Описание
An exploitable integer overflow vulnerability exists in the xls_appendSST function of libxls 1.4.A specially crafted XLS file can cause memory corruption resulting in remote code execution.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:libxls_project:libxls:1.4:*:*:*:*:*:*:*
EPSS
Процентиль: 71%
0.00658
Низкий
8.8 High
CVSS3
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-190
Связанные уязвимости
CVSS3: 8.8
ubuntu
около 8 лет назад
An exploitable integer overflow vulnerability exists in the xls_appendSST function of libxls 1.4.A specially crafted XLS file can cause memory corruption resulting in remote code execution.
CVSS3: 8.8
debian
около 8 лет назад
An exploitable integer overflow vulnerability exists in the xls_append ...
CVSS3: 7.8
github
больше 3 лет назад
An exploitable integer overflow vulnerability exists in the xls_appendSST function of libxls 1.4.A specially crafted XLS file can cause memory corruption resulting in remote code execution.
EPSS
Процентиль: 71%
0.00658
Низкий
8.8 High
CVSS3
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-190