Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:aspose:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorN/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78)
ProductAspose (9f364eed-7495-5324-aa80-08ac0fdbb940)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2019-5041 vulnerable 2026-06-08 05:13:57.585707 Details available
CRITICAL (9.8)
An exploitable Stack Based Buffer Overflow vulnerability exists in the EnumMetaInfo function of Aspose Aspose.Words library, version 18.11.0.0. A specially crafted doc file can cause a stack-based buffer overflow, resulting in remote code execution. An attacker needs to provide a malformed file to the victim to trigger this vulnerability.
Published: 2019-08-21T17:01:58.000Z
Updated: 2024-08-04T19:47:55.650Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2019-5033 vulnerable 2026-06-08 05:13:57.576590 Details available
CRITICAL (9.8)
An exploitable out-of-bounds read vulnerability exists in the Number record parser of Aspose Aspose.Cells 19.1.0 library. A specially crafted XLS file can cause an out-of-bounds read, resulting in remote code execution. An attacker needs to provide a malformed file to the victim to trigger the vulnerability.
Published: 2019-08-21T17:01:48.000Z
Updated: 2024-08-04T19:40:48.967Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2019-5032 vulnerable 2026-06-08 05:13:57.575219 Details available
CRITICAL (9.8)
An exploitable out-of-bounds read vulnerability exists in the LabelSst record parser of Aspose Aspose.Cells 19.1.0 library. A specially crafted XLS file can cause an out-of-bounds read, resulting in remote code execution. An attacker needs to provide a malformed file to the victim to trigger the vulnerability.
Published: 2019-08-21T17:02:05.000Z
Updated: 2024-08-04T19:40:49.304Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.