CVE-2018-3855

Published: Apr 26, 2018Modified: Nov 21, 2024

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

In Hyland Perceptive Document Filters 11.4.0.2647 - x86/x64 Windows/Linux, a crafted OpenDocument document can lead to a SkCanvas object double free resulting in direct code execution.

Affected (2)

Products: Hyland: Perceptive Document Filters

Hyland

1 product

Perceptive Document Filters

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Hyland Perceptive Document Filters	Version 11.2.0.1732
Hyland Perceptive Document Filters	Version 11.4.0.2647

Related CWEs

CWE-415

Double Free

The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.

References (4)

http://www.securityfocus.com/bid/104023

Source: talos-cna@cisco.com

Third Party AdvisoryVDB Entry

https://talosintelligence.com/vulnerability_reports/TALOS-2018-0538

Source: talos-cna@cisco.com

ExploitThird Party Advisory

http://www.securityfocus.com/bid/104023

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://talosintelligence.com/vulnerability_reports/TALOS-2018-0538

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.