Vulnerabilities > Pcre > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-06-15 | CVE-2020-14155 | Integer Overflow or Wraparound vulnerability in multiple products libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (?C substring. | 5.3 |
2020-01-14 | CVE-2015-2326 | Out-of-bounds Read vulnerability in multiple products The pcre_compile2 function in PCRE before 8.37 allows context-dependent attackers to compile incorrect code and cause a denial of service (out-of-bounds read) via regular expression with a group containing both a forward referencing subroutine call and a recursive back reference, as demonstrated by "((?+1)(\1))/". | 5.5 |
2019-03-21 | CVE-2017-16231 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Pcre 8.41 In PCRE 8.41, after compiling, a pcretest load test PoC produces a crash overflow in the function match() in pcre_exec.c because of a self-recursive call. | 5.5 |
2017-03-23 | CVE-2017-7244 | Out-of-bounds Read vulnerability in Pcre 8.40 The _pcre32_xclass function in pcre_xclass.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (invalid memory read) via a crafted file. | 5.5 |