Vulnerabilities > UPX Project > UPX > High

DATE CVE VULNERABILITY TITLE RISK
2023-03-24 CVE-2021-43311 Out-of-bounds Write vulnerability in UPX Project UPX
A heap-based buffer overflow was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func get_le32().
network
low complexity
upx-project CWE-787
7.5
7.5
2023-03-24 CVE-2021-43312 Out-of-bounds Write vulnerability in UPX Project UPX
A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address.
network
low complexity
upx-project CWE-787
7.5
7.5
2023-03-24 CVE-2021-43313 Out-of-bounds Write vulnerability in UPX Project UPX
A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address.
network
low complexity
upx-project CWE-787
7.5
7.5
2023-03-24 CVE-2021-43314 Out-of-bounds Write vulnerability in UPX Project UPX
A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func get_le32().
network
low complexity
upx-project CWE-787
7.5
7.5
2023-03-24 CVE-2021-43315 Out-of-bounds Write vulnerability in UPX Project UPX
A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func get_le32().
network
low complexity
upx-project CWE-787
7.5
7.5
2023-03-24 CVE-2021-43316 Out-of-bounds Write vulnerability in UPX Project UPX
A heap-based buffer overflow was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func get_le64().
network
low complexity
upx-project CWE-787
7.5
7.5
2023-03-24 CVE-2021-43317 Out-of-bounds Write vulnerability in UPX Project UPX
A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func get_le32().
network
low complexity
upx-project CWE-787
7.5
7.5
2022-08-25 CVE-2020-27796 Out-of-bounds Read vulnerability in UPX Project UPX 4.0.0
A heap-based buffer over-read was discovered in the invert_pt_dynamic function in p_lx_elf.cpp in UPX 4.0.0 via a crafted Mach-O file.
local
low complexity
upx-project CWE-125
7.8
7.8
2022-08-25 CVE-2020-27799 Out-of-bounds Read vulnerability in UPX Project UPX 4.0.0
A heap-based buffer over-read was discovered in the acc_ua_get_be32 function in miniacc.h in UPX 4.0.0 via a crafted Mach-O file.
local
low complexity
upx-project CWE-125
7.8
7.8
2022-08-25 CVE-2020-27800 Out-of-bounds Read vulnerability in UPX Project UPX 4.0.0
A heap-based buffer over-read was discovered in the get_le32 function in bele.h in UPX 4.0.0 via a crafted Mach-O file.
local
low complexity
upx-project CWE-125
7.8
7.8