Tats W3M vulnerabilities
44 known vulnerabilities affecting tats/w3m.
Total CVEs
44
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH10MEDIUM33
Vulnerabilities
Page 2 of 3
CVE-2016-9432P4MEDIUMCVSS 6.5≤ 0.5.3-302016-12-12
CVE-2016-9432 [MEDIUM] CWE-119 CVE-2016-9432: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attacke
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (memory corruption, segmentation fault, and crash) via a crafted HTML page.
nvdosv
CVE-2016-9431P4MEDIUMCVSS 6.5≤ 0.5.3-302016-12-12
CVE-2016-9431 [MEDIUM] CWE-119 CVE-2016-9431: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Infinite recursion vulner
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Infinite recursion vulnerability in w3m allows remote attackers to cause a denial of service via a crafted HTML page.
nvdosv
CVE-2016-9626P4MEDIUMCVSS 6.5≤ 0.5.3-322016-12-12
CVE-2016-9626 [MEDIUM] CWE-119 CVE-2016-9626: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. Infinite recursion vulner
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. Infinite recursion vulnerability in w3m allows remote attackers to cause a denial of service via a crafted HTML page.
nvdosv
CVE-2016-9622P4MEDIUMCVSS 6.5≤ 0.5.3-322016-12-12
CVE-2016-9622 [MEDIUM] CWE-476 CVE-2016-9622: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attacke
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
nvdosv
CVE-2016-9625P4MEDIUMCVSS 6.5≤ 0.5.3-322016-12-12
CVE-2016-9625 [MEDIUM] CWE-119 CVE-2016-9625: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. Infinite recursion vulner
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. Infinite recursion vulnerability in w3m allows remote attackers to cause a denial of service via a crafted HTML page.
nvdosv
CVE-2016-9439P4MEDIUMCVSS 6.5≤ 0.5.3-302016-12-12
CVE-2016-9439 [MEDIUM] CWE-119 CVE-2016-9439: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Infinite recursion vulner
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. Infinite recursion vulnerability in w3m allows remote attackers to cause a denial of service via a crafted HTML page.
nvdosv
CVE-2016-9631P4MEDIUMCVSS 6.5≤ 0.5.3-322016-12-12
CVE-2016-9631 [MEDIUM] CWE-476 CVE-2016-9631: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attacke
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
nvdosv
CVE-2016-9624P4MEDIUMCVSS 6.5≤ 0.5.3-322016-12-12
CVE-2016-9624 [MEDIUM] CWE-476 CVE-2016-9624: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attacke
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
nvdosv
CVE-2016-9633P4MEDIUMCVSS 6.5≤ 0.5.3-322016-12-12
CVE-2016-9633 [MEDIUM] CWE-399 CVE-2016-9633: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attacke
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (infinite loop and resource consumption) via a crafted HTML page.
nvdosv
CVE-2016-9623P4MEDIUMCVSS 6.5≤ 0.5.3-322016-12-12
CVE-2016-9623 [MEDIUM] CWE-476 CVE-2016-9623: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attacke
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
nvdosv
CVE-2016-9629P4MEDIUMCVSS 6.5≤ 0.5.3-322016-12-12
CVE-2016-9629 [MEDIUM] CWE-476 CVE-2016-9629: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attacke
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
nvdosv
CVE-2016-9628P4MEDIUMCVSS 6.5≤ 0.5.3-322016-12-12
CVE-2016-9628 [MEDIUM] CWE-476 CVE-2016-9628: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attacke
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
nvdosv
CVE-2016-9441P4MEDIUMCVSS 6.5≤ 0.5.3-302016-12-12
CVE-2016-9441 [MEDIUM] CWE-476 CVE-2016-9441: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attacke
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
nvdosv
CVE-2016-9438P4MEDIUMCVSS 6.5≤ 0.5.3-302016-12-12
CVE-2016-9438 [MEDIUM] CWE-476 CVE-2016-9438: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attacke
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
nvdosv
CVE-2016-9443P4MEDIUMCVSS 6.5≤ 0.5.3-302016-12-12
CVE-2016-9443 [MEDIUM] CWE-476 CVE-2016-9443: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attacke
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
nvdosv
CVE-2016-9430P4MEDIUMCVSS 6.5≤ 0.5.3-302016-12-12
CVE-2016-9430 [MEDIUM] CWE-476 CVE-2016-9430: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attacke
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
nvdosv
CVE-2016-9440P4MEDIUMCVSS 6.5≤ 0.5.3-302016-12-12
CVE-2016-9440 [MEDIUM] CWE-476 CVE-2016-9440: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attacke
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
nvdosv
CVE-2016-9434P4MEDIUMCVSS 6.5≤ 0.5.3-302016-12-12
CVE-2016-9434 [MEDIUM] CWE-476 CVE-2016-9434: An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attacke
An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-31. w3m allows remote attackers to cause a denial of service (segmentation fault and crash) via a crafted HTML page.
nvdosv
CVE-2018-6198P4MEDIUMCVSS 4.7≤ 0.5.32018-01-25
CVE-2018-6198 [MEDIUM] CWE-59 CVE-2018-6198: w3m through 0.5.3 does not properly handle temporary files when the ~/.w3m directory is unwritable,
w3m through 0.5.3 does not properly handle temporary files when the ~/.w3m directory is unwritable, which allows a local attacker to craft a symlink attack to overwrite arbitrary files.
nvdosv
CVE-2023-4255P4MEDIUMCVSS 5.5v0.5.3\+git20230121-1v0.5.3\+git20230121-2+1 more2023-12-21
CVE-2023-4255 [MEDIUM] CWE-787 CVE-2023-4255: An out-of-bounds write issue has been discovered in the backspace handling of the checkType() functi
An out-of-bounds write issue has been discovered in the backspace handling of the checkType() function in etc.c within the W3M application. This vulnerability is triggered by supplying a specially crafted HTML file to the w3m binary. Exploitation of this flaw could lead to application crashes, resulting in a denial of service condition.
nvdosv