CVSS: 5.6EPSS: 0%CPEs: 1EXPL: 0CVE-2025-48172
https://notcve.org/view.php?id=CVE-2025-48172
04 Jul 2025 — CHMLib through 2bef8d0, as used in SumatraPDF and other products, has a chm_lib.c _chm_decompress_block integer overflow. There is a resultant heap-based buffer overflow in _chm_fetch_bytes. • https://drive.google.com/file/d/1XpulFyCGlq7Szzg5RsH-eRwZ6OyuSozl/view?usp=sharing • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.3EPSS: 10%CPEs: 1EXPL: 0CVE-2007-0619 – Gentoo Linux Security Advisory 200702-12
https://notcve.org/view.php?id=CVE-2007-0619
31 Jan 2007 — chmlib before 0.39 allows user-assisted remote attackers to execute arbitrary code via a crafted page block length in a CHM file, which triggers memory corruption. chmlib anterior a la 0.39 permite a atacantes con la intervención del usuario ejecutar código de su elección mediante la manipulación de un largo bloque de una página en el fichero CHM, lo que dispara una corrupción de memoria. When certain CHM files that contain tables and objects stored in pages are parsed by CHMlib, an unsanitized value is pas... • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=468 •