Libemf Project Libemf 1.0.5

CPE Details

Libemf Project Libemf 1.0.5
libemf_project
libemf
1.0.5
2020-06-17
16h40 +00:00
2020-06-17
16h40 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:libemf_project:libemf:1.0.5:*:*:*:*:*:*:*

Informations

Vendor

libemf_project

Product

libemf

Version

1.0.5

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2020-13999 2020-06-15 14h01 +00:00 ScaleViewPortExtEx in libemf.cpp in libEMF (aka ECMA-234 Metafile Library) 1.0.12 allows an integer overflow and denial of service via a crafted EMF file.
5.5
Medium
CVE-2020-11866 2020-05-11 13h12 +00:00 libEMF (aka ECMA-234 Metafile Library) through 1.0.11 allows a use-after-free.
7.8
High
CVE-2020-11865 2020-05-11 13h10 +00:00 libEMF (aka ECMA-234 Metafile Library) through 1.0.11 allows out-of-bounds memory access.
7.8
High
CVE-2020-11864 2020-05-11 13h09 +00:00 libEMF (aka ECMA-234 Metafile Library) through 1.0.11 allows denial of service (issue 2 of 2).
5.5
Medium
CVE-2020-11863 2020-05-11 13h08 +00:00 libEMF (aka ECMA-234 Metafile Library) through 1.0.11 allows denial of service (issue 1 of 2).
5.5
Medium
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.