CVE-2024-35333

HIGH Year: 2024
CVSS v3 Score
8.4
High
Weakness Type
CWE-121
View all →

Vulnerability Description

A stack-buffer-overflow vulnerability exists in the read_charset_decl function of html2xhtml 1.3. This vulnerability occurs due to improper bounds checking when copying data into a fixed-size stack buffer. An attacker can exploit this vulnerability by providing a specially crafted input to the vulnerable function, causing a buffer overflow and potentially leading to arbitrary code execution, denial of service, or data corruption.

Related Vulnerabilities

CVE-2019-16641

HIGH
CVSS:8.4(High)

An issue was found on the Ruijie EG-2000 series gateway. There is a buffer overflow in client.so. Consequently, an attacker can use login.php to login to any account, without providing its password. T...

CWE-1212019

CVE-2022-0408

HIGH
CVSS:8.4(High)

Stack-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.

CWE-1212022

CVE-2022-0629

HIGH
CVSS:8.4(High)

Stack-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.

CWE-1212022

CVE-2024-25391

HIGH
CVSS:8.4(High)

A stack buffer overflow occurs in libc/posix/ipc/mqueue.c in RT-Thread through 5.0.2.

CWE-1212024

CVE-2024-28566

HIGH
CVSS:8.4(High)

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the AssignPixel() function when reading images in TIFF format.

CWE-1212024

CVE-2024-28580

HIGH
CVSS:8.4(High)

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the ReadData() function when reading images in RAS format.

CWE-1212024