Vulnerabilities > Djvulibre Project > Djvulibre > 3.5.25
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-30 | CVE-2021-3630 | Out-of-bounds Write vulnerability in multiple products An out-of-bounds write vulnerability was found in DjVuLibre in DJVU::DjVuTXT::decode() in DjVuText.cpp via a crafted djvu file which may lead to crash and segmentation fault. | 5.5 |
| 2021-06-24 | CVE-2021-32490 | Out-of-bounds Write vulnerability in multiple products A flaw was found in djvulibre-3.5.28 and earlier. | 7.8 |
| 2021-06-24 | CVE-2021-32491 | Integer Overflow or Wraparound vulnerability in multiple products A flaw was found in djvulibre-3.5.28 and earlier. | 7.8 |
| 2021-06-24 | CVE-2021-32492 | Out-of-bounds Read vulnerability in multiple products A flaw was found in djvulibre-3.5.28 and earlier. | 6.8 |
| 2021-06-24 | CVE-2021-32493 | Out-of-bounds Write vulnerability in multiple products A flaw was found in djvulibre-3.5.28 and earlier. | 7.8 |
| 2021-06-24 | CVE-2021-3500 | Out-of-bounds Write vulnerability in multiple products A flaw was found in djvulibre-3.5.28 and earlier. | 6.8 |
| 2013-12-02 | CVE-2012-6535 | Code Injection vulnerability in Djvulibre Project Djvulibre DjVuLibre before 3.5.25.3, as used in Evince, Sumatra PDF Reader, VuDroid, and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted DjVu (aka .djv) file. | 9.3 |