Every CVE whose affected-product data names Tats W3m, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (40)
CVE-2016-9423 — CVSS 8.8 (high): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflow in w3m allows remote attackers to…
CVE-2016-9422 — CVSS 8.8 (high): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. The feed_table_tag function in w3m doesn't properly validate the…
CVE-2016-9424 — CVSS 8.8 (high): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m doesn't properly validate the value of tag attribute, which…
CVE-2016-9425 — CVSS 8.8 (high): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflow in the addMultirowsForm function in…
CVE-2016-9426 — CVSS 8.8 (high): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Integer overflow vulnerability in the renderTable function in…
CVE-2016-9428 — CVSS 8.8 (high): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Heap-based buffer overflow in the addMultirowsForm function in…
CVE-2016-9429 — CVSS 8.8 (high): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Buffer overflow in the formUpdateBuffer function in w3m allows…
CVE-2022-38223 — CVSS 7.8 (high): There is an out-of-bounds write in checkType located in etc.c in w3m 0.5.3. It can be triggered by sending a crafted HTML file to the w3m…
CVE-2018-6196 — CVSS 7.5 (high): w3m through 0.5.3 is prone to an infinite recursion flaw in HTMLlineproc0 because the feed_table_block_tag function in table.c does not…
CVE-2018-6197 — CVSS 7.5 (high): w3m through 0.5.3 is prone to a NULL pointer dereference flaw in formUpdateBuffer in form.c.
CVE-2016-9439 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Infinite recursion vulnerability in w3m allows remote attackers…
CVE-2016-9440 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service…
CVE-2016-9441 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service…
CVE-2016-9442 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause memory corruption in…
CVE-2016-9622 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service…
CVE-2016-9623 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service…
CVE-2016-9624 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service…
CVE-2016-9625 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. Infinite recursion vulnerability in w3m allows remote attackers…
CVE-2016-9626 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. Infinite recursion vulnerability in w3m allows remote attackers…
CVE-2016-9627 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (heap…
CVE-2016-9628 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service…
CVE-2016-9629 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service…
CVE-2016-9630 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (global…
CVE-2016-9631 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service…
CVE-2016-9632 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (global…
CVE-2016-9633 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service…
CVE-2016-9443 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service…
CVE-2016-9430 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service…
CVE-2016-9431 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Infinite recursion vulnerability in w3m allows remote attackers…
CVE-2016-9432 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (memory…
CVE-2016-9433 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service…
CVE-2016-9434 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service…
CVE-2016-9435 — CVSS 6.5 (medium): The HTMLtagproc1 function in file.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to…
CVE-2016-9436 — CVSS 6.5 (medium): parsetagx.c in w3m before 0.5.3+git20161009 does not properly initialize values, which allows remote attackers to crash the application via…
CVE-2016-9437 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service…
CVE-2016-9438 — CVSS 6.5 (medium): An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service…
CVE-2023-4255 — CVSS 5.5 (medium): An out-of-bounds write issue has been discovered in the backspace handling of the checkType() function in etc.c within the W3M application…
CVE-2018-6198 — CVSS 4.7 (medium): w3m through 0.5.3 does not properly handle temporary files when the ~/.w3m directory is unwritable, which allows a local attacker to craft…
CVE-2023-38252 — CVSS 4.7 (medium): An out-of-bounds read flaw was found in w3m, in the Strnew_size function in Str.c. This issue may allow an attacker to cause a denial of…
CVE-2023-38253 — CVSS 4.7 (medium): An out-of-bounds read flaw was found in w3m, in the growbuf_to_Str function in indep.c. This issue may allow an attacker to cause a denial…