File Project - File CVE

Filtered by vendor File Project Subscribe

Filtered by product File

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-18218	6 Canonical, Debian, Fedoraproject and 3 more	6 Ubuntu Linux, Debian Linux, Fedora and 3 more	2021-09-14	7.5 HIGH	9.8 CRITICAL
cdf_read_property_info in cdf.c in file through 5.37 does not restrict the number of CDF_VECTOR elements, which allows a heap-based buffer overflow (4-byte out-of-bounds write).

Vulnerabilities (CVE)