Vulnerabilities > UPX Project > UPX > 1.90
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-08-22 | CVE-2021-46179 | Reachable Assertion vulnerability in UPX Project UPX Reachable Assertion vulnerability in upx before 4.0.0 allows attackers to cause a denial of service via crafted file passed to the the readx function. | 6.5 |
| 2023-01-12 | CVE-2023-23456 | Out-of-bounds Write vulnerability in multiple products A heap-based buffer overflow issue was discovered in UPX in PackTmt::pack() in p_tmt.cpp file. | 5.5 |
| 2023-01-12 | CVE-2023-23457 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products A Segmentation fault was found in UPX in PackLinuxElf64::invert_pt_dynamic() in p_lx_elf.cpp. | 5.5 |
| 2020-06-01 | CVE-2019-20805 | Integer Overflow or Wraparound vulnerability in UPX Project UPX p_lx_elf.cpp in UPX before 3.96 has an integer overflow during unpacking via crafted values in a PT_DYNAMIC segment. | 4.3 |