Vulnerabilities > Htmldoc Project > Htmldoc > 1.9.11

DATE CVE VULNERABILITY TITLE RISK
2022-01-10 CVE-2021-43579 Out-of-bounds Write vulnerability in multiple products
A stack-based buffer overflow in image_load_bmp() in HTMLDOC <= 1.9.13 results in remote code execution if the victim converts an HTML document linking to a crafted BMP file.
local
low complexity
htmldoc-project debian CWE-787
7.8
2021-11-03 CVE-2021-40985 Out-of-bounds Read vulnerability in multiple products
A stack-based buffer under-read in htmldoc before 1.9.12, allows attackers to cause a denial of service via a crafted BMP image to image_load_bmp.
local
low complexity
htmldoc-project debian CWE-125
5.5
2021-04-05 CVE-2021-20308 Integer overflow in the htmldoc 1.9.11 and before may allow attackers to execute arbitrary code and cause a denial of service that is similar to CVE-2017-9181.
network
low complexity
htmldoc-project debian
critical
9.8