Joachim Bauch

4 exploits Active since Oct 2017
CVE-2014-9530 WRITEUP CRITICAL WRITEUP
nw.js <0.11.3 - Info Disclosure
A vulnerability exists in nw.js before 0.11.3 when calling nw methods from normal frames, which has an unspecified impact.
CVSS 9.8
CVE-2014-9733 WRITEUP CRITICAL WRITEUP
nw.js <0.11.5 - Remote Code Execution
nw.js before 0.11.5 can simulate user input events in a normal frame, which allows remote attackers to have unspecified impact via unknown vectors.
CVSS 9.8
CVE-2019-11471 WRITEUP HIGH WRITEUP
libheif 1.4.0 - Use-After-Free in Alpha Channel Handling
libheif 1.4.0 has a use-after-free in heif::HeifContext::Image::set_alpha_channel in heif_context.h because heif_context.cc mishandles references to non-existing alpha images.
CVSS 8.8
CVE-2020-19499 WRITEUP HIGH WRITEUP
libheif 1.4.0 - Out-of-bounds Read in Box_iref Reference Handling
An issue was discovered in heif::Box_iref::get_references in libheif 1.4.0, allows attackers to cause a Denial of Service or possibly other unspecified impact due to an invalid memory read.
CVSS 8.8