Vulnerabilities (CVE)

Filtered by vendor Gnucobol Project Subscribe
Total 6 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-16396 1 Gnucobol Project 1 Gnucobol 2024-11-21 6.8 MEDIUM 7.8 HIGH
GnuCOBOL 2.2 has a use-after-free in the end_scope_of_program_name() function in cobc/parser.y via crafted COBOL source code.
CVE-2019-16395 1 Gnucobol Project 1 Gnucobol 2024-11-21 6.8 MEDIUM 7.8 HIGH
GnuCOBOL 2.2 has a stack-based buffer overflow in the cb_name() function in cobc/tree.c via crafted COBOL source code.
CVE-2019-14541 1 Gnucobol Project 1 Gnucobol 2024-11-21 6.8 MEDIUM 7.8 HIGH
GnuCOBOL 2.2 has a stack-based buffer overflow in cb_encode_program_id in cobc/typeck.c via crafted COBOL source code.
CVE-2019-14528 1 Gnucobol Project 1 Gnucobol 2024-11-21 6.8 MEDIUM 7.8 HIGH
GnuCOBOL 2.2 has a heap-based buffer overflow in read_literal in cobc/scanner.l via crafted COBOL source code.
CVE-2019-14486 1 Gnucobol Project 1 Gnucobol 2024-11-21 6.8 MEDIUM 7.8 HIGH
GnuCOBOL 2.2 has a buffer overflow in cb_evaluate_expr in cobc/field.c via crafted COBOL source code.
CVE-2019-14468 1 Gnucobol Project 1 Gnucobol 2024-11-21 6.8 MEDIUM 7.8 HIGH
GnuCOBOL 2.2 has a buffer overflow in cb_push_op in cobc/field.c via crafted COBOL source code.