cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-39831,https://securityvulnerability.io/vulnerability/CVE-2022-39831,Heap-based Buffer Overflow in PSPP by GNU,"A vulnerability in PSPP 1.6.2 allows for a heap-based buffer overflow in the function read_bytes_internal, found in utilities/pspp-dump-sav.c. This flaw can lead to denial of service through application crashes and may also result in additional unspecified impacts. Users are advised to stay updated with patches and security releases to mitigate these risks.",Gnu,Pspp,7.8,HIGH,0.0011699999449774623,false,,false,false,false,,,false,false,,2022-09-05T04:12:37.000Z,0
CVE-2022-39832,https://securityvulnerability.io/vulnerability/CVE-2022-39832,Heap-based Buffer Overflow in PSPP by GNU,"A heap-based buffer overflow has been identified in version 1.6.2 of PSPP. This vulnerability occurs in the 'read_string' function located in the source file utilities/pspp-dump-sav.c. Exploiting this flaw may allow attackers to trigger an application crash, resulting in a denial of service, while potentially opening the door to additional yet unspecified impacts on the system's integrity.",Gnu,Pspp,7.8,HIGH,0.0011699999449774623,false,,false,false,false,,,false,false,,2022-09-05T04:12:30.000Z,0
CVE-2019-9211,https://securityvulnerability.io/vulnerability/CVE-2019-9211,,There is a reachable assertion abort in the function write_long_string_missing_values() in data/sys-file-writer.c in libdata.a in GNU PSPP 1.2.0 that will lead to denial of service.,Gnu,Pspp,6.5,MEDIUM,0.001829999964684248,false,,false,false,false,,,false,false,,2019-02-27T17:00:00.000Z,0
CVE-2018-20230,https://securityvulnerability.io/vulnerability/CVE-2018-20230,,"An issue was discovered in PSPP 1.2.0. There is a heap-based buffer overflow at the function read_bytes_internal in utilities/pspp-dump-sav.c, which allows attackers to cause a denial of service (application crash) or possibly have unspecified other impact.",Gnu,Pspp,7.8,HIGH,0.002309999894350767,false,,false,false,false,,,false,false,,2018-12-19T11:29:00.000Z,0
CVE-2017-12959,https://securityvulnerability.io/vulnerability/CVE-2017-12959,,There is a reachable assertion abort in the function dict_add_mrset() in data/dictionary.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to a remote denial of service attack.,Gnu,Pspp,7.5,HIGH,0.0020699999295175076,false,,false,false,false,,,false,false,,2017-08-18T21:00:00.000Z,0
CVE-2017-12961,https://securityvulnerability.io/vulnerability/CVE-2017-12961,,There is an assertion abort in the function parse_attributes() in data/sys-file-reader.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to remote denial of service.,Gnu,Pspp,7.5,HIGH,0.00215999991632998,false,,false,false,false,,,false,false,,2017-08-18T21:00:00.000Z,0
CVE-2017-12960,https://securityvulnerability.io/vulnerability/CVE-2017-12960,,There is a reachable assertion abort in the function dict_rename_var() in data/dictionary.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to remote denial of service.,Gnu,Pspp,7.5,HIGH,0.0020699999295175076,false,,false,false,false,,,false,false,,2017-08-18T21:00:00.000Z,0
CVE-2017-12958,https://securityvulnerability.io/vulnerability/CVE-2017-12958,,There is an illegal address access in the function output_hex() in data/data-out.c of the libpspp library in GNU PSPP before 1.0.1 that will lead to remote denial of service.,Gnu,Pspp,7.5,HIGH,0.0020699999295175076,false,,false,false,false,,,false,false,,2017-08-18T21:00:00.000Z,0
CVE-2017-10792,https://securityvulnerability.io/vulnerability/CVE-2017-10792,,"There is a NULL Pointer Dereference in the function ll_insert() of the libpspp library in GNU PSPP before 0.11.0. For example, a crash was observed within the library code when attempting to convert invalid SPSS data into CSV format. A crafted input will lead to a remote denial of service attack.",Gnu,Pspp,6.5,MEDIUM,0.0012499999720603228,false,,false,false,false,,,false,false,,2017-07-02T03:00:00.000Z,0
CVE-2017-10791,https://securityvulnerability.io/vulnerability/CVE-2017-10791,,"There is an Integer overflow in the hash_int function of the libpspp library in GNU PSPP before 0.11.0. For example, a crash was observed within the library code when attempting to convert invalid SPSS data into CSV format. A crafted input will lead to a remote denial of service attack.",Gnu,Pspp,6.5,MEDIUM,0.0005799999926239252,false,,false,false,false,,,false,false,,2017-07-02T03:00:00.000Z,0