This page lists publicly disclosed CVE vulnerabilities affecting libesedb_project libesedb (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2018-15161 | The libesedb_key_append_data function in libesedb_key.c in libesedb through 2018-04-01 allows remote attackers to cause a heap-based buffer over-read via a crafted esedb file. NOTE: the vendor has disputed this as described in the GitHub issue comments | [email protected] | 6.5 | 0.39% | 2018-09-01 | 2024-11-21 |
| CVE-2018-15160 | The libesedb_catalog_definition_read function in libesedb_catalog_definition.c in libesedb through 2018-04-01 allows remote attackers to cause a heap-based buffer over-read via a crafted esedb file. NOTE: the vendor has disputed this as described in the GitHub issue comments | [email protected] | 6.5 | 0.42% | 2018-09-01 | 2024-11-21 |
| CVE-2018-15159 | The libesedb_page_read_tags function in libesedb_page.c in libesedb through 2018-04-01 allows remote attackers to cause a heap-based buffer over-read via a crafted esedb file. NOTE: the vendor has disputed this as described in the GitHub issue comments | [email protected] | 6.5 | 0.42% | 2018-09-01 | 2024-11-21 |
| CVE-2018-15158 | The libesedb_page_read_values function in libesedb_page.c in libesedb through 2018-04-01 allows remote attackers to cause a heap-based buffer over-read via a crafted esedb file. NOTE: the vendor has disputed this as described in the GitHub issue comments | [email protected] | 6.5 | 0.71% | 2018-09-01 | 2024-11-21 |