2804 | Out-of-bounds Write vulnerability in Corel Coreldraw Photo Paint X8 18.1.0.661 A remote out of bound write vulnerability exists in the TIFF parsing functionality of Core PHOTO-PAINT X8 18.1.0.661. | 6.8 |
| 2018-04-24 | CVE-2017-2803 | Out-of-bounds Write vulnerability in Corel Coreldraw Photo Paint X8 18.1.0.661 A remote out of bound write vulnerability exists in the TIFF parsing functionality of Core PHOTO-PAINT X8 version 18.1.0.661. | 6.8 |
| 2017-08-29 | CVE-2014-8393 | Uncontrolled Search Path Element vulnerability in Corel products DLL Hijacking vulnerability in CorelDRAW X7, Corel Photo-Paint X7, Corel PaintShop Pro X7, Corel Painter 2015, and Corel PDF Fusion. | 4.6 |
| 2015-09-15 | CVE-2015-6948 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Corel Wordperfect Heap-based buffer overflow in the Microsoft Word document conversion feature in Corel WordPerfect allows remote attackers to execute arbitrary code via a crafted document. | 6.8 |
| 2015-01-15 | CVE-2014-8398 | DLL Loading Arbitrary Code Execution vulnerability in Corel FastFlick Multiple untrusted search path vulnerabilities in Corel FastFlick allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) igfxcmrt32.dll, (2) ipl.dll, (3) MSPStyleLib.dll, (4) uFioUtil.dll, (5) uhDSPlay.dll, (6) uipl.dll, (7) uvipl.dll, (8) VC1DecDll.dll, or (9) VC1DecDll_SSE3.dll file that is located in the same folder as the file being processed. | 4.6 |
| 2015-01-15 | CVE-2014-8397 | DLL Loading Arbitrary Code Execution vulnerability in VideoStudio Pro X7 'u32ZLib.dll' Untrusted search path vulnerability in Corel VideoStudio PRO X7 or FastFlick allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse u32ZLib.dll file that is located in the same folder as the file being processed. | 4.6 |