Vulnerabilities > Hancom > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-12 | CVE-2023-40250 | Classic Buffer Overflow vulnerability in Hancom Hcell 12.0.0.893 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in Hancom HCell on Windows allows Overflow Buffers.This issue affects HCell: 12.0.0.893. | 8.8 |
| 2023-09-27 | CVE-2023-32541 | Use After Free vulnerability in Hancom Office 2020 11.0.0.7520 A use-after-free vulnerability exists in the footerr functionality of Hancom Office 2020 HWord 11.0.0.7520. | 7.8 |
| 2022-10-07 | CVE-2022-33896 | Unspecified vulnerability in Hancom Office 2020 11.0.0.5357 A buffer underflow vulnerability exists in the way Hword of Hancom Office 2020 version 11.0.0.5357 parses XML-based office files. | 7.8 |
| 2022-02-16 | CVE-2021-21958 | Out-of-bounds Write vulnerability in Hancom Office 2020 11.0.0.2353 A heap-based buffer overflow vulnerability exists in the Hword HwordApp.dll functionality of Hancom Office 2020 11.0.0.2353. | 7.8 |
| 2020-03-19 | CVE-2019-16338 | Use After Free vulnerability in Hancom Office NEO 9.6.1.7634 The tfo_common component in HwordApp.dll in Hancom Office 9.6.1.7634 allows a use-after-free via a crafted .docx file. | 7.8 |
| 2020-03-19 | CVE-2019-16337 | Use After Free vulnerability in Hancom Office NEO 9.6.1.9403 The hncbd90 component in Hancom Office 9.6.1.9403 allows a use-after-free via an unknown object in a crafted .docx file. | 7.8 |
| 2017-07-25 | CVE-2015-6585 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Hancom Hangul Word Processor 2014 hwpapp.dll in Hangul Word Processor allows remote attackers to execute arbitrary code via a crafted heap spray, and by leveraging a "type confusion" via an HWPX file containing a crafted para text tag. | 7.8 |
| 2017-05-24 | CVE-2017-2819 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Hancom Hangul Word Processor and Thinkfree Office NEO An exploitable heap-based buffer overflow exists in the Hangul Word Processor component (version 9.6.1.4350) of Hancom Thinkfree Office NEO 9.6.1.4902. | 7.8 |
| 2017-04-20 | CVE-2016-4293 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Hancom Office 2014 9.1.0.2176 Multiple heap-based buffer overflows in the (1) CBookBase::SetDefTableStyle and (2) CBookBase::SetDefPivotStyle functions in Hancom Office 2014 VP allow remote attackers to execute arbitrary code via a crafted Hangul Hcell Document (.cell) file. | 7.8 |
| 2017-01-06 | CVE-2016-4298 | Integer Overflow or Wraparound vulnerability in Hancom Office 2014 9.1.0.2176 When opening a Hangul HShow Document (.hpt) and processing a structure within the document, Hancom Office 2014 will attempt to allocate space for a list of elements using a length from the file. | 7.8 |