Vulnerabilities > Lief Project

DATE CVE VULNERABILITY TITLE RISK
2022-11-17 CVE-2022-43171 Out-of-bounds Write vulnerability in Lief-Project Lief 0.12.1
A heap buffer overflow in the LIEF::MachO::BinaryParser::parse_dyldinfo_generic_bind function of LIEF v0.12.1 allows attackers to cause a Denial of Service (DoS) via a crafted MachO file.
network
low complexity
lief-project CWE-787
6.5
2022-10-03 CVE-2022-40922 Unspecified vulnerability in Lief-Project Lief 0.12.1
A vulnerability in the LIEF::MachO::BinaryParser::init_and_parse function of LIEF v0.12.1 allows attackers to cause a denial of service (DOS) through a segmentation fault via a crafted MachO file.
network
low complexity
lief-project
6.5
2022-09-30 CVE-2022-40923 Unspecified vulnerability in Lief-Project Lief 0.12.1
A vulnerability in the LIEF::MachO::SegmentCommand::virtual_address function of LIEF v0.12.1 allows attackers to cause a denial of service (DOS) through a segmentation fault via a crafted MachO file.
network
low complexity
lief-project
6.5
2022-09-13 CVE-2022-38306 Out-of-bounds Write vulnerability in Lief-Project Lief
LIEF commit 5d1d643 was discovered to contain a heap-buffer overflow in the component /core/CorePrPsInfo.tcc.
local
low complexity
lief-project CWE-787
7.8
2022-09-13 CVE-2022-38307 NULL Pointer Dereference vulnerability in Lief-Project Lief
LIEF commit 5d1d643 was discovered to contain a segmentation violation via the function LIEF::MachO::SegmentCommand::file_offset() at /MachO/SegmentCommand.cpp.
local
low complexity
lief-project CWE-476
5.5
2022-09-13 CVE-2022-38495 Out-of-bounds Write vulnerability in Lief-Project Lief
LIEF commit 365a16a was discovered to contain a heap-buffer overflow via the function print_binary at /c/macho_reader.c.
local
low complexity
lief-project CWE-787
7.8
2022-09-13 CVE-2022-38496 Reachable Assertion vulnerability in Lief-Project Lief
LIEF commit 365a16a was discovered to contain a reachable assertion abort via the component BinaryStream.hpp.
local
low complexity
lief-project CWE-617
5.5
2022-09-13 CVE-2022-38497 NULL Pointer Dereference vulnerability in Lief-Project Lief
LIEF commit 365a16a was discovered to contain a segmentation violation via the component CoreFile.tcc:69.
local
low complexity
lief-project CWE-476
5.5
2021-09-20 CVE-2021-32297 Out-of-bounds Write vulnerability in Lief-Project Lief
An issue was discovered in LIEF through 0.11.4.
network
low complexity
lief-project CWE-787
8.8