Marklogic - Marklogic CVE

Filtered by vendor Marklogic Subscribe

Filtered by product Marklogic

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2017-2792	1 Marklogic	1 Marklogic	2018-11-15	6.8 MEDIUM	9.6 CRITICAL
An exploitable heap corruption vulnerability exists in the iBldDirInfo functionality of Antenna House DMC HTMLFilter used by MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can provide a malicious xls file to trigger this vulnerability.

Vulnerabilities (CVE)