CVEInsight.

Free vulnerability intelligence for developers, security teams, and researchers. Data sourced from public databases for informational purposes only.

Explore

Legal

CVE data sourced from NVD / NIST & public disclosures.

Search Vulnerabilities

Software

Searching vulnerabilities affecting “icu-project”

4 vulnerabilities found for “icu-project”

CVE-2020-10531

HIGH8.8

An issue was discovered in International Components for Unicode (ICU) for C/C++ through 66.1. An integer overflow, leading to a heap-based buffer overflow, exists in the UnicodeString::doAppend() function in common/unistr.cpp.

icu-project / international_components_for_unicode+20

Network

Published Mar 12, 2020

CVE-2018-18928

CRITICAL9.8

International Components for Unicode (ICU) for C/C++ 63.1 has an integer overflow in number::impl::DecimalQuantity::toScientificString() in i18n/number_decimalquantity.cpp.

icu-project / international_components_for_unicode

Network

Published Nov 4, 2018

CVE-2017-15396

MEDIUM6.5

A stack buffer overflow in NumberingSystem in International Components for Unicode (ICU) for C/C++ before 60.2, as used in V8 in Google Chrome prior to 62.0.3202.75 and other products, allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

google / chrome+7

Network

Published Aug 28, 2018

CVE-2017-15422

MEDIUM6.5

Integer overflow in international date handling in International Components for Unicode (ICU) for C/C++ before 60.1, as used in V8 in Google Chrome prior to 63.0.3239.84 and other products, allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.

google / chrome+9

Network

Published Aug 28, 2018