Vulnerabilities > GNU > Less > 358

DATE	CVE	VULNERABILITY TITLE	RISK
2015-04-14	CVE-2014-9488	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The is_utf8_well_formed function in GNU less before 475 allows remote attackers to have unspecified impact via malformed UTF-8 characters, which triggers an out-of-bounds read. network low complexity opensuse gnu CWE-119 critical	10.0

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.