Every CVE whose affected-product data names Unrtf Project Unrtf, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2014-9274 — CVSS 7.5 (high): UnRTF allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code as demonstrated by a file containing…
CVE-2014-9275 — CVSS 7.5 (high): UnRTF allows remote attackers to cause a denial of service (out-of-bounds memory access and crash) and possibly execute arbitrary code via…
CVE-2016-10091 — CVSS 7.5 (high): Multiple stack-based buffer overflows in unrtf 0.21.9 allow remote attackers to cause a denial-of-service by writing a negative integer to…
CVE-2025-65411 — CVSS 7.5 (high): A NULL pointer dereference in the src/path.c component of GNU Unrtf v0.21.10 allows attackers to cause a Denial of Service (DoS) via…
CVE-2025-65410 — CVSS 6.2 (medium): A stack overflow in the src/main.c component of GNU Unrtf v0.21.10 allows attackers to cause a Denial of Service (DoS) via injecting a…