Vulnerabilities > Htmldoc Project > Htmldoc > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-14 | CVE-2022-0137 | Out-of-bounds Write vulnerability in Htmldoc Project Htmldoc A heap buffer overflow in image_set_mask function of HTMLDOC before 1.9.15 allows an attacker to write outside the buffer boundaries. | 5.5 |
| 2022-05-09 | CVE-2022-27114 | Integer Overflow or Wraparound vulnerability in multiple products There is a vulnerability in htmldoc 1.9.16. | 4.3 |
| 2022-04-27 | CVE-2022-28085 | Out-of-bounds Write vulnerability in Htmldoc Project Htmldoc A flaw was found in htmldoc commit 31f7804. | 6.8 |
| 2022-04-04 | CVE-2022-24191 | Infinite Loop vulnerability in multiple products In HTMLDOC 1.9.14, an infinite loop in the gif_read_lzw function can lead to a pointer arbitrarily pointing to heap memory and resulting in a buffer overflow. | 5.5 |
| 2022-03-02 | CVE-2021-23191 | NULL Pointer Dereference vulnerability in Htmldoc Project Htmldoc A security issue was found in htmldoc v1.9.12 and before. | 6.8 |
| 2022-03-02 | CVE-2021-23206 | Out-of-bounds Write vulnerability in Htmldoc Project Htmldoc A flaw was found in htmldoc in v1.9.12 and prior. | 6.8 |
| 2022-02-09 | CVE-2022-0534 | Out-of-bounds Read vulnerability in multiple products A vulnerability was found in htmldoc version 1.9.15 where the stack out-of-bounds read takes place in gif_get_code() and occurs when opening a malicious GIF file, which can result in a crash (segmentation fault). | 5.5 |
| 2022-01-10 | CVE-2021-43579 | Out-of-bounds Write vulnerability in multiple products A stack-based buffer overflow in image_load_bmp() in HTMLDOC <= 1.9.13 results in remote code execution if the victim converts an HTML document linking to a crafted BMP file. | 6.8 |
| 2021-11-03 | CVE-2021-40985 | Out-of-bounds Read vulnerability in multiple products A stack-based buffer under-read in htmldoc before 1.9.12, allows attackers to cause a denial of service via a crafted BMP image to image_load_bmp. | 5.5 |