Vulnerability Database

290,206

Total vulnerabilities in the database

CVE-2014-9488

The is_utf8_well_formed function in GNU less before 475 allows remote attackers to have unspecified impact via malformed UTF-8 characters, which triggers an out-of-bounds read.

  • Published: Apr 14, 2015
  • Updated: Apr 13, 2023
  • CVE: CVE-2014-9488
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 10
  • AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

Software From Fixed in
opensuse / opensuse 13.1 13.1.x
opensuse / opensuse 13.2 13.2.x
gnu / less - 471.x