Vulnerabilities > Justsystems > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-19 | CVE-2023-34366 | Use After Free vulnerability in Justsystems products A use-after-free vulnerability exists in the Figure stream parsing functionality of Ichitaro 2023 1.0.1.59372. | 7.8 |
| 2023-10-19 | CVE-2023-38127 | Integer Overflow or Wraparound vulnerability in Justsystems products An integer overflow exists in the "HyperLinkFrame" stream parser of Ichitaro 2023 1.0.1.59372. | 7.8 |
| 2023-10-19 | CVE-2023-38128 | Out-of-bounds Write vulnerability in Justsystems products An out-of-bounds write vulnerability exists in the "HyperLinkFrame" stream parser of Ichitaro 2023 1.0.1.59372. | 7.8 |
| 2023-10-19 | CVE-2023-35126 | Out-of-bounds Write vulnerability in Justsystems products An out-of-bounds write vulnerability exists within the parsers for both the "DocumentViewStyles" and "DocumentEditStyles" streams of Ichitaro 2023 1.0.1.59372 when processing types 0x0000-0x0009 of a style record with the type 0x2008. | 7.8 |
| 2023-04-05 | CVE-2022-43664 | Unspecified vulnerability in Justsystems Ichitaro 2022 1.0.1.57600 A use-after-free vulnerability exists within the way Ichitaro Word Processor 2022, version 1.0.1.57600, processes protected documents. | 7.8 |
| 2023-04-05 | CVE-2022-45115 | Unspecified vulnerability in Justsystems Ichitaro 2022 1.0.1.57600 A buffer overflow vulnerability exists in the Attribute Arena functionality of Ichitaro 2022 1.0.1.57600. | 7.8 |
| 2023-04-05 | CVE-2023-22291 | Unspecified vulnerability in Justsystems Ichitaro 2022 1.0.1.57600 An invalid free vulnerability exists in the Frame stream parser functionality of Ichitaro 2022 1.0.1.57600. | 7.8 |
| 2023-04-05 | CVE-2023-22660 | Unspecified vulnerability in Justsystems Ichitaro 2022 1.0.1.57600 A heap-based buffer overflow vulnerability exists in the way Ichitaro version 2022 1.0.1.57600 processes certain LayoutBox stream record types. | 7.8 |
| 2017-11-02 | CVE-2017-10870 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Justsystems products Memory corruption vulnerability in Rakuraku Hagaki (Rakuraku Hagaki 2018, Rakuraku Hagaki 2017, Rakuraku Hagaki 2016) and Rakuraku Hagaki Select for Ichitaro (Ichitaro 2017, Ichitaro 2016, Ichitaro 2015, Ichitaro Pro3, Ichitaro Pro2, Ichitaro Pro, Ichitaro 2011, Ichitaro Government 8, Ichitaro Government 7, Ichitaro Government 6 and Ichitaro 2017 Trial version) allows attackers to execute arbitrary code with privileges of the application via specially crafted file. | 7.8 |
| 2017-04-28 | CVE-2017-2154 | Improper Input Validation vulnerability in Justsystems products Untrusted search path vulnerability in Hanako 2017, Hanako 2016, Hanako 2015, Hanako Pro 3, JUST Office 3 [Standard], JUST Office 3 [Eco Print Package], JUST Office 3 & Tri-De DataProtect Package, JUST Government 3, JUST Jump Class 2, JUST Frontier 3, JUST School 6 Premium, Hanako Police 5, JUST Police 3, Hanako 2017 trial version allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory. | 7.8 |