RSS   Vulnerabilities for 'Aspose.cells'   RSS

2019-08-21
 
CVE-2019-5033

CWE-125
 

 
An exploitable out-of-bounds read vulnerability exists in the Number record parser of Aspose Aspose.Cells 19.1.0 library. A specially crafted XLS file can cause an out-of-bounds read, resulting in remote code execution. An attacker needs to provide a malformed file to the victim to trigger the vulnerability.

 
 
CVE-2019-5032

CWE-125
 

 
An exploitable out-of-bounds read vulnerability exists in the LabelSst record parser of Aspose Aspose.Cells 19.1.0 library. A specially crafted XLS file can cause an out-of-bounds read, resulting in remote code execution. An attacker needs to provide a malformed file to the victim to trigger the vulnerability.

 

 >>> Vendor: Aspose 3 Products
Aspose.cells
Aspose.words
Aspose.pdf for c++


Copyright 2022, cxsecurity.com

 

Back to Top