Vcftools Project Vcftools vulnerabilities
4 known vulnerabilities affecting vcftools_project/vcftools.
Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH3MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2018-11130P3HIGHCVSS 7.8v0.1.152018-05-17
CVE-2018-11130 [HIGH] CWE-416 CVE-2018-11130: The header::add_FORMAT_descriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers
The header::add_FORMAT_descriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via a crafted vcf file.
nvdosv
CVE-2019-1010127P4HIGHCVSS 7.8fixed in 0.1.152019-07-25
CVE-2019-1010127 [HIGH] CWE-416 CVE-2019-1010127: VCFTools vcftools prior to version 0.1.15 is affected by: Use-after-free. The impact is: Denial of S
VCFTools vcftools prior to version 0.1.15 is affected by: Use-after-free. The impact is: Denial of Service or possibly other impact (eg. code execution or information disclosure). The component is: The header::add_FILTER_descriptor method in header.cpp. The attack vector is: The victim must open a specially crafted VCF file.
nvdosv
CVE-2018-11129P4HIGHCVSS 7.8v0.1.152018-05-17
CVE-2018-11129 [HIGH] CWE-416 CVE-2018-11129: The header::add_INFO_descriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to
The header::add_INFO_descriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via a crafted vcf file.
nvdosv
CVE-2018-11099P4MEDIUMCVSS 5.5v0.1.152018-05-17
CVE-2018-11099 [MEDIUM] CWE-125 CVE-2018-11099: The header::add_INFO_descriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to
The header::add_INFO_descriptor function in header.cpp in VCFtools 0.1.15 allows remote attackers to cause information disclosure (heap-based buffer over-read) via a crafted vcf file.
nvdosv