Aggregates CVE and security vulnerability intelligence across all libdoc_project-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk buffer overflow and vendor risk memory corruption and related security problems, affecting vendor surface software deployment and vendor surface production workloads scenarios.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2019-7233 | In libdoc through 2019-01-28, doc2text in catdoc.c has a NULL pointer dereference. | [email protected] | 8.8 | 1.48% | 2019-01-30 | 2024-11-21 |
| CVE-2019-7156 | In libdoc through 2019-01-28, calcFileBlockOffset in ole.c allows division by zero. | [email protected] | 6.5 | 1.34% | 2019-01-29 | 2024-11-21 |
| CVE-2018-20453 | The getlong function in numutils.c in libdoc through 2017-10-23 has a heap-based buffer over-read that allows attackers to cause a denial of service (application crash) via a crafted file. | [email protected] | 6.5 | 0.94% | 2018-12-25 | 2024-11-21 |
| CVE-2018-20451 | The process_file function in reader.c in libdoc through 2017-10-23 has a heap-based buffer over-read that allows attackers to cause a denial of service (application crash) via a crafted file. | [email protected] | 6.5 | 0.94% | 2018-12-25 | 2024-11-21 |