CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-20451

The process_file function in reader.c in libdoc through 2017-10-23 has a heap-based buffer over-read that allows attackers to cause a denial of service (application crash) via a crafted file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 53.5%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.3

References

https://github.com/uvoteam/libdoc/issues/2
https://github.com/uvoteam/libdoc/issues/2

Products affected by CVE-2018-20451

Libdoc Project » Libdoc » Version: 2015-10-24

cpe:2.3:a:libdoc_project:libdoc:2015-10-24
Libdoc Project » Libdoc » Version: 2015-10-28

cpe:2.3:a:libdoc_project:libdoc:2015-10-28
Libdoc Project » Libdoc » Version: 2015-12-29

cpe:2.3:a:libdoc_project:libdoc:2015-12-29
Libdoc Project » Libdoc » Version: 2017-10-23

cpe:2.3:a:libdoc_project:libdoc:2017-10-23

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-20451

Products

Pricing

Contact Us