CWE:
 

Topic
Date
Author
High
Google SketchUp lib3ds 3DS Importer Memory Corruption
18.01.2010
CORE


CVEMAP Search Results

CVE
Details
Description
2019-10-11
High
CVE-2019-2185

Vendor: Google
Software: Android
 

 
In VlcDequantH263IntraBlock_SH of vlc_dequant.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-136173699

 
High
CVE-2019-2184

Vendor: Google
Software: Android
 

 
In PV_DecodePredictedIntraDC of dec_pred_intra_dc.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9Android ID: A-134578122

 
High
CVE-2019-2186

Vendor: Google
Software: Android
 

 
In GetMBheader of combined_decode.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-7.1.1 Android-7.1.2 Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-136175447

 
2019-10-09
Medium
CVE-2019-5046

Vendor: Gonitro
Software: Nitropdf
 

 
A specifically crafted jpeg2000 file embedded in a PDF file can lead to a heap corruption when opening a PDF document in NitroPDF 12.12.1.522. With careful memory manipulation, this can lead to arbitrary code execution. In order to trigger this vulnerability, the victim would need to open the malicious file.

 
2019-10-08
Medium
CVE-2019-17248

Vendor: Irfanview
Software: Irfanview
 

 
IrfanView 4.53 allows a User Mode Write AV starting at WSQ!ReadWSQ+0x00000000000025b6.

 
Medium
CVE-2019-17250

Vendor: Irfanview
Software: Irfanview
 

 
IrfanView 4.53 allows a User Mode Write AV starting at WSQ!ReadWSQ+0x00000000000042f5.

 
Medium
CVE-2019-17249

Vendor: Irfanview
Software: Irfanview
 

 
IrfanView 4.53 allows a User Mode Write AV starting at WSQ!ReadWSQ+0x000000000000d57b.

 
Medium
CVE-2019-17246

Vendor: Irfanview
Software: Irfanview
 

 
IrfanView 4.53 allows a User Mode Write AV starting at WSQ!ReadWSQ+0x000000000000258c.

 
Medium
CVE-2019-17245

Vendor: Irfanview
Software: Irfanview
 

 
IrfanView 4.53 allows a User Mode Write AV starting at WSQ!ReadWSQ+0x0000000000004359.

 
Medium
CVE-2019-17242

Vendor: Irfanview
Software: Irfanview
 

 
IrfanView 4.53 allows a User Mode Write AV starting at WSQ!ReadWSQ+0x000000000000966f.

 

 


Copyright 2019, cxsecurity.com

 

Back to Top