Shodan
Vulnerabilities
Vulnerable Software
Htmldoc Project:  Security Vulnerabilities
CVE-2024-46478
HTMLDOC v1.9.18 contains a buffer overflow in parse_pre function,ps-pdf.cxx:5681.
CVSS Score
9.8
EPSS Score
0.001
Published
2024-10-24
CVE-2024-45508
HTMLDOC before 1.9.19 has an out-of-bounds write in parse_paragraph in ps-pdf.cxx because of an attempt to strip leading whitespace from a whitespace-only node.
CVSS Score
9.8
EPSS Score
0.003
Published
2024-09-01
CVE-2021-34119
A flaw was discovered in htmodoc 1.9.12 in function parse_paragraph in ps-pdf.cxx ,this flaw possibly allows possible code execution and a denial of service via a crafted file.
CVSS Score
7.8
EPSS Score
0.0
Published
2023-07-18
CVE-2021-34121
An Out of Bounds flaw was discovered in htmodoc 1.9.12 in function parse_tree() in toc.cxx, this possibly leads to memory layout information leaking in the data. This might be used in a chain of vulnerability in order to reach code execution.
CVSS Score
7.8
EPSS Score
0.0
Published
2023-07-18
CVE-2022-0137
A heap buffer overflow in image_set_mask function of HTMLDOC before 1.9.15 allows an attacker to write outside the buffer boundaries.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-11-14
CVE-2022-34033
HTMLDoc v1.9.15 was discovered to contain a heap overflow via (write_header) /htmldoc/htmldoc/html.cxx:273.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-07-18
CVE-2022-34035
HTMLDoc v1.9.12 and below was discovered to contain a heap overflow via e_node htmldoc/htmldoc/html.cxx:588.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-07-18
CVE-2022-27114
There is a vulnerability in htmldoc 1.9.16. In image_load_jpeg function image.cxx when it calls malloc,'img->width' and 'img->height' they are large enough to cause an integer overflow. So, the malloc function may return a heap blosmaller than the expected size, and it will cause a buffer overflow/Address boundary error in the jpeg_read_scanlines function.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-05-09
CVE-2022-28085
A flaw was found in htmldoc commit 31f7804. A heap buffer overflow in the function pdf_write_names in ps-pdf.cxx may lead to arbitrary code execution and Denial of Service (DoS).
CVSS Score
7.8
EPSS Score
0.002
Published
2022-04-27
CVE-2022-24191
In HTMLDOC 1.9.14, an infinite loop in the gif_read_lzw function can lead to a pointer arbitrarily pointing to heap memory and resulting in a buffer overflow.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-04-04


Products
Pricing
Contact Us

Shodan ® - All rights reserved