Vulnerabilities (CVE)

Filtered by vendor Libmobi Project Subscribe
Total 14 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-3888 1 Libmobi Project 1 Libmobi 2021-10-25 5.8 MEDIUM 8.1 HIGH
libmobi is vulnerable to Use of Out-of-range Pointer Offset
CVE-2021-3889 1 Libmobi Project 1 Libmobi 2021-10-25 5.8 MEDIUM 8.1 HIGH
libmobi is vulnerable to Use of Out-of-range Pointer Offset
CVE-2021-3881 1 Libmobi Project 1 Libmobi 2021-10-22 7.5 HIGH 9.8 CRITICAL
libmobi is vulnerable to Out-of-bounds Read
CVE-2021-3751 1 Libmobi Project 1 Libmobi 2021-09-24 7.5 HIGH 9.8 CRITICAL
libmobi is vulnerable to Out-of-bounds Write
CVE-2018-11438 1 Libmobi Project 1 Libmobi 2020-08-24 6.8 MEDIUM 8.8 HIGH
The mobi_decompress_lz77 function in compression.c in Libmobi 0.3 allows remote attackers to cause remote code execution (heap-based buffer overflow) via a crafted mobi file.
CVE-2018-11726 1 Libmobi Project 1 Libmobi 2020-08-24 6.8 MEDIUM 8.8 HIGH
The mobi_decode_font_resource function in util.c in Libmobi 0.3 allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted mobi file.
CVE-2018-11724 1 Libmobi Project 1 Libmobi 2019-10-03 6.8 MEDIUM 8.8 HIGH
The mobi_pk1_decrypt function in encryption.c in Libmobi 0.3 allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a crafted mobi file.
CVE-2018-11433 1 Libmobi Project 1 Libmobi 2019-10-03 4.3 MEDIUM 6.5 MEDIUM
The mobi_get_kf8boundary_seqnumber function in util.c in Libmobi 0.3 allows remote attackers to cause information disclosure (heap-based buffer over-read) via a crafted mobi file.
CVE-2018-11434 1 Libmobi Project 1 Libmobi 2019-10-03 4.3 MEDIUM 6.5 MEDIUM
The buffer_fill64 function in compression.c in Libmobi 0.3 allows remote attackers to cause information disclosure (heap-based buffer over-read) via a crafted mobi file.
CVE-2018-11436 1 Libmobi Project 1 Libmobi 2019-10-03 4.3 MEDIUM 6.5 MEDIUM
The buffer_addraw function in buffer.c in Libmobi 0.3 allows remote attackers to cause information disclosure (heap-based buffer over-read) via a crafted mobi file.
CVE-2018-11432 1 Libmobi Project 1 Libmobi 2019-10-03 4.3 MEDIUM 6.5 MEDIUM
The mobi_parse_mobiheader function in read.c in Libmobi 0.3 allows remote attackers to cause information disclosure (heap-based buffer over-read) via a crafted mobi file.
CVE-2018-11725 1 Libmobi Project 1 Libmobi 2018-08-08 4.3 MEDIUM 6.5 MEDIUM
The mobi_parse_index_entry function in index.c in Libmobi 0.3 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via a crafted mobi file.
CVE-2018-11435 1 Libmobi Project 1 Libmobi 2018-06-26 4.3 MEDIUM 6.5 MEDIUM
The mobi_decompress_huffman_internal function in compression.c in Libmobi 0.3 allows remote attackers to cause information disclosure (read access violation) via a crafted mobi file.
CVE-2018-11437 1 Libmobi Project 1 Libmobi 2018-06-26 4.3 MEDIUM 6.5 MEDIUM
The mobi_reconstruct_parts function in parse_rawml.c in Libmobi 0.3 allows remote attackers to cause information disclosure (read access violation) via a crafted mobi file.