Vulnerabilities > Htmldoc Project > Htmldoc > 1.8.17
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-14 | CVE-2022-0137 | Out-of-bounds Write vulnerability in Htmldoc Project Htmldoc A heap buffer overflow in image_set_mask function of HTMLDOC before 1.9.15 allows an attacker to write outside the buffer boundaries. | 5.5 |
| 2022-04-27 | CVE-2022-28085 | Out-of-bounds Write vulnerability in Htmldoc Project Htmldoc A flaw was found in htmldoc commit 31f7804. | 6.8 |
| 2022-04-04 | CVE-2022-24191 | Infinite Loop vulnerability in multiple products In HTMLDOC 1.9.14, an infinite loop in the gif_read_lzw function can lead to a pointer arbitrarily pointing to heap memory and resulting in a buffer overflow. | 5.5 |
| 2022-03-16 | CVE-2021-23165 | Out-of-bounds Write vulnerability in Htmldoc Project Htmldoc A flaw was found in htmldoc before v1.9.12. | 10.0 |
| 2022-03-02 | CVE-2021-23180 | NULL Pointer Dereference vulnerability in Htmldoc Project Htmldoc A flaw was found in htmldoc in v1.9.12 and before. | 7.8 |
| 2022-03-02 | CVE-2021-23191 | NULL Pointer Dereference vulnerability in Htmldoc Project Htmldoc A security issue was found in htmldoc v1.9.12 and before. | 6.8 |
| 2022-03-02 | CVE-2021-23206 | Out-of-bounds Write vulnerability in Htmldoc Project Htmldoc A flaw was found in htmldoc in v1.9.12 and prior. | 6.8 |
| 2022-01-10 | CVE-2021-43579 | Out-of-bounds Write vulnerability in multiple products A stack-based buffer overflow in image_load_bmp() in HTMLDOC <= 1.9.13 results in remote code execution if the victim converts an HTML document linking to a crafted BMP file. | 6.8 |
| 2021-11-03 | CVE-2021-40985 | Out-of-bounds Read vulnerability in multiple products A stack-based buffer under-read in htmldoc before 1.9.12, allows attackers to cause a denial of service via a crafted BMP image to image_load_bmp. | 5.5 |
| 2021-04-05 | CVE-2021-20308 | Integer Overflow or Wraparound vulnerability in multiple products Integer overflow in the htmldoc 1.9.11 and before may allow attackers to execute arbitrary code and cause a denial of service that is similar to CVE-2017-9181. | 7.5 |