Every CVE whose affected-product data names Wiris Mathtype, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2018-6638 — CVSS 9.8 (critical): A stack-based buffer overflow (Remote Code Execution) issue was discovered in Design Science MathType 6.9c. This occurs in a function call…
CVE-2018-6639 — CVSS 9.8 (critical): An out-of-bounds write (Remote Code Execution) issue was discovered in Design Science MathType 6.9c. A size used by memmove is read from…
CVE-2018-6640 — CVSS 9.8 (critical): A Heap Overflow (Remote Code Execution) issue was discovered in Design Science MathType 6.9c. Crafted input can modify the next pointer of…
CVE-2018-6641 — CVSS 9.8 (critical): An Arbitrary Free (Remote Code Execution) issue was discovered in Design Science MathType 6.9c. Crafted input can overwrite a structure…
CVE-2022-31372 — CVSS 7.5 (high): Wiris Mathtype v7.28.0 was discovered to contain a path traversal vulnerability in the resourceFile parameter. This vulnerability is…