CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Hylafax: >> Hylafax+ >> 5.6.0 Security Vulnerabilities

CVE-2018-17141

HylaFAX 6.0.6 and HylaFAX+ 5.6.0 allow remote attackers to execute arbitrary code via a dial-in session that provides a FAX page with the JPEG bit enabled, which is mishandled in FaxModem::writeECMData() in the faxd/CopyQuality.c++ file.

CVSS Score

9.8

EPSS Score

0.064

Published

2018-09-21

Page 1

Vulnerabilities

Vulnerable Software

Hylafax: >> Hylafax+ >> 5.6.0 Security Vulnerabilities

Products

Pricing

Contact Us